CBC padding oracle in AWS S3 Crypto SDK for GoLang
CVE-2020-8911

5.6MEDIUM

Key Information:

Vendor: Google
Status: Aws S3 Crypto Sdk For Golang
Vendor: CVE Published:; 11 August 2020

Summary

A padding oracle vulnerability exists in the AWS S3 Crypto SDK for GoLang versions prior to V2. The SDK allows users to encrypt files with AES-CBC without computing a Message Authentication Code (MAC), which then allows an attacker who has write access to the target's S3 bucket and can observe whether or not an endpoint with access to the key can decrypt a file, they can reconstruct the plaintext with (on average) 128*length (plaintext) queries to the endpoint, by exploiting CBC's ability to manipulate the bytes of the next block and PKCS5 padding errors. It is recommended to update your SDK to V2 or later, and re-encrypt your files.

Affected Version(s)

AWS S3 Crypto SDK for GoLang stable

References

https://aws.amazon.com/blogs/developer/updates-to-the-ama...

x_refsource_CONFIRM

https://github.com/google/security-research/security/advi...

x_refsource_CONFIRM

CVSS V3.1

Score:

5.6

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Aug 11, 2020
Vulnerability Reserved
Feb 12, 2020

Collectors

NVD DatabaseMitre Database

Credit

Sophie Schmieg