Policy Bypass and Oracle-based Decryption in Mbed TLS
CVE-2021-45450

7.5HIGH

Key Information:

Vendor: Arm
Status: Mbed Tls
Vendor: CVE Published:; 21 December 2021

Summary

Mbed TLS versions prior to 2.28.0 and 3.x before 3.1.0 have a vulnerability where the functions psa_cipher_generate_iv and psa_cipher_encrypt can be exploited to bypass security policies. This flaw may allow an untrusted application to access sensitive memory locations, leading to potential oracle-based decryption of encrypted data. It exposes the risk of unauthorized access to protected information, highlighting the importance of upgrading to the latest stable version to mitigate these security threats.

References

https://github.com/ARMmbed/mbedtls/releases/tag/v2.28.0

https://github.com/ARMmbed/mbedtls/releases/tag/v3.1.0

https://lists.fedoraproject.org/archives/list/package-ann...

vendor-advisory

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Dec 21, 2021
Vulnerability Reserved
Dec 21, 2021