CVE-2022-46392

An issue was discovered in Mbed TLS before 2.28.2 and 3.x before 3.3.0. An adversary with access to precise enough information about memory accesses (typically, an untrusted operating system attacking a secure enclave) can recover an RSA private key after observing the victim performing a single private-key operation, if the window size (MBEDTLS_MPI_WINDOW_SIZE) used for the exponentiation is 3 or smaller.

Published: Dec 16, 2022
Updated: Apr 14, 2023
CVE: CVE-2022-46392
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.3
AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N

CWEs:

CWE-203

Affected Software
References

Software	From	Fixed in
arm / mbed_tls	-	2.28.2
arm / mbed_tls	3.0.0	3.3.0
fedoraproject / fedora	36	36.x
fedoraproject / fedora	37	37.x

https://github.com/Mbed-TLS/mbedtls/releases/tag/v2.28.2
https://github.com/Mbed-TLS/mbedtls/releases/tag/v3.3.0
https://lists.fedoraproject.org/archives/list/[email protected]/message/4BR7ZCVKLPGCOEEALUHZMFHXQHR6S4QL/
https://lists.fedoraproject.org/archives/list/[email protected]/message/6XMKJ5IMJEPXYAHHU56Z4P2FSYIEAESB/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4BR7ZCVKLPGCOEEALUHZMFHXQHR6S4QL/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6XMKJ5IMJEPXYAHHU56Z4P2FSYIEAESB/

Vulnerability Database

289,697

CVE-2022-46392