Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM80570A7F73F89FD3BB4106EA06E0B9462E4F149DF3D077DC79BA7F7959950DEB
HistoryMar 27, 2024 - 8:44 p.m.

Security Bulletin: This Power System update is being released to address CVE-2022-4304

2024-03-2720:44:49
www.ibm.com
12
openssl
rsa decryption
timing-based side channel
bmc
https
ssh
cve-2022-4304
vulnerability
op910.00
op910.70
op940.00
op940.50
fw1020.00
fw1020.30
fw1030.00
fw1030.10
hmc firmware
op940.60
fw1020.40
fw1030.20
power 9
power 10
ibm power system ac922
8335-gtg
8335-gth
8335-gtx
ibm power system s1022
9105-22a
s1024
9105-42a
s1022s
9105-22b
s1014
9105-41b
e1050
9043-mrx
l1022
9786-22h
l1024
9786-42h
7063-cr2
hardware management console
firmware
vulnerability remediation

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

6.6 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

52.4%

JSON

Summary

The OpenSSL RSA Decryption timing-based side channel attack affects BMC’s HTTPS and SSH connections.

Vulnerability Details

CVEID:CVE-2022-4304
**DESCRIPTION:**OpenSSL could allow a remote attacker to obtain sensitive information, caused by a timing-based side channel in the RSA Decryption implementation. By sending an overly large number of trial messages for decryption, an attacker could exploit this vulnerability to obtain sensitive information.
CVSS Base score: 5.9
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/246612 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N)

Affected Products and Versions

Affected Product(s) Version(s)
OPENBMC OP910.00 - OP910.70
OPENBMC OP940.00 - OP940.50
OPENBMC FW1020.00 - FW1020.30
OPENBMC FW1030.00 - FW1030.10
HMC firmware OP940.00 - OP940.50

Remediation/Fixes

Customers with the products below should install OP910.80 or newer to remediate this vulnerability.

Power 9

  1. IBM Power System AC922 (8335-GTG)

Customers with the products below should install OP940.60 or newer to remediate this vulnerability.

Power 9

  1. IBM Power System AC922 (8335-GTH, 8335-GTX)

Customers with the products below should install FW1020.40(1020_106) or install FW1030.20(1030_060) or newer to remediate this vulnerability.

Power 10

  1. IBM Power System S1022 (9105-22A)
  2. IBM Power System S1024 (9105-42A)
  3. IBM Power System S1022S (9105-22B)
  4. IBM Power System S1014 (9105-41B)
  5. IBM Power System E1050 (9043-MRX)
  6. IBM Power System L1022 (9786-22H)
  7. IBM Power System L1024 (9786-42H)

Customers with the products below should install OP940.60 or newer firmware to remediate this vulnerability.

Power 9

  1. IBM Power Hardware Management Console System Firmware (7063-CR2)

Workarounds and Mitigations

None

Related

alpinelinux 1
prion 1
nessus 64
cvelist 1
debiancve 1
github 1
cbl_mariner 8
openvas 37
cgr 1
openssl 1
osv 8
hackerone 1
rustsec 1
ibm 29
ubuntucve 1
cve 1
redhatcve 1
nvd 1
veracode 1
f5 1
ics 5
githubexploit 1
wolfi 1
amazon 3
redhat 6
redos 1
fedora 2
rocky 1
oraclelinux 9
freebsd_advisory 1
almalinux 2
freebsd 1
altlinux 2
slackware 1
ubuntu 1
photon 1
alpinelinux
alpinelinux
CVE-2022-4304
2023-02-08 20:15:23
prion
prion
Design/Logic Flaw
2023-02-08 20:15:00
nessus
nessus
Siemens SCALANCE W1750D Devices Inadequate Encryption Strength (CVE-2022-4304)
2023-12-19 00:00:00
SUSE SLES12 Security Update : openssl-1_0_0 (SUSE-SU-2023:2624-1)
2023-06-26 00:00:00
SUSE SLES12 Security Update : compat-openssl098 (SUSE-SU-2023:0581-1)
2023-03-01 00:00:00
cvelist
cvelist
CVE-2022-4304 Timing Oracle in RSA Decryption
2023-02-08 19:04:28
debiancve
debiancve
CVE-2022-4304
2023-02-08 20:15:23
github
github
openssl-src subject to Timing Oracle in RSA Decryption
2023-02-08 22:31:42
cbl_mariner
cbl_mariner
CVE-2022-4304 affecting package openssl 1.1.1k-16
2023-02-14 02:35:59
CVE-2022-4304 affecting package edk2 for versions less than 20240223gitedc6681206c1-1
2024-05-31 18:55:08
CVE-2022-4304 affecting package rust for versions less than 1.72.0-2
2023-10-11 01:41:59
openvas
openvas
openSUSE: Security Advisory for openssl (SUSE-SU-2023:2633-1)
2024-03-04 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:2624-1)
2023-06-26 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:2633-1)
2024-02-28 00:00:00
cgr
cgr
CVE-2022-4304 vulnerabilities
2024-05-19 03:07:16
openssl
openssl
Vulnerability in OpenSSL CVE-2022-4304
2023-02-07 00:00:00
osv
osv
CVE-2022-4304
2023-02-08 20:15:23
Timing Oracle in RSA Decryption
2023-02-07 12:00:00
openssl-src subject to Timing Oracle in RSA Decryption
2023-02-08 22:31:42
hackerone
hackerone
Internet Bug Bounty: OpenSSL vulnerable to the Marvin Attack (CVE-2022-4304)
2023-12-02 23:45:28
rustsec
rustsec
Timing Oracle in RSA Decryption
2023-02-07 12:00:00
ibm
ibm
Security Bulletin: IBM Events Operator is affected by an openssl vulnerability
2023-09-25 14:36:07
Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to information exposure in OpenSSL (CVE-2022-4304)
2023-07-27 17:21:23
Security Bulletin: IBM Aspera Faspex 5.0.5 has addressed CVE-2022-4304
2023-04-03 20:05:38
ubuntucve
ubuntucve
CVE-2022-4304
2023-02-07 00:00:00
cve
cve
CVE-2022-4304
2023-02-08 20:15:23
redhatcve
redhatcve
CVE-2022-4304
2023-02-07 17:27:55
nvd
nvd
CVE-2022-4304
2023-02-08 20:15:23
veracode
veracode
Timing Attack
2023-02-10 13:05:03
f5
f5
K000132943 : OpenSSL vulnerability CVE-2022-4304
2023-03-13 00:00:00
ics
ics
Siemens OpenSSL RSA Decryption in SIMATIC
2023-08-10 12:00:00
Mitsubishi Electric CC-Link IE TSN Industrial Managed Switch (Update A)
2024-06-04 12:00:00
Mitsubishi Electric Factory Automation Products
2024-01-04 12:00:00
githubexploit
githubexploit
Exploit for Observable Discrepancy in Openssl
2023-04-24 07:15:33
wolfi
wolfi
CVE-2022-4304 vulnerabilities
2024-06-29 09:08:33
amazon
amazon
Important: openssl
2023-02-03 23:39:00
Important: openssl
2023-02-03 19:19:00
Important: openssl11
2023-02-03 19:19:00
redhat
redhat
(RHSA-2023:4128) Important: edk2 security update
2023-07-18 07:19:33
(RHSA-2023:3408) Moderate: openssl security update
2023-05-31 18:25:53
(RHSA-2023:1405) Important: openssl security update
2023-03-22 10:18:26
redos
redos
ROS-20230418-05
2023-04-18 00:00:00
fedora
fedora
[SECURITY] Fedora 37 Update: edk2-20221117gitfff6d81270b5-13.fc37
2023-02-16 02:06:48
[SECURITY] Fedora 36 Update: edk2-20221117gitfff6d81270b5-14.fc36
2023-03-05 00:54:06
rocky
rocky
openssl security update
2023-03-28 13:07:30
oraclelinux
oraclelinux
openssl security update
2023-03-28 00:00:00
edk2 security update
2023-12-06 00:00:00
openssl security update
2023-03-22 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-23:03.openssl
2023-02-16 00:00:00
almalinux
almalinux
Important: openssl security update
2023-03-22 00:00:00
Important: edk2 security update
2023-05-16 00:00:00
freebsd
freebsd
FreeBSD -- Multiple vulnerabilities in OpenSSL
2023-02-16 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package openssl1.1 version 1.1.1t-alt1
2023-02-20 00:00:00
Security fix for the ALT Linux 10 package openssl1.1 version 1.1.1t-alt1
2023-02-10 00:00:00
slackware
slackware
[slackware-security] openssl
2023-02-07 20:57:57
ubuntu
ubuntu
Node.js vulnerabilities
2024-01-03 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2023-3.0-0530
2023-02-10 00:00:00

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

6.6 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

52.4%

JSON
Related for 80570A7F73F89FD3BB4106EA06E0B9462E4F149DF3D077DC79BA7F7959950DEB
alpinelinux1prion1nessus64cvelist1debiancve1github1cbl_mariner8openvas37cgr1openssl1osv8hackerone1rustsec1ibm29ubuntucve1cve1redhatcve1nvd1veracode1f51ics5githubexploit1wolfi1amazon3redhat6redos1fedora2rocky1oraclelinux9freebsd_advisory1almalinux2freebsd1altlinux2slackware1ubuntu1photon1