CVE-2023-1732

Aliases:GHSA-2q89-485c-9j2xGO-2023-1765

Advisory lineage Upstream: 0 Downstream: 1

Downstream

OPENSUSE-SU-2025:14663-1

Modified

Published: 10 May 2023, 11:41

Last modified:27 Jan 2025, 18:32

Vulnerability Summary

Overall Risk (default)

medium

33/100

CVSS Score

8.2 HIGH

v3.1 (nvd)

EPSS Score

0.41% LOW

0% probability +0.22%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

10 May 2023, 11:41

Published

Vulnerability first disclosed

27 Jan 2025, 18:32

Last Modified

Vulnerability information updated

Description

When sampling randomness for a shared secret, the implementation of Kyber and FrodoKEM, did not check whether crypto/rand.Read() returns an error. In rare deployment cases (error thrown by the Read() function), this could lead to a predictable shared secret. The tkn20 and blindrsa components did not check whether enough randomness was returned from the user provided randomness source. Typically the user provides crypto/rand.Reader, which in the vast majority of cases will always return the right number random bytes. In the cases where it does not, or the user provides a source that does not, the blinding for blindrsa is weak and integrity of the plaintext is not ensured in tkn20.

CVSS Metrics

v3.1•MEDIUM•Score: 5.3CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:N
v3.1•HIGH•Score: 8.2CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N

EPSS Trends

Current EPSS score: 0.41%• Percentile: 62%

Techniques & Countermeasures

CWE-20•Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
CWE-755•Improper Handling of Exceptional Conditions
The product does not handle or incorrectly handles an exceptional condition.

Affected Systems

cloudflare•circl
< 1.3.3
github.com/cloudflare•circl
< 1.3.3