CVE-2022-35255

05.12.2022, 22:15

A weak randomness in WebCrypto keygen vulnerability exists in Node.js 18 due to a change with EntropySource() in SecretKeyGenTraits::DoKeyGen() in src/crypto/crypto_keygen.cc. There are two problems with this: 1) It does not check the return value, it assumes EntropySource() always succeeds, but it can (and sometimes will) fail. 2) The random data returned byEntropySource() may not be cryptographically strong and therefore not suitable as keying material.

PRNG

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	9.1 CRITICAL	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
hackerone	CNA	---				---
CVE	ADP	---				---
CISA-ADP	ADP	9.1 CRITICAL	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Base Score

CVSS 3.x

EPSS Score

Percentile: 78%

Vendor	Product	Version
nodejs	node.js	15.0.0 ≤ 𝑥 ≤ 15.14.0
nodejs	node.js	16.0.0 ≤ 𝑥 ≤ 16.12.0
nodejs	node.js	16.13.0 ≤ 𝑥 < 16.17.1
nodejs	node.js	18.0.0 ≤ 𝑥 < 18.9.1
siemens	sinec_ins	𝑥 < 1.0
siemens	sinec_ins	1.0
siemens	sinec_ins	1.0:sp1
siemens	sinec_ins	1.0:sp2
debian	debian_linux	11.0

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

nodejs

bullseye	12.22.12~dfsg-1~deb11u4 fixed
buster	not-affected
bullseye (security)	12.22.12~dfsg-1~deb11u5 fixed
bookworm	18.19.0+dfsg-6~deb12u2 fixed
bookworm (security)	18.19.0+dfsg-6~deb12u1 fixed
sid	20.17.0+dfsg-2 fixed
trixie	20.17.0+dfsg-2 fixed

Ubuntu Releases

Ubuntu Product

Codename

nodejs

mantic	not-affected
lunar	not-affected
kinetic	ignored
jammy	not-affected
focal	not-affected
bionic	not-affected
xenial	not-affected
trusty	not-affected

Known Exploits!

Common Weakness Enumeration

CWE-338 - Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)
The product uses a Pseudo-Random Number Generator (PRNG) in a security context, but the PRNG's algorithm is not cryptographically strong.

References

https://cert-portal.siemens.com/productcert/pdf/ssa-332410.pdf

https://hackerone.com/reports/1690000

https://security.netapp.com/advisory/ntap-20230113-0002/

https://www.debian.org/security/2023/dsa-5326

https://cert-portal.siemens.com/productcert/pdf/ssa-332410.pdf

https://hackerone.com/reports/1690000

https://security.netapp.com/advisory/ntap-20230113-0002/

https://www.debian.org/security/2023/dsa-5326