CVE-2022-4304
- Source
- https://cve.org/CVERecord?id=CVE-2022-4304
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-4304.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2022-4304
- Aliases
- Downstream
- Related
- Published
- 2023-02-08T20:15:23.887Z
- Modified
- 2026-03-14T11:57:20.473258Z
- Severity
-
- 5.9 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
- Summary
- [none]
- Details
-
A timing based side channel exists in the OpenSSL RSA Decryption implementation which could be sufficient to recover a plaintext across a network in a Bleichenbacher style attack. To achieve a successful decryption an attacker would have to be able to send a very large number of trial messages for decryption. The vulnerability affects all RSA padding modes: PKCS#1 v1.5, RSA-OEAP and RSASVE.
For example, in a TLS connection, RSA is commonly used by a client to send an encrypted pre-master secret to the server. An attacker that had observed a genuine connection between a client and a server could use this flaw to send trial messages to the server and record the time taken to process them. After a sufficiently large number of messages the attacker could recover the pre-master secret used for the original connection and thus be able to decrypt the application data sent over that connection.
- References
Affected packages
Git / github.com/openssl/openssl
Affected ranges
- Type
- GIT
- Repo
- https://github.com/openssl/openssl
- Events
-
IntroducedFixedIntroducedFixedIntroducedFixedIntroduced0 Unknown introduced commit / All previous commits are affectedFixed
- Database specific
{ "versions": [ { "introduced": "1.0.2" }, { "fixed": "1.0.2zg" }, { "introduced": "1.1.1" }, { "fixed": "1.1.1t" }, { "introduced": "3.0.0" }, { "fixed": "3.0.8" }, { "introduced": "0" }, { "fixed": "3.2.1" } ] }
Affected versions
Other
openssl-3.*
Database specific
unresolved_ranges
[
{
"events": [
{
"introduced": "0"
},
{
"fixed": "7.2.40"
}
]
},
{
"events": [
{
"introduced": "2.7.0"
},
{
"fixed": "2.7.11"
}
]
},
{
"events": [
{
"introduced": "2.8.0"
},
{
"fixed": "3.7.34"
}
]
},
{
"events": [
{
"introduced": "3.8.0"
},
{
"fixed": "3.11.22"
}
]
},
{
"events": [
{
"introduced": "4.0.0"
},
{
"fixed": "4.3.16"
}
]
},
{
"events": [
{
"introduced": "4.4.0"
},
{
"fixed": "4.6.3"
}
]
}
]
vanir_signatures
[
{
"signature_type": "Line",
"deprecated": false,
"id": "CVE-2022-4304-c377fa22",
"target": {
"file": "include/openssl/opensslv.h"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"28170854778703993674264004058177114599",
"73132526844288570625317440636111911761",
"177405411499435185068645597737938634778",
"224809958623850711330610094965797758930",
"295554444428855106393106961197201359586"
]
},
"signature_version": "v1",
"source": "https://github.com/openssl/openssl/commit/e04bd3433fd84e1861bf258ea37928d9845e6a86"
},
{
"signature_type": "Line",
"deprecated": false,
"id": "CVE-2022-4304-e051451f",
"target": {
"file": "crypto/opensslv.h"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"251633914150035957322733061977107206211",
"338514574181828579838011565939158652696",
"76638288692106140328510055542557597351",
"142922657400765574308962710386922248045",
"71649992455794854055653842592139575350",
"65527166711110472566013424527579064967",
"253196866009476977787139000804413898733",
"172177136897997206866313011107384691461"
]
},
"signature_version": "v1",
"source": "https://github.com/openssl/openssl/commit/e818b74be2170fbe957a07b0da4401c2b694b3b8"
}
]
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-4304.json"