CVE-2023-6237

Source
https://cve.org/CVERecord?id=CVE-2023-6237
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-6237.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2023-6237
Downstream
Related
Published
2024-04-25T06:27:26.990Z
Modified
2026-06-18T19:38:31.349790Z
Severity
  • 5.9 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
Excessive time spent checking invalid RSA public keys
Details

Issue summary: Checking excessively long invalid RSA public keys may take a long time.

Impact summary: Applications that use the function EVPPKEYpublic_check() to check RSA public keys may experience long delays. Where the key that is being checked has been obtained from an untrusted source this may lead to a Denial of Service.

When function EVPPKEYpublic_check() is called on RSA public keys, a computation is done to confirm that the RSA modulus, n, is composite. For valid RSA keys, n is a product of two or more large primes and this computation completes quickly. However, if n is an overly large prime, then this computation would take a long time.

An application that calls EVPPKEYpublic_check() and supplies an RSA key obtained from an untrusted source could be vulnerable to a Denial of Service attack.

The function EVPPKEYpublic_check() is not called from other OpenSSL functions however it is called from the OpenSSL pkey command line application. For that reason that application is also vulnerable if used with the '-pubin' and '-check' options on untrusted data.

The OpenSSL SSL/TLS implementation is not affected by this issue.

The OpenSSL 3.0 and 3.1 FIPS providers are affected by this issue.

Database specific
{
    "cna_assigner": "openssl",
    "cwe_ids": [
        "CWE-606"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/6xxx/CVE-2023-6237.json"
}
References

Affected packages

Git / github.com/openssl/openssl

Affected ranges

Type
GIT
Repo
https://github.com/openssl/openssl
Events
Database specific
{
    "source": [
        "AFFECTED_FIELD",
        "REFERENCES"
    ],
    "extracted_events": [
        {
            "introduced": "3.0.0"
        },
        {
            "fixed": "3.0.13"
        },
        {
            "introduced": "3.1.0"
        },
        {
            "fixed": "3.1.5"
        },
        {
            "introduced": "3.2.0"
        },
        {
            "fixed": "3.2.1"
        }
    ]
}

Affected versions

openssl-3.*
openssl-3.0.0
openssl-3.0.1
openssl-3.0.10
openssl-3.0.11
openssl-3.0.12
openssl-3.0.2
openssl-3.0.3
openssl-3.0.4
openssl-3.0.5
openssl-3.0.6
openssl-3.0.7
openssl-3.0.8
openssl-3.0.9
openssl-3.1.0
openssl-3.1.1
openssl-3.1.2
openssl-3.1.3
openssl-3.1.4
openssl-3.2.0

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-6237.json"
vanir_signatures_modified
"2026-06-18T19:38:31Z"
vanir_signatures
[
    {
        "source": "https://github.com/openssl/openssl/commit/0b0f7abfb37350794a4b8960fafc292cd5d1b84d",
        "target": {
            "function": "ossl_rsa_sp800_56b_check_public",
            "file": "crypto/rsa/rsa_sp800_56b_check.c"
        },
        "deprecated": false,
        "id": "CVE-2023-6237-07b4356d",
        "digest": {
            "function_hash": "36262343259786368621085857695218833956",
            "length": 1258.0
        },
        "signature_type": "Function",
        "signature_version": "v1"
    },
    {
        "source": "https://github.com/openssl/openssl/commit/18c02492138d1eb8b6548cb26e7b625fb2414a2a",
        "target": {
            "file": "crypto/rsa/rsa_sp800_56b_check.c"
        },
        "deprecated": false,
        "id": "CVE-2023-6237-3d282511",
        "digest": {
            "line_hashes": [
                "5799985256469090440161975918621279176",
                "231956326038171660204156138522531293340",
                "72751756268789884712810101003534450503",
                "314070120765545521861021195160721661288",
                "163275361520424784336712083888861921840",
                "80433659035868977858238900915029720241",
                "55330043341397734539339972248704545042",
                "79386981174192347288537193082013598235"
            ],
            "threshold": 0.9
        },
        "signature_type": "Line",
        "signature_version": "v1"
    },
    {
        "source": "https://github.com/openssl/openssl/commit/0b0f7abfb37350794a4b8960fafc292cd5d1b84d",
        "target": {
            "file": "crypto/rsa/rsa_sp800_56b_check.c"
        },
        "deprecated": false,
        "id": "CVE-2023-6237-7dd742ac",
        "digest": {
            "line_hashes": [
                "5799985256469090440161975918621279176",
                "231956326038171660204156138522531293340",
                "72751756268789884712810101003534450503",
                "314070120765545521861021195160721661288",
                "163275361520424784336712083888861921840",
                "80433659035868977858238900915029720241",
                "55330043341397734539339972248704545042",
                "79386981174192347288537193082013598235"
            ],
            "threshold": 0.9
        },
        "signature_type": "Line",
        "signature_version": "v1"
    },
    {
        "source": "https://github.com/openssl/openssl/commit/18c02492138d1eb8b6548cb26e7b625fb2414a2a",
        "target": {
            "function": "ossl_rsa_sp800_56b_check_public",
            "file": "crypto/rsa/rsa_sp800_56b_check.c"
        },
        "deprecated": false,
        "id": "CVE-2023-6237-8aca94dc",
        "digest": {
            "function_hash": "36262343259786368621085857695218833956",
            "length": 1258.0
        },
        "signature_type": "Function",
        "signature_version": "v1"
    },
    {
        "source": "https://github.com/openssl/openssl/commit/a830f551557d3d66a84bbb18a5b889c640c36294",
        "target": {
            "file": "crypto/rsa/rsa_sp800_56b_check.c"
        },
        "deprecated": false,
        "id": "CVE-2023-6237-98851d99",
        "digest": {
            "line_hashes": [
                "5799985256469090440161975918621279176",
                "231956326038171660204156138522531293340",
                "72751756268789884712810101003534450503",
                "314070120765545521861021195160721661288",
                "163275361520424784336712083888861921840",
                "80433659035868977858238900915029720241",
                "55330043341397734539339972248704545042",
                "79386981174192347288537193082013598235"
            ],
            "threshold": 0.9
        },
        "signature_type": "Line",
        "signature_version": "v1"
    },
    {
        "source": "https://github.com/openssl/openssl/commit/a830f551557d3d66a84bbb18a5b889c640c36294",
        "target": {
            "function": "ossl_rsa_sp800_56b_check_public",
            "file": "crypto/rsa/rsa_sp800_56b_check.c"
        },
        "deprecated": false,
        "id": "CVE-2023-6237-e95520da",
        "digest": {
            "function_hash": "36262343259786368621085857695218833956",
            "length": 1258.0
        },
        "signature_type": "Function",
        "signature_version": "v1"
    }
]