CVE-2023-6935

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2023-6935
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-6935.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2023-6935
Downstream
Published
2024-02-09T22:25:04.663Z
Modified
2026-05-28T04:09:46.102106903Z
Severity
  • 5.9 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
Summary
Marvin Attack vulnerability in SP Math All RSA
Details

wolfSSL SP Math All RSA implementation is vulnerable to the Marvin Attack, new variation of a timing Bleichenbacher style attack, when built with the following options to configure:

--enable-all CFLAGS="-DWOLFSSLSTATICRSA"

The define “WOLFSSLSTATICRSA” enables static RSA cipher suites, which is not recommended, and has been disabled by default since wolfSSL 3.6.6.  Therefore the default build since 3.6.6, even with "--enable-all", is not vulnerable to the Marvin Attack. The vulnerability is specific to static RSA cipher suites, and expected to be padding-independent.

The vulnerability allows an attacker to decrypt ciphertexts and forge signatures after probing with a large number of test observations. However the server’s private key is not exposed.

Database specific 
{
    "cwe_ids": [
        "CWE-203"
    ],
    "cna_assigner": "wolfSSL",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/6xxx/CVE-2023-6935.json"
}
References

Affected packages

Git / github.com/wolfssl/wolfssl

Affected ranges

Type
GIT
Repo
https://github.com/wolfssl/wolfssl
Events
Introduced
182028819d5d1b3beeea15a3f3117a06608b62b0

Affected versions

Other
WCv4-rng-stable
WCv4-stable
l
list
wolfEntropy1
wolfEntropy2
wolfEntropy2d
wolfRand-RC1
wolfRand-RC2
WCv4.*
WCv4.0-RC1
WCv4.0-RC2
WCv4.0-RC3
WCv4.0-RC4
WCv4.0-RC5
WCv4.0-RC6
WCv4.0-RC7
WCv4.0-RC8
WCv4.0-RC9
WCv5.*
WCv5.0-RC10
WCv5.0-RC11
WCv5.0-RC12
WCv5.0-RC2
WCv5.0-RC3
WCv5.0-RC4
WCv5.0-RC5
WCv5.0-RC6
WCv5.0-RC7
WCv5.0-RC8
WCv5.0-RC9
WCv5.2.1-PILOT
WCv5.2.3-ARMv8-PAA
WCv5.2.3-ARMv8-PAA-r2
WCv5.2.3-DHGENPUB
WCv5.2.3-DHGENPUB-r2
WCv5.2.3-RSA-SWITCH
WCv5.2.3-STM32-PAA
WCv5.2.4-KRNL-CHKIN
WCv5.2.4-KRNL-CHKIN-r4
WCv5.2.4-KRNL-CHKIN-r5
WCv5.2.5-STM32-PAA
WCv6.*
WCv6.0.0-RC1
WCv6.0.0-RC2
WCv6.0.0-RC3
WCv6.0.0-RC4
WCv6.0.0-RC5
WCv6.0.0-linuxkm-UPDT-RC1
WCv6.0.0-linuxkm-UPDT-RC2
v3.*
v3.12.2-stable
v3.13.0-stable
v3.13.2
v3.13.3
v3.14.0-stable
v3.14.0a
v3.14.0b
v3.14.2
v3.14.4
v3.14.5
v3.15.0-stable
v3.15.3-stable
v3.15.5-stable
v3.15.5a
v3.15.6
v3.15.7-stable
v3.15.8
v4.*
v4.0.0-stable
v4.1.0-stable
v4.2.0-stable
v4.2.0c
v4.3.0-stable
v4.4.0-stable
v4.5.0-stable
v4.6.0-stable
v4.7.0-stable
v4.7.1r
v4.8.0-stable
v4.8.1-stable
v5.*
v5.0.0-stable
v5.1.0-stable
v5.1.1-stable
v5.2.0-stable
v5.2.1
v5.2.1-stable
v5.2.1-stable-OS_Seed-HdrOnly
v5.3.0-stable
v5.4.0-stable
v5.5.0-stable
v5.5.1-stable
v5.5.2-stable
v5.5.3-stable
v5.5.4-stable
v5.6.0-stable
v5.6.2-stable
v5.6.3-stable
v5.6.4-stable
v5.6.6-stable
v5.7.0-stable
v5.7.2-stable
v5.7.4-stable
v5.7.6-stable
v5.8.0-stable
v5.8.2-stable
v5.8.4-stable
v5.9.0-stable
v5.9.1-stable

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-6935.json"