CVE-2024-26306

iPerf3 before 3.17, when used with OpenSSL before 3.2.0 as a server with RSA authentication, allows a timing side channel in RSA decryption operations. This side channel could be sufficient for an attacker to recover credential plaintext. It requires the attacker to send a large number of messages for decryption, as described in "Everlasting ROBOT: the Marvin Attack" by Hubert Kario.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/26xxx/CVE-2024-26306.json",
    "cna_assigner": "mitre",
    "unresolved_ranges": [
        {
            "extracted_events": [
                {
                    "fixed": "3.2.0"
                }
            ],
            "source": "DESCRIPTION"
        }
    ]
}

References

Affected packages

Git / github.com/esnet/iperf

Affected ranges

Type

GIT

Repo

https://github.com/esnet/iperf

Events

Introduced

6f6716aed146d5e2293f94b2ac44f6189f2ccd27

Fixed

64b324df266ae7d44d5a75956b8ff7cbcd1d21fe

Database specific

{
    "extracted_events": [
        {
            "introduced": "iPerf3"
        },
        {
            "fixed": "3.17"
        },
        {
            "introduced": "0"
        },
        {
            "fixed": "3.17"
        }
    ],
    "cpe": "cpe:2.3:a:es:iperf3:*:*:*:*:*:*:*:*",
    "source": [
        "DESCRIPTION",
        "CPE_RANGE",
        "REFERENCES"
    ]
}

Affected versions

3.*

3.0-ALPHA1

3.0-BETA1

3.0-BETA2

3.0-BETA3

3.0-BETA4

3.0-BETA5

3.0.1

3.0.4

3.1

3.10

3.10.1

3.11

3.12

3.13

3.14

3.15

3.16

3.16-beta1

3.1b1

3.1b2

3.1b3

3.2

3.2rc1

3.3

3.4

3.5

3.6

3.7

3.8

3.8.1

3.9

Other

iperf3

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-26306.json"