Vulnerability Details : CVE-2016-6225
xbcrypt in Percona XtraBackup before 2.3.6 and 2.4.x before 2.4.5 does not properly set the initialization vector (IV) for encryption, which makes it easier for context-dependent attackers to obtain sensitive information from encrypted backup files via a Chosen-Plaintext attack. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-6394.
Exploit prediction scoring system (EPSS) score for CVE-2016-6225
Probability of exploitation activity in the next 30 days: 0.26%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 64 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2016-6225
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
4.3
|
MEDIUM | AV:N/AC:M/Au:N/C:P/I:N/A:N |
8.6
|
2.9
|
NIST |
5.9
|
MEDIUM | CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N |
2.2
|
3.6
|
NIST |
CWE ids for CVE-2016-6225
-
The product stores or transmits sensitive data using an encryption scheme that is theoretically sound, but is not strong enough for the level of protection required.Assigned by: nvd@nist.gov (Primary)
References for CVE-2016-6225
-
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZBVCP6KLFVGG6HSGLHLTMZRD6C4IJSZP/
[SECURITY] Fedora 24 Update: percona-xtrabackup-2.3.6-1.fc24 - package-announce - Fedora Mailing-ListsPatch;Third Party Advisory
-
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BAHI6ETS22FJCMLW7A6SICFKQXF5G2VI/
[SECURITY] Fedora 25 Update: percona-xtrabackup-2.3.6-1.fc25 - package-announce - Fedora Mailing-ListsPatch;Third Party Advisory
-
https://github.com/percona/percona-xtrabackup/pull/266
CVE-2016-6225: xtrabackup encryption is not setting the IV correctly by gl-sergei · Pull Request #266 · percona/percona-xtrabackup · GitHubIssue Tracking;Patch;Third Party Advisory
-
https://github.com/percona/percona-xtrabackup/pull/267
Fix CVE-2016-6225 in 2.4 by gl-sergei · Pull Request #267 · percona/percona-xtrabackup · GitHubIssue Tracking;Patch;Third Party Advisory
-
https://www.percona.com/blog/2017/01/12/cve-2016-6225-percona-xtrabackup-encryption-iv-not-set-properly/
CVE-2016-6225: Percona Xtrabackup Encryption IV Not Being Set Properly - Percona Database Performance BlogVendor Advisory
-
https://bugs.launchpad.net/percona-xtrabackup/+bug/1643949
Bug #1643949 “CVE-2016-6225: xbcrypt/xtrabackup encryption is no...” : Bugs : Percona XtraBackup moved to https://jira.percona.com/projects/PXBIssue Tracking;Patch;Third Party Advisory
-
http://lists.opensuse.org/opensuse-updates/2017-01/msg00125.html
openSUSE-SU-2017:0250-1: moderate: Security update for xtrabackupThird Party Advisory
-
http://lists.opensuse.org/opensuse-updates/2017-01/msg00126.html
openSUSE-SU-2017:0251-1: moderate: Security update for xtrabackupThird Party Advisory
Products affected by CVE-2016-6225
- cpe:2.3:o:fedoraproject:fedora:24:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:25:*:*:*:*:*:*:*
- cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*
- cpe:2.3:o:opensuse:leap:42.2:*:*:*:*:*:*:*
- cpe:2.3:a:percona:xtrabackup:*:*:*:*:*:*:*:*
- cpe:2.3:a:percona:xtrabackup:2.4.3:*:*:*:*:*:*:*
- cpe:2.3:a:percona:xtrabackup:2.4.4:*:*:*:*:*:*:*
- cpe:2.3:a:percona:xtrabackup:2.4.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:percona:xtrabackup:2.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:percona:xtrabackup:2.4.1:*:*:*:*:*:*:*