CVE-2020-1759 : A vulnerability was found in Red Hat Ceph Storage 4 and Red Hat Openshift Contai

A vulnerability was found in Red Hat Ceph Storage 4 and Red Hat Openshift Container Storage 4.2 where, A nonce reuse vulnerability was discovered in the secure mode of the messenger v2 protocol, which can allow an attacker to forge auth tags and potentially manipulate the data by leveraging the reuse of a nonce in a session. Messages encrypted using a reused nonce value are susceptible to serious confidentiality and integrity attacks.

Published 2020-04-13 13:15:13

Updated 2021-08-04 17:15:09

Source Red Hat, Inc.

View at NVD, CVE.org

Products affected by CVE-2020-1759

Redhat » Openshift » Version: 4.2
cpe:2.3:a:redhat:openshift:4.2:*:*:*:*:*:*:*
Matching versions
Redhat » Openstack » Version: 15
cpe:2.3:a:redhat:openstack:15:*:*:*:*:*:*:*
Matching versions
Redhat » Ceph Storage » Version: 4.0
cpe:2.3:a:redhat:ceph_storage:4.0:*:*:*:*:*:*:*
Matching versions
Fedoraproject » Fedora » Version: 31
cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*
Matching versions
Linuxfoundation » Ceph
Versions before (<) 14.2.21
cpe:2.3:a:linuxfoundation:ceph:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2020-1759

EPSS FAQ

0.41%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 59 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2020-1759

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.8	MEDIUM	AV:N/AC:M/Au:N/C:P/I:P/A:N	8.6	4.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: None
6.4	MEDIUM	CVSS:3.0/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N	1.2	5.2	Red Hat, Inc.
Attack Vector: Adjacent Network Attack Complexity: High Privileges Required: None User Interaction: Required Scope: Unchanged Confidentiality: High Integrity: High Availability: None
6.8	MEDIUM	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N	1.6	5.2	NIST
Attack Vector: Network Attack Complexity: High Privileges Required: None User Interaction: Required Scope: Unchanged Confidentiality: High Integrity: High Availability: None

CWE ids for CVE-2020-1759

CWE-323 Reusing a Nonce, Key Pair in Encryption

Nonces should be used for the present occasion and only once.

Assigned by: secalert@redhat.com (Primary)
CWE-330 Use of Insufficiently Random Values

The product uses insufficiently random numbers or values in a security context that depends on unpredictable numbers.

Assigned by: nvd@nist.gov (Secondary)

References for CVE-2020-1759

https://security.gentoo.org/glsa/202105-39

Ceph: Multiple vulnerabilities (GLSA 202105-39) — Gentoo security
Third Party Advisory

CVEs referencing this url
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1759

1811712 – (CVE-2020-1759) CVE-2020-1759 ceph: secure mode of msgr2 breaks both confidentiality and integrity aspects for long-lived sessions
Issue Tracking;Patch;Vendor Advisory
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/P3A2UFR5IUIEXJUCF64GQ5OVLCZGODXE/

[SECURITY] Fedora 31 Update: ceph-14.2.9-1.fc31 - package-announce - Fedora Mailing-Lists
Mailing List;Third Party Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2020-1759

Products affected by CVE-2020-1759

Exploit prediction scoring system (EPSS) score for CVE-2020-1759

CVSS scores for CVE-2020-1759

CWE ids for CVE-2020-1759

References for CVE-2020-1759