CVE-2023-0361 : A timing side-channel in the handling of RSA ClientKeyExchange messages was disc

A timing side-channel in the handling of RSA ClientKeyExchange messages was discovered in GnuTLS. This side-channel can be sufficient to recover the key encrypted in the RSA ciphertext across a network in a Bleichenbacher style attack. To achieve a successful decryption the attacker would need to send a large amount of specially crafted messages to the vulnerable server. By recovering the secret from the ClientKeyExchange message, the attacker would be able to decrypt the application data exchanged over that connection.

Published 2023-02-15 18:15:12

Updated 2025-03-19 18:15:19

Source Red Hat, Inc.

View at NVD, CVE.org

Products affected by CVE-2023-0361

Debian » Debian Linux » Version: 10.0
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux » Version: 8.0
cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux » Version: 9.0
cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*
Matching versions
GNU » Gnutls » Version: 3.6.8-11.el8 2
cpe:2.3:a:gnu:gnutls:3.6.8-11.el8_2:*:*:*:*:*:*:*
Matching versions
Fedoraproject » Fedora » Version: 36
cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*
Matching versions
Fedoraproject » Fedora » Version: 37
cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*
Matching versions
Fedoraproject » Fedora » Version: 38
cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*
Matching versions
Netapp » Ontap Select Deploy Administration Utility » Version: N/A
cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:*
Matching versions
Netapp » Active Iq Unified Manager » Version: N/A For Vmware Vsphere
cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*
Matching versions
Netapp » Converged Systems Advisor Agent » Version: N/A
cpe:2.3:a:netapp:converged_systems_advisor_agent:-:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2023-0361

EPSS FAQ

2.94%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 85 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2023-0361

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
7.4	HIGH	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N	2.2	5.2	134c704f-9b21-4f2e-91b3-4a467353bcc0	2025-03-19
Attack Vector: Network Attack Complexity: High Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: None
7.4	HIGH	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N	2.2	5.2	NIST
Attack Vector: Network Attack Complexity: High Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: None
7.4	HIGH	AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N	N/A	N/A	Oracle:CPUOct2023
Attack Vector: Network Attack Complexity: High Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: None

CWE ids for CVE-2023-0361

CWE-203 Observable Discrepancy

The product behaves differently or sends different responses under different circumstances in a way that is observable to an unauthorized actor, which exposes security-relevant information about the state of the product, such as whether a particular operation was successful or not.
Assigned by:
- 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)
- nvd@nist.gov (Primary)

References for CVE-2023-0361

https://lists.debian.org/debian-lts-announce/2023/02/msg00015.html

[SECURITY] [DLA 3321-1] gnutls28 security update
Mailing List;Third Party Advisory
https://github.com/tlsfuzzer/tlsfuzzer/pull/679

Timing attacks - docs and minor fixes by tomato42 · Pull Request #679 · tlsfuzzer/tlsfuzzer · GitHub
Issue Tracking;Patch
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z634YBXAJ5VLDI62IOPBVP5K6YFHAWCY/

[SECURITY] Fedora 38 Update: guile-gnutls-3.7.11-1.fc38 - package-announce - Fedora Mailing-Lists
https://access.redhat.com/security/cve/CVE-2023-0361

CVE-2023-0361- Red Hat Customer Portal
Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WS4KVDOG6QTALWHC2QE4Y7VPDRMLTRWQ/

[SECURITY] Fedora 36 Update: gnutls-3.8.0-2.fc36 - package-announce - Fedora Mailing-Lists
Mailing List;Third Party Advisory
https://gitlab.com/gnutls/gnutls/-/issues/1050

Timing sidechannel in RSA decryption (#1050) · Issues · gnutls / GnuTLS · GitLab
Exploit;Issue Tracking;Vendor Advisory
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Z634YBXAJ5VLDI62IOPBVP5K6YFHAWCY/

[SECURITY] Fedora 38 Update: guile-gnutls-3.7.11-1.fc38 - package-announce - Fedora Mailing-Lists
Mailing List;Third Party Advisory
https://security.netapp.com/advisory/ntap-20230725-0005/

July 2023 MySQL Server Vulnerabilities in NetApp Products | NetApp Product Security

CVEs referencing this url
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UFIA3X4IZ3CW7SRQ2UHNHNPMRIAWF2FI/

[SECURITY] Fedora 37 Update: gnutls-3.8.0-1.fc37 - package-announce - Fedora Mailing-Lists
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UFIA3X4IZ3CW7SRQ2UHNHNPMRIAWF2FI/

[SECURITY] Fedora 37 Update: gnutls-3.8.0-1.fc37 - package-announce - Fedora Mailing-Lists
Mailing List;Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WS4KVDOG6QTALWHC2QE4Y7VPDRMLTRWQ/

[SECURITY] Fedora 36 Update: gnutls-3.8.0-2.fc36 - package-announce - Fedora Mailing-Lists
https://security.netapp.com/advisory/ntap-20230324-0005/

CVE-2023-0361 GNU TLS Vulnerability in NetApp Products | NetApp Product Security
Third Party Advisory

Jump to

Vulnerability Details : CVE-2023-0361

Products affected by CVE-2023-0361

Exploit prediction scoring system (EPSS) score for CVE-2023-0361

CVSS scores for CVE-2023-0361

CWE ids for CVE-2023-0361

References for CVE-2023-0361