CVE-2023-1732 MEDIUM

CVE-2023-1732: Improper random reading in CIRCL

Vendor Cloudflare

Product CIRCL

Weakness CWE-20 · Input validation

Published May 10, 2023

Last update January 27, 2025

View on NVD All CVEs

CVSS base score

5.3/10

Attack vector Local

Attack complexity High

Privileges required None

User interaction Required

Confidentiality Low

Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:N

What the vulnerability does

01Description

When sampling randomness for a shared secret, the implementation of Kyber and FrodoKEM, did not check whether crypto/rand.Read() returns an error. In rare deployment cases (error thrown by the Read() function), this could lead to a predictable shared secret. The tkn20 and blindrsa components did not check whether enough randomness was returned from the user provided randomness source. Typically the user provides crypto/rand.Reader, which in the vast majority of cases will always return the right number random bytes. In the cases where it does not, or the user provides a source that does not, the blinding for blindrsa is weak and integrity of the plaintext is not ensured in tkn20.

Key dates

02Disclosure timeline

May 10, 2023 CVE published

January 27, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2023-1732 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/20.html

Related vulnerabilities

CVE-2023-1732: Improper random reading in CIRCL

01Description

02Disclosure timeline

03References

04Related CVE