CVE-2017-16007
MEDIUM5.9EPSS 0.25%Invalid Curve Attack in node-jose
Published: 7/20/2018Modified: 11/8/2023
Also known as:GHSA-rvj9-8cvx-3vq9
Description
Affected versions of `node-jose` are vulnerable to an invalid curve attack. This allows an attacker to recover the private secret key when JWE with Key Agreement with Elliptic Curve Diffie-Hellman Ephemeral Static (ECDH-ES) is used. [Proof of Concept](https://gist.github.com/asanso/fa25685348051ef6a28d49aa0f27a4ae) ## Recommendation Update to version 0.9.3 or later.
Affected packages (1)
- npm/node-josefrom 0, < 0.9.3
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM5.9 | CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N |
References (7)
- ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2017-16007
- PATCHhttps://github.com/cisco/node-jose
- WEBhttp://blog.intothesymmetry.com/2017/03/critical-vulnerability-in-json-web.html
- WEBhttps://gist.github.com/asanso/fa25685348051ef6a28d49aa0f27a4ae
- WEBhttps://github.com/cisco/node-jose/commit/f92cffb4a0398b4b1158be98423369233282e0af
- WEBhttps://github.com/cisco/node-jose/compare/0.9.2...0.9.3
- WEBhttps://github.com/cisco/node-jose/pull/88