CVE-2021-23840

CVSS V2 Medium 5 CVSS V3 High 7.5

Description

Calls to EVP_CipherUpdate, EVP_EncryptUpdate and EVP_DecryptUpdate may overflow the output length argument in some cases where the input length is close to the maximum permissable length for an integer on the platform. In such cases the return value from the function call will be 1 (indicating success), but the output length value will be negative. This could cause applications to behave incorrectly or crash. OpenSSL versions 1.1.1i and below are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1j. OpenSSL versions 1.0.2x and below are affected by this issue. However OpenSSL 1.0.2 is out of support and no longer receiving public updates. Premium support customers of OpenSSL 1.0.2 should upgrade to 1.0.2y. Other users should upgrade to 1.1.1j. Fixed in OpenSSL 1.1.1j (Affected 1.1.1-1.1.1i). Fixed in OpenSSL 1.0.2y (Affected 1.0.2-1.0.2x).

Overview

CVE ID
CVE-2021-23840

Assigner
openssl-security@openssl.org

Vulnerability Status
Analyzed

Published Version
2021-02-16T17:15:13

Last Modified Date
2022-08-29T20:27:15

Weakness Enumerations

CWE	URL
CWE-190	http://cwe.mitre.org/data/definitions/190.html

CPE Configuration (Product)

CPE	Vulnerable	Operator	Version Start	Version End
		AND
cpe:2.3:a:openssl:openssl::::::::	1	OR	1.0.2	1.0.2y
cpe:2.3:a:openssl:openssl::::::::	1	OR	1.1.1	1.1.1j
		AND
cpe:2.3:o:debian:debian_linux:10.0:::::::*	1	OR
		AND
cpe:2.3:a:tenable:log_correlation_engine::::::::	1	OR		6.0.8
cpe:2.3:a:tenable:nessus_network_monitor:5.11.0:::::::*	1	OR
cpe:2.3:a:tenable:nessus_network_monitor:5.11.1:::::::*	1	OR
cpe:2.3:a:tenable:nessus_network_monitor:5.12.0:::::::*	1	OR
cpe:2.3:a:tenable:nessus_network_monitor:5.12.1:::::::*	1	OR
cpe:2.3:a:tenable:nessus_network_monitor:5.13.0:::::::*	1	OR
		AND
cpe:2.3:a:oracle:business_intelligence:5.5.0.0.0::::enterprise:::	1	OR
cpe:2.3:a:oracle:business_intelligence:5.9.0.0.0::::enterprise:::	1	OR
cpe:2.3:a:oracle:business_intelligence:12.2.1.3.0::::enterprise:::	1	OR
cpe:2.3:a:oracle:business_intelligence:12.2.1.4.0::::enterprise:::	1	OR
cpe:2.3:a:oracle:communications_cloud_native_core_policy:1.15.0:::::::*	1	OR
cpe:2.3:a:oracle:enterprise_manager_for_storage_management:13.4.0.0:::::::*	1	OR
cpe:2.3:a:oracle:enterprise_manager_ops_center:12.4.0.0:::::::*	1	OR
cpe:2.3:a:oracle:graalvm:19.3.5::::enterprise:::	1	OR
cpe:2.3:a:oracle:graalvm:20.3.1.2::::enterprise:::	1	OR
cpe:2.3:a:oracle:graalvm:21.0.0.2::::enterprise:::	1	OR
cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools::::::::	1	OR		9.2.6.0
cpe:2.3:a:oracle:jd_edwards_world_security:a9.4:::::::*	1	OR
cpe:2.3:a:oracle:mysql_server::::::::	1	OR		5.7.33
cpe:2.3:a:oracle:mysql_server::::::::	1	OR	8.0.15	8.0.23
cpe:2.3:a:oracle:nosql_database::::::::	1	OR		20.3
		AND
cpe:2.3:a:mcafee:epolicy_orchestrator::::::::	1	OR		5.10.0
cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:-::::::	1	OR
cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_1::::::	1	OR
cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_10::::::	1	OR
cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_2::::::	1	OR
cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_3::::::	1	OR
cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_4::::::	1	OR
cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_5::::::	1	OR
cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_6::::::	1	OR
cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_7::::::	1	OR
cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_8::::::	1	OR
cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_9::::::	1	OR
		AND
cpe:2.3:o:fujitsu:m10-1_firmware::::::::	1	OR		xcp2410
cpe:2.3:h:fujitsu:m10-1:-:::::::*	0	OR
		AND
cpe:2.3:o:fujitsu:m10-4_firmware::::::::	1	OR		xcp2410
cpe:2.3:h:fujitsu:m10-4:-:::::::*	0	OR
		AND
cpe:2.3:o:fujitsu:m10-4s_firmware::::::::	1	OR		xcp2410
cpe:2.3:h:fujitsu:m10-4s:-:::::::*	0	OR
		AND
cpe:2.3:o:fujitsu:m12-1_firmware::::::::	1	OR		xcp2410
cpe:2.3:h:fujitsu:m12-1:-:::::::*	0	OR
		AND
cpe:2.3:o:fujitsu:m12-2_firmware::::::::	1	OR		xcp2410
cpe:2.3:h:fujitsu:m12-2:-:::::::*	0	OR
		AND
cpe:2.3:o:fujitsu:m12-2s_firmware::::::::	1	OR		xcp2410
cpe:2.3:h:fujitsu:m12-2s:-:::::::*	0	OR
		AND
cpe:2.3:o:fujitsu:m10-1_firmware::::::::	1	OR		xcp3110
cpe:2.3:h:fujitsu:m10-1:-:::::::*	0	OR
		AND
cpe:2.3:o:fujitsu:m10-4_firmware::::::::	1	OR		xcp3110
cpe:2.3:h:fujitsu:m10-4:-:::::::*	0	OR
		AND
cpe:2.3:o:fujitsu:m10-4s_firmware::::::::	1	OR		xcp3110
cpe:2.3:h:fujitsu:m10-4s:-:::::::*	0	OR
		AND
cpe:2.3:o:fujitsu:m12-1_firmware::::::::	1	OR		xcp3110
cpe:2.3:h:fujitsu:m12-1:-:::::::*	0	OR
		AND
cpe:2.3:o:fujitsu:m12-2_firmware::::::::	1	OR		xcp3110
cpe:2.3:h:fujitsu:m12-2:-:::::::*	0	OR
		AND
cpe:2.3:o:fujitsu:m12-2s_firmware::::::::	1	OR		xcp3110
cpe:2.3:h:fujitsu:m12-2s:-:::::::*	0	OR
		AND
cpe:2.3:a:nodejs:node.js:::::-:::*	1	OR	10.0.0	10.12.0
cpe:2.3:a:nodejs:node.js:::::lts:::*	1	OR	10.13.0	10.24.0
cpe:2.3:a:nodejs:node.js:::::-:::*	1	OR	12.0.0	12.12.0
cpe:2.3:a:nodejs:node.js:::::lts:::*	1	OR	12.13.0	12.21.0
cpe:2.3:a:nodejs:node.js:::::-:::*	1	OR	14.0.0	14.14.0
cpe:2.3:a:nodejs:node.js:::::-:::*	1	OR	15.0.0	15.10.0
cpe:2.3:a:nodejs:node.js:14.15.0::::lts:::	1	OR

CVSS Version 2

Version
2.0

Vector String
AV:N/AC:L/Au:N/C:N/I:N/A:P

Access Vector
NETWORK

Access Compatibility
LOW

Authentication
NONE

Confidentiality Impact
NONE

Integrity Impact
NONE

Availability Impact
PARTIAL

Base Score
5

Severity
MEDIUM

Exploitability Score
10

Impact Score
2.9

CVSS Version 3

Version
3.1

Vector String
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector
NETWORK

Attack Compatibility
LOW

Privileges Required
NONE

User Interaction
NONE

Scope
UNCHANGED

Confidentiality Impact
NONE

Availability Impact
HIGH

Base Score
7.5

Base Severity
HIGH

Exploitability Score
3.9

Impact Score
3.6

References

Reference URL	Reference Tags
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=9b1129239f3ebb1d1c98ce9ed41d5c9476c47cb2	Broken Link
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=6a51b9e1d0cf0bf8515f7201b68fb0a3482b3dc1	Patch Vendor Advisory
https://www.openssl.org/news/secadv/20210216.txt	Vendor Advisory
https://www.debian.org/security/2021/dsa-4855	Third Party Advisory
https://security.netapp.com/advisory/ntap-20210219-0009/	Third Party Advisory
https://www.tenable.com/security/tns-2021-03	Third Party Advisory
https://security.gentoo.org/glsa/202103-03	Third Party Advisory
https://www.tenable.com/security/tns-2021-09	Third Party Advisory
https://www.tenable.com/security/tns-2021-10	Third Party Advisory
https://www.oracle.com/security-alerts/cpuApr2021.html	Patch Third Party Advisory
https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4@%3Cissues.bookkeeper.apache.org%3E	Mailing List Third Party Advisory
https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b@%3Cissues.bookkeeper.apache.org%3E	Mailing List Third Party Advisory
https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44846	Third Party Advisory
https://www.oracle.com//security-alerts/cpujul2021.html	Patch Third Party Advisory
https://www.oracle.com/security-alerts/cpuoct2021.html	Patch Third Party Advisory
https://kc.mcafee.com/corporate/index?page=content&id=SB10366	Third Party Advisory
https://www.oracle.com/security-alerts/cpujan2022.html	Patch Third Party Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf	Third Party Advisory
https://www.oracle.com/security-alerts/cpuapr2022.html

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2021-23840
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23840

History

Created	Old Value	New Value	Data Type	Notes
2022-04-20 16:59:25				Added to TrackCVE
2022-12-05 22:11:36	2021-02-16T17:15Z	2021-02-16T17:15:13	CVE Published Date	updated
2022-12-05 22:11:36		2022-08-29T20:27:15	CVE Modified Date	updated
2022-12-05 22:11:36		Analyzed	Vulnerability Status	updated