low

Encryption SDK vulnerabilities

Published Mon, Sep 28th, 2020

Platforms

Summary

AWS KMS and all versions of AWS Encryption SDKs prior to version 2.0.0 were susceptible to information leakage (an attacker could create ciphertexts that would leak the user’s AWS account ID, encryption context, user agent, and IP address upon decryption), ciphertext forgery (an attacker could create ciphertexts that were accepted by other users) and lack of robustness (an attacker could create ciphertexts that decrypt to different plaintexts for different users).

Affected Services

KMS

Remediation

Update the SDK to the latest secure version.

Tracked CVEs

CVE-2020-8897

References

https://twitter.com/XorNinja/status/1310587707605659649 https://vnhacker.blogspot.com/2020/09/advisory-security-issues-in-aws-kms-and.html

Contributed by https://github.com/0xdabbad00

Entry Status

Finalized

Disclosure Date

Mon, Sep 28th, 2020

Exploitability Period

Known ITW Exploitation

Detection Methods

None

Piercing Index Rating

Discovered by

Thai Duong (thaidn), Google

More vulnerabilities...

low

CloudFormer review

An audit of an AWS open-source project identified a great deal of issues, and as a result AWS made the decision to take it down.

Karim El-Melhaoui, O3 CyberSep 25, 2020

high

CloudFormation resource provider credentials leak

CloudFormation allows the use of Lambda-backed resource providers, wherein Lambda can be used to write custom provisioning logic to be executed during CloudFormation stack operations. The aforement...

Aidan SteeleSep 22, 2020

low

Timing attack with Lambda and CloudWatch Synthetics

The immutability of Lambda versions could be violated via a timing attack against CloudWatch Synthetics canaries.

Ian MckaySep 15, 2020

View all