Rewterz Threat Advisory – CVE-2022-26899 – Microsoft Edge (Chromium-based) Vulnerability
March 21, 2022Rewterz Threat Advisory – Multiple IBM Vulnerabilities
March 21, 2022Rewterz Threat Advisory – CVE-2022-26899 – Microsoft Edge (Chromium-based) Vulnerability
March 21, 2022Rewterz Threat Advisory – Multiple IBM Vulnerabilities
March 21, 2022Severity
High
Analysis Summary
CVE-2022-24759
Node.js @chainsafe/libp2p-noise module is vulnerable to a man-in-the-middle attack, caused by improper validation of signatures during the handshake process. An attacker could exploit this vulnerability to launch a man-in-the-middle attack and gain access to the communication channel between endpoints to obtain sensitive information or further compromise the system.
CVE-2022-24773
Node.js node-forge module could allow a remote attacker to bypass security restrictions, caused by improper signature verification when checking DigestInfo for a proper ASN.1 structure. By using a specially-crafted signature with invalid structures but a valid digest, an attacker could exploit this vulnerability to bypass signature verification.
CVE-2022-24772
Node.js node-forge module could allow a remote attacker to bypass security restrictions, caused by improper signature verification when checking for tailing garbage bytes after decoding a DigestInfo ASN.1 structure. By sending a specially-crafted request with garbage data, an attacker could exploit this vulnerability to forge a signature when a low public exponent is being used.
CVE-2022-24771
Node.js node-forge module could allow a remote attacker to bypass security restrictions, caused by improper signature verification when checking the digestAlgorithm structure. By using a specially-crafted structure to steal padding bytes and uses unchecked portion of the PKCS#1 encoded message, an attacker could exploit this vulnerability to forge a signature when a low public exponent is being used.
Impact
- Unauthorized Access
- Security Bypass
Indicator Of Compromise
CVE
- CVE-2022-24759
- CVE-2022-24773
- CVE-2022-24772
- CVE-2022-24771
Affected Vendors
Node.js
Affected Products
- Node.js @chainsafe/libp2p-noise 4.1.1
- Node.js @chainsafe/libp2p-noise 5.0.2
- Node.js node-forge 1.2.1
Remediation
Upgrade to the latest version of node-forge, available from the Forge GIT Repository.