Vulnerability Details CVE-2021-32489
An issue was discovered in the _send_secure_msg() function of Yubico yubihsm-shell through 2.0.3. The function does not correctly validate the embedded length field of an authenticated message received from the device because response_msg.st.len=8 can be accepted but triggers an integer overflow, which causes CRYPTO_cbc128_decrypt (in OpenSSL) to encounter an undersized buffer and experience a segmentation fault. The yubihsm-shell project is included in the YubiHSM 2 SDK product.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 65.8%
CVSS Severity
CVSS v3 Score 4.4
CVSS v2 Score 3.5
References
Products affected by CVE-2021-32489
-
cpe:2.3:a:yubico:yubihsm-shell:2.0.0
-
cpe:2.3:a:yubico:yubihsm-shell:2.0.1
-
cpe:2.3:a:yubico:yubihsm-shell:2.0.2
-
cpe:2.3:a:yubico:yubihsm-shell:2.0.3