CVE-2020-8911

Name of the Vulnerable Software and Affected Versions AWS S3 Crypto SDK for GoLang versions prior to V2

Description A padding oracle vulnerability exists in the AWS S3 Crypto SDK for GoLang, allowing an attacker with write access to the target's S3 bucket and the ability to observe decryption failures to reconstruct the plaintext with a significant number of queries to the endpoint. This is achieved by exploiting CBC's ability to manipulate the bytes of the next block and PKCS5 padding errors. The vulnerability poses insider risks and privilege escalation risks, potentially circumventing KMS controls for stored data.

Recommendations Update the SDK to V2 or later and re-encrypt files to mitigate the risk. For files encrypted with CBC mode in older versions, re-encrypt them with AES-GCM to resolve the issue. Using version 2 of the S3 crypto SDK will prevent the creation of new vulnerable files, but old files remain vulnerable until they are re-encrypted.