CVE-2020-8912

Name of the Vulnerable Software and Affected Versions AWS S3 Crypto SDK for GoLang versions prior to V2

Description A vulnerability exists in the in-band key negotiation of the AWS S3 Crypto SDK for GoLang. An attacker with write access to the targeted bucket can change the encryption algorithm of an object, potentially allowing them to reveal the authentication key used by AES-GCM. This can be achieved by switching from AES-GCM to AES-CTR in combination with a decryption oracle. The attack requires access to an endpoint that reveals decryption failures without revealing the plaintext. The vulnerability poses insider risks and privilege escalation risks, circumventing KMS controls for stored data.

Recommendations Update the SDK to V2 or later and re-encrypt files to mitigate the risk. For versions prior to V2, consider temporarily disabling the use of AES-GCM encryption until a patch is available. Restrict access to the vulnerable API endpoints to minimize the risk of exploitation. Avoid using the KMS key wrapping option for new files until the issue is resolved.