CVE-2022-2576

Name of the Vulnerable Software and Affected Versions Eclipse Californium versions 2.0.0 through 2.7.2 Eclipse Californium versions 3.0.0 through 3.5.0

Description The issue occurs when a DTLS resumption handshake falls back to a DTLS full handshake on a parameter mismatch without using a HelloVerifyRequest. This can result in message amplification, potentially leading to DDoS attacks on other peers, and high CPU load, leading to a DoS attack on the own peer. The misbehavior is specific to configurations where DTLS VERIFY PEERS ON RESUMPTION THRESHOLD values are larger than 0, especially when used with certificate-based cipher suites.

Recommendations For Eclipse Californium versions 2.0.0 through 2.7.2, consider updating to a version where this issue is fixed. For Eclipse Californium versions 3.0.0 through 3.5.0, consider updating to a version where this issue is fixed. As a temporary workaround, consider setting DTLS VERIFY PEERS ON RESUMPTION THRESHOLD to 0 to prevent the misbehavior, but be aware of the potential security implications of this change. At the moment, there is no information about a newer version that contains a fix for this vulnerability.