CVE-2024-36066

Name of the Vulnerable Software and Affected Versions KeyFactor EJBCA versions prior to 8.3.1

Description The issue concerns the CMP CLI client in KeyFactor EJBCA, which has a hardcoded salt that is only 6 octets long. This is not compliant with the security requirements of RFC 4211, which requires a salt with a random value of at least 8 octets for password-based MAC parameters. The short salt length might make man-in-the-middle attacks easier, as it does not effectively inhibit dictionary attacks. The CMP client includes password-based MAC as one option for message integrity and authentication, with the other option being certificate-based.

Recommendations For versions prior to 8.3.1, update to version 8.3.1 or later to resolve the issue. As a temporary workaround, consider disabling the use of password-based MAC in the CMP client until a patch is available. Restrict access to the CMP CLI client to minimize the risk of exploitation. Avoid using the password-based MAC option in the affected client until the issue is resolved.