CVE-2022-24401
Keystream recovery for arbitrary frames in TETRA
In short
An attacker can trick TETRA mobile devices into reusing the same encryption key (keystream) by manipulating publicly broadcast counter values, allowing them to decrypt wireless communications by analyzing the device's responses to specially crafted messages.
Technical detail
An active adversary exploits unauthenticated TDMA frame counters broadcast by TETRA infrastructure to manipulate IV generation in mobile stations, causing keystream reuse. By sending crafted frames and observing MS responses, the attacker recovers keystream material for arbitrary frames, compromising confidentiality of encrypted air-interface traffic.
Summary generated and translated by AI from the official description.
Adversary-induced keystream re-use on TETRA air-interface encrypted traffic using any TEA keystream generator. IV generation is based upon several TDMA frame counters, which are frequently broadcast by the infrastructure in an unauthenticated manner. An active adversary can manipulate the view of these counters in a mobile station, provoking keystream re-use. By sending crafted messages to the MS and analyzing MS responses, keystream for arbitrary frames can be recovered.
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:F/RL:U/RC:C/CR:H/IR:H/AR:H/MAV:A/MAC:L/MPR:N/MUI:N/MS:U/MC:H/MI:H/MA:H
Affected products
ETSI · TETRA StandardWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://tetraburst.com/