CVE-2022-24404
Ciphertext Malleability in TETRA
In short
TETRA encrypted communication lacks integrity checks, allowing an attacker to flip individual bits in the encrypted data and modify the original message without detection. This undermines the security of sensitive radio communications.
Technical detail
The TETRA air-interface uses stream cipher encryption without authenticated encryption or message authentication codes (MAC), enabling bit-flipping attacks. An active network adversary can manipulate ciphertext to alter plaintext content while evading detection, compromising confidentiality and integrity guarantees.
Summary generated and translated by AI from the official description.
Lack of cryptographic integrity check on TETRA air-interface encrypted traffic. Since a stream cipher is employed, this allows an active adversary to manipulate cleartext data in a bit-by-bit fashion.
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:L/E:U/RL:U/RC:R/CR:H/IR:H/AR:H/MAV:A/MAC:H/MPR:N/MUI:N/MS:U/MC:N/MI:H/MA:L
Affected products
ETSI · TETRA StandardWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://tetraburst.com/