CVE-2022-26320

Q: What is the severity of CVE-2022-26320?

CVE-2022-26320 has a CVSS score of 9.1 (CRITICAL). This vulnerability allows attackers to efficiently calculate private RSA keys from public TLS certificates by exploiting weak RSA key generation in the Rambus SafeZone Basic Crypto Module. Affected devices include Fujifilm multifunction printers, Canon imagePROGRAF/imageRUNNER devices, and potentially many other embedded systems using this cryptographic module. This enables complete compromise of TLS-protected communications.

9.1 CRITICAL

📋 TL;DR

This vulnerability allows attackers to efficiently calculate private RSA keys from public TLS certificates by exploiting weak RSA key generation in the Rambus SafeZone Basic Crypto Module. Affected devices include Fujifilm multifunction printers, Canon imagePROGRAF/imageRUNNER devices, and potentially many other embedded systems using this cryptographic module. This enables complete compromise of TLS-protected communications.

💻 Affected Systems

Products:

Fujifilm multifunction devices
Canon imagePROGRAF printers
Canon imageRUNNER devices
Other devices using Rambus SafeZone Basic Crypto Module

Versions: Rambus SafeZone Basic Crypto Module before 10.4.0

Operating Systems: Embedded firmware on affected devices

Default Config Vulnerable: ⚠️ Yes

Notes: Devices manufactured before March 2022 are likely vulnerable. The vulnerability is in the cryptographic module itself, not device configuration.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete decryption of all TLS communications, impersonation of devices, man-in-the-middle attacks on encrypted traffic, and potential lateral movement within networks.

🟠

Likely Case

Interception and decryption of sensitive documents transmitted to/from affected printers and multifunction devices, credential theft from print jobs.

🟢

If Mitigated

Limited impact if devices are isolated from untrusted networks and TLS certificates are replaced with properly generated keys.

🌐 Internet-Facing: HIGH - Internet-facing devices with vulnerable TLS certificates can have their private keys calculated, enabling complete traffic decryption.

🏢 Internal Only: HIGH - Internal devices can still be exploited by attackers who gain network access, allowing interception of sensitive internal communications.

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Fermat's factorization method is well-known and efficient for vulnerable keys. Attack requires only the public certificate, no authentication needed.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Rambus SafeZone Basic Crypto Module 10.4.0 or later

Vendor Advisory: https://www.rambus.com/security/response-center/advisories/rmbs-2021-01/

Restart Required: Yes

Instructions:

1. Check device manufacturer for firmware updates. 2. Apply firmware update from Canon/Fujifilm. 3. Regenerate all TLS certificates using updated cryptographic module. 4. Restart affected devices.

🔧 Temporary Workarounds

Network segmentation

all

Isolate affected devices from untrusted networks and limit communication to necessary services only.

Certificate replacement

all

Replace TLS certificates with ones generated by secure systems (not using vulnerable module).

🧯 If You Can't Patch

Replace affected devices with updated models
Implement network-level encryption (VPN/IPsec) for all communications with affected devices

🔍 How to Verify

Check if Vulnerable:

Extract public certificate from device, check if RSA key is vulnerable to Fermat factorization using tools from fermatattack.secvuln.info

Check Version:

Check device web interface or manufacturer documentation for firmware version

Verify Fix Applied:

Verify firmware version is updated and new certificates show proper key generation (not vulnerable to Fermat attack)

📡 Detection & Monitoring

Log Indicators:

Unusual certificate validation failures
Multiple TLS handshake failures

Network Indicators:

Unexpected certificate changes
Man-in-the-middle attack patterns on printer/device traffic

SIEM Query:

tls.handshake AND (device_type:printer OR device_type:mfp) AND certificate.algorithm:RSA

📊 Metadata

CVE ID: CVE-2022-26320

CVSS v3 Score: 9.1 (CRITICAL)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

CWE: CWE-330

Published: March 14, 2022

Last Updated: November 21, 2024

🔗 References

https://fermatattack.secvuln.info Third Party Advisory
https://global.canon/en/support/security/index.html Third Party Advisory
https://web.archive.org/web/20220922042721/https://safezoneswupdate.com/
https://www.fujifilm.com/fbglobal/eng/company/news/notice/2022/0302_rsakey_announce.html Mitigation,Third Party Advisory
https://www.rambus.com/security/response-center/advisories/rmbs-2021-01/
https://fermatattack.secvuln.info Third Party Advisory
https://global.canon/en/support/security/index.html Third Party Advisory
https://safezoneswupdate.com
https://www.fujifilm.com/fbglobal/eng/company/news/notice/2022/0302_rsakey_announce.html Mitigation,Third Party Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Apeos C3070 Firmware by Fujifilm

Apeos C3070 G Firmware by Fujifilm

Apeos C325 Dw Firmware by Fujifilm

Apeos C325 Z Firmware by Fujifilm

Apeos C328 Df Firmware by Fujifilm

Apeos C328 Dw Firmware by Fujifilm

Apeos C3570 Firmware by Fujifilm

Apeos C3570 G Firmware by Fujifilm

Apeos C4570 Firmware by Fujifilm

Apeos C4570 G Firmware by Fujifilm

Apeos C5570 Firmware by Fujifilm

Apeos C5570 G Firmware by Fujifilm

Apeos C6570 Firmware by Fujifilm

Apeos C6570 G Firmware by Fujifilm

Apeos C6580 Firmware by Fujifilm

Apeos C7070 Firmware by Fujifilm

Apeos C7070 G Firmware by Fujifilm

Apeos C7580 Firmware by Fujifilm

Apeos C8180 Firmware by Fujifilm

Apeosport 2560 Firmware by Fujifilm

Apeosport 2560 G Firmware by Fujifilm

Apeosport 3060 Firmware by Fujifilm

Apeosport 3060 G Firmware by Fujifilm

Apeosport 3560 Firmware by Fujifilm

Apeosport 3560 G Firmware by Fujifilm

Apeosport 4570 Firmware by Fujifilm

Apeosport 4570 G Firmware by Fujifilm

Apeosport 5570 Firmware by Fujifilm

Apeosport 5570 G Firmware by Fujifilm

Apeosport C2060 Firmware by Fujifilm

Apeosport C2060 G Firmware by Fujifilm

Apeosport C2560 Firmware by Fujifilm

Apeosport C2560 G Firmware by Fujifilm

Apeosport C3060 Firmware by Fujifilm

Apeosport C3060 Firmware by Fujifilm

Apeosport C3070 Firmware by Fujifilm

Apeosport C3070 G Firmware by Fujifilm

Apeosport C3570 Firmware by Fujifilm

Apeosport C3570 G Firmware by Fujifilm

Apeosport C4570 Firmware by Fujifilm

Apeosport C4570 G Firmware by Fujifilm

Apeosport C5570 Firmware by Fujifilm

Apeosport C5570 G Firmware by Fujifilm

Apeosport C6570 Firmware by Fujifilm

Apeosport C6570 G Firmware by Fujifilm

Apeosport C7070 Firmware by Fujifilm

Apeosport C7070 G Firmware by Fujifilm

Apeosport Print C5570 Firmware by Fujifilm

Apeosport Vii 4021 Firmware by Fujifilm

Apeosport Vii 5021 Firmware by Fujifilm

Apeosport Vii C2273 Firmware by Fujifilm

Apeosport Vii C3321 Firmware by Fujifilm

Apeosport Vii C3372 Firmware by Fujifilm

Apeosport Vii C3373 Firmware by Fujifilm

Apeosport Vii C4421 Firmware by Fujifilm

Apeosport Vii C4473 Firmware by Fujifilm

Apeosport Vii C5573 Firmware by Fujifilm

Apeosport Vii C5588 Firmware by Fujifilm

Apeosport Vii C6688 Firmware by Fujifilm

Apeosport Vii C6773 Firmware by Fujifilm

Apeosport Vii C7773 Firmware by Fujifilm

Apeosport Vii C7788 Firmware by Fujifilm

Apeosport Vii Cp4421 Firmware by Fujifilm

Apeosport Vii P4021 Firmware by Fujifilm

Apeosprint C325 Dw Firmware by Fujifilm

Apeosprint C328 Dw Firmware by Fujifilm

Apeosprint C328 Firmware by Fujifilm

Apeospro C650 Firmware by Fujifilm

Apeospro C750 Firmware by Fujifilm

Apeospro C810 Firmware by Fujifilm

Docucentre Vii C2273 Firmware by Fujifilm

Docucentre Vii C3372 Firmware by Fujifilm

Docucentre Vii C3373 Firmware by Fujifilm

Docucentre Vii C4473 Firmware by Fujifilm

Docucentre Vii C5573 Firmware by Fujifilm

Docucentre Vii C5588 Firmware by Fujifilm

Docucentre Vii C6673 Firmware by Fujifilm