PT-2021-22924 · Crypto+++2 · Crypto+++2

Alessandro Sorniotti

Published

2021-07-01

Updated

2024-06-15

CVE-2021-40530

CVSS v3.1

5.9

Medium

Vector

AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Crypto++ versions through 8.5

Description The ElGamal implementation in Crypto++ allows plaintext recovery due to a certain combination of the prime defined by the receiver's public key, the generator defined by the receiver's public key, and the sender's ephemeral exponents. This can lead to a cross-configuration attack against OpenPGP.

Recommendations For Crypto++ versions through 8.5, consider updating to a version that addresses this issue, as the current implementation allows for plaintext recovery. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Use of a Broken Cryptographic Algorithm

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-327

Related Identifiers

ALT-PU-2021-2104

CVE-2021-40530

MGASA-2021-0468

OPENSUSE-SU-2024:10933-1

Affected Products

Alt Linux

Crypto++

Debian

PT-2021-22924 · Crypto+++2 · Crypto+++2

CVE-2021-40530

Weakness Enumeration

Related Identifiers

Affected Products

References · 26