#VU52195 Use of a broken or risky cryptographic algorithm


Published: 2021-04-06 | Updated: 2021-04-13

Vulnerability identifier: #VU52195

Vulnerability risk: High

CVSSv3.1: 7.1 [CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-20305

CWE-ID: CWE-327

Exploitation vector: Network

Exploit availability: No

Description

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

A flaw was found in Nettle in versions before 3.7.2, where several Nettle signature verification functions (GOST DSA, EDDSA & ECDSA) result in the Elliptic Curve Cryptography point (ECC) multiply function being called with out-of-range scalers, possibly resulting in incorrect results. This flaw allows an attacker to force an invalid signature, causing an assertion failure or possible validation. The highest threat to this vulnerability is to confidentiality, integrity, as well as system availability.

Mitigation
Install update from vendor's website.

External links
http://bugzilla.redhat.com/show_bug.cgi?id=1942533

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Multiple vulnerabilities in IBM Cloud Pak for Security
Multiple vulnerabilities in Red Hat Service Telemetry Framework
Multiple vulnerabilities in IBM Security Verify Access
Multiple vulnerabilities in Dell EMC Unity
SolarWinds Security Event Manager (SEM) update for third-party components
Multiple vulnerabilities in Dell EMC VxRail Appliance
Multiple vulnerabilities in Junos Space
Red Hat Enterprise Linux 7.3 update for nettle
Red Hat Enterprise Linux 7.4 update for nettle
Multiple vulnerabilities in Red Hat OpenShift Jaeger