Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
lib/Crypto/PublicKey/ElGamal.py in PyCrypto through 2.6.1 generates weak ElGamal key parameters, which allows attackers to obtain sensitive information by reading ciphertext data (i.e., it does not have semantic security in face of a ciphertext-only attack). The Decisional Diffie-Hellman (DDH) assumption does not hold for PyCrypto's ElGamal implementation.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PyCrypto 安全漏洞
Vulnerability Description
PyCrypto是一个使用Python编写的加密工具包,它包含了MD5、AES、DES3等加密算法。 PyCrypto 2.6.1及之前版本中的lib/Crypto/PublicKey/ElGamal.py文件存在安全漏洞,该漏洞源于程序生成了较弱的ElGamal密钥参数。攻击者可通过读取密文数据利用该漏洞获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A