漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
The ElGamal implementation in Botan through 2.18.1, as used in Thunderbird and other products, allows plaintext recovery because, during interaction between two cryptographic libraries, a certain dangerous combination of the prime defined by the receiver's public key, the generator defined by the receiver's public key, and the sender's ephemeral exponents can lead to a cross-configuration attack against OpenPGP.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Botan 加密问题漏洞
Vulnerability Description
Botan是一款使用C++编写的加密算法库。该产品支持AES、DES、SHA-1、RSA、DSA和Diffie-Hellman等多种算法。 Botan 2.18.1及之前版本存在安全漏洞,该漏洞源于由接收者的公钥定义的生成器公钥和发送方的临时指数可能导致针对 OpenPGP 的交叉配置攻击。
CVSS Information
N/A
Vulnerability Type
N/A