Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The ElGamal implementation in Botan through 2.18.1, as used in Thunderbird and other products, allows plaintext recovery because, during interaction between two cryptographic libraries, a certain dangerous combination of the prime defined by the receiver's public key, the generator defined by the receiver's public key, and the sender's ephemeral exponents can lead to a cross-configuration attack against OpenPGP.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Botan 加密问题漏洞
Vulnerability Description
Botan是一款使用C++编写的加密算法库。该产品支持AES、DES、SHA-1、RSA、DSA和Diffie-Hellman等多种算法。 Botan 2.18.1及之前版本存在安全漏洞,该漏洞源于由接收者的公钥定义的生成器公钥和发送方的临时指数可能导致针对 OpenPGP 的交叉配置攻击。
CVSS Information
N/A
Vulnerability Type
N/A