CVE-2021-33560

Libgcrypt before 1.8.8 and 1.9.x before 1.9.3 mishandles ElGamal encryption because it lacks exponent blinding to address a side-channel attack against mpi_powm, and the window size is not chosen appropriately. This, for example, affects use of ElGamal in OpenPGP.

Published: Jun 8, 2021
Updated: Apr 14, 2023
CVE: CVE-2021-33560
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.5
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N

CWEs:

CWE-203

Affected Software
References

Software	From	Fixed in
gnupg / libgcrypt	1.9.0	1.9.3
gnupg / libgcrypt	-	1.8.8
debian / debian_linux	9.0	9.0.x
fedoraproject / fedora	33	33.x
fedoraproject / fedora	34	34.x
oracle / communications_cloud_native_core_network_repository_function	1.14.0	1.14.0.x
oracle / communications_cloud_native_core_network_function_cloud_native_environment	1.9.0	1.9.0.x
oracle / communications_cloud_native_core_network_slice_selection_function	1.8.0	1.8.0.x
oracle / communications_cloud_native_core_network_repository_function	1.15.0	1.15.0.x
oracle / communications_cloud_native_core_network_function_cloud_native_environment	1.10.0	1.10.0.x
oracle / communications_cloud_native_core_service_communication_proxy	1.15.0	1.15.0.x
oracle / communications_cloud_native_core_network_repository_function	1.15.1	1.15.1.x
oracle / communications_cloud_native_core_binding_support_function	1.11.0	1.11.0.x

Vulnerability Database

289,697

CVE-2021-33560