Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2024-28285

Опубликовано: 14 мая 2024
Источник: debian

Описание

A Fault Injection vulnerability in the SymmetricDecrypt function in cryptopp/elgamal.h of Cryptopp Crypto++ 8.9, allows an attacker to co-reside in the same system with a victim process to disclose information and escalate privileges.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
libcrypto++unfixedpackage
libcrypto++postponedtrixiepackage
libcrypto++postponedbookwormpackage
libcrypto++no-dsabullseyepackage
libcrypto++postponedbusterpackage

Примечания

  • https://groups.google.com/g/cryptopp-users/c/UkVcH2IWR2M?pli=1

  • https://github.com/weidai11/cryptopp/issues/1262

Связанные уязвимости

ubuntu логотип

CVE-2024-28285

CVSS3: 9.8
ubuntu
больше 1 года назад

A Fault Injection vulnerability in the SymmetricDecrypt function in cryptopp/elgamal.h of Cryptopp Crypto++ 8.9, allows an attacker to co-reside in the same system with a victim process to disclose information and escalate privileges.

nvd логотип

CVE-2024-28285

CVSS3: 9.8
nvd
больше 1 года назад

A Fault Injection vulnerability in the SymmetricDecrypt function in cryptopp/elgamal.h of Cryptopp Crypto++ 8.9, allows an attacker to co-reside in the same system with a victim process to disclose information and escalate privileges.

suse-cvrf логотип

SUSE-SU-2025:01939-1

suse-cvrf
8 месяцев назад

Security update for libcryptopp

suse-cvrf логотип

SUSE-SU-2025:01816-1

suse-cvrf
8 месяцев назад

Security update for libcryptopp

github логотип

GHSA-w4c4-h4jq-x3xh

CVSS3: 9.8
github
больше 1 года назад

A Fault Injection vulnerability in the SymmetricDecrypt function in cryptopp/elgamal.h of Cryptopp Crypto++ 8.9, allows an attacker to co-reside in the same system with a victim process to disclose information and escalate privileges.