CVE-2020-13757

MEDIUM

Description

Python-RSA before 4.1 ignores leading '\0' bytes during decryption of ciphertext. This could conceivably have a security-relevant impact, e.g., by helping an attacker to infer that an application uses Python-RSA, or if the length of accepted ciphertext affects application behavior (such as by causing excessive memory allocation).

References

https://github.com/sybrenstuvel/python-rsa/issues/146

https://github.com/sybrenstuvel/python-rsa/issues/146#issuecomment-641845667

https://lists.fedoraproject.org/archives/list/[email protected]/message/2KILTHBHNSDUCYV22ODLOKTICJJ7JQIQ/

https://lists.fedoraproject.org/archives/list/[email protected]/message/ZYB65VNILRBTXL6EITQTH2PZPK7I23MW/

https://usn.ubuntu.com/4478-1/

Details

Source: MITRE

Published: 2020-06-01

Updated: 2020-09-02

Type: CWE-327

Risk Information

CVSS v2.0

Base Score: 5

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Impact Score: 2.9

Exploitability Score: 10

Severity: MEDIUM

CVSS v3.0

Base Score: 7.5

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Impact Score: 3.6

Exploitability Score: 3.9

Severity: HIGH