Vulnerability Name:

CVE-2018-6594 (CCN-138678)

Assigned:2018-02-02
Published:2018-02-02
Updated:2020-07-31
Summary:lib/Crypto/PublicKey/ElGamal.py in PyCrypto through 2.6.1 generates weak ElGamal key parameters, which allows attackers to obtain sensitive information by reading ciphertext data (i.e., it does not have semantic security in face of a ciphertext-only attack). The Decisional Diffie-Hellman (DDH) assumption does not hold for PyCrypto's ElGamal implementation.
CVSS v3 Severity:7.5 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)
6.6 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:U/RC:R)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): None
Availibility (A): None
5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
4.7 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:U/RC:R)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): None
Availibility (A): None
CVSS v2 Severity:5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
Vulnerability Type:CWE-326
Vulnerability Consequences:Obtain Information
References:Source: MITRE
Type: CNA
CVE-2018-6594

Source: XF
Type: UNKNOWN
pycrypto-cve20186594-info-disc(138678)

Source: CCN
Type: pycrypto GIT Repository
Attack on PyCrypto's ElGamal Encryption with Proof-of-Concept (PoC) #253

Source: MISC
Type: Exploit, Issue Tracking, Third Party Advisory
https://github.com/dlitz/pycrypto/issues/253

Source: MISC
Type: Third Party Advisory
https://github.com/TElgamal/attack-on-pycrypto-elgamal

Source: MLIST
Type: Mailing List, Third Party Advisory
[debian-lts-announce] 20180215 [SECURITY] [DLA 1283-1] python-crypto security update

Source: GENTOO
Type: UNKNOWN
GLSA-202007-62

Source: UBUNTU
Type: Third Party Advisory
USN-3616-1

Source: UBUNTU
Type: Third Party Advisory
USN-3616-2

Source: CCN
Type: IBM Security Bulletin 6566889 (Spectrum Discover)
Critical Vulnerabilities in libraries used by libraries that IBM Spectrum discover is using (libraries of libraries)

Source: CCN
Type: IBM Security Bulletin 6967187 (Cloud Pak System Software Suite)
Multiple vulnerabilities in software used in node.js affect Cloud Pak System

Source: CCN
Type: IBM Security Bulletin 7001867 (Cloud Pak for Security)
IBM Cloud Pak for Security includes components with multiple known vulnerabilities

Vulnerable Configuration:Configuration 1:
  • cpe:/a:dlitz:pycrypto:*:*:*:*:*:*:*:* (Version <= 2.6.1)

    • Configuration 2:
  • cpe:/o:debian:debian_linux:7.0:*:*:*:*:*:*:*

    • Configuration 3:
  • cpe:/o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
  • OR cpe:/o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
  • OR cpe:/o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
  • OR cpe:/o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:dlitz:pycrypto:2.6.1:*:*:*:*:*:*:*
  • AND
  • cpe:/a:ibm:cloud_pak_for_security:1.10.0.0:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:com.ubuntu.artful:def:20186594000
    V
    		CVE-2018-6594 on Ubuntu 17.10 (artful) - medium.
    2018-02-03
    oval:com.ubuntu.bionic:def:201865940000000
    V
    		CVE-2018-6594 on Ubuntu 18.04 LTS (bionic) - medium.
    2018-02-03
    oval:com.ubuntu.bionic:def:20186594000
    V
    		CVE-2018-6594 on Ubuntu 18.04 LTS (bionic) - medium.
    2018-02-03
    oval:com.ubuntu.xenial:def:201865940000000
    V
    		CVE-2018-6594 on Ubuntu 16.04 LTS (xenial) - medium.
    2018-02-03
    oval:com.ubuntu.trusty:def:20186594000
    V
    		CVE-2018-6594 on Ubuntu 14.04 LTS (trusty) - medium.
    2018-02-03
    oval:com.ubuntu.xenial:def:20186594000
    V
    		CVE-2018-6594 on Ubuntu 16.04 LTS (xenial) - medium.
    2018-02-03
    BACK
    dlitz pycrypto *
    debian debian linux 7.0
    canonical ubuntu linux 12.04
    canonical ubuntu linux 14.04
    canonical ubuntu linux 16.04
    canonical ubuntu linux 17.10
    dlitz pycrypto 2.6.1
    ibm cloud pak for security 1.10.0.0