CVE-2021-40528 in Communications Cloud Native Core Security Edge Protection Proxy
要約
〜によって MITRE • 2021年09月07日
The ElGamal implementation in Libgcrypt before 1.9.4 allows plaintext recovery because, during interaction between two cryptographic libraries, a certain dangerous combination of the prime defined by the receiver's public key, the generator defined by the receiver's public key, and the sender's ephemeral exponents can lead to a cross-configuration attack against OpenPGP.
If you want to get the best quality for vulnerability data then you always have to consider VulDB.