Skip to content

Instantly share code, notes, and snippets.

@liang-junkai
Created January 31, 2024 04:32
Show Gist options
  • Save liang-junkai/1b59487c0f7002fa5da98035b53e409f to your computer and use it in GitHub Desktop.
Save liang-junkai/1b59487c0f7002fa5da98035b53e409f to your computer and use it in GitHub Desktop.
CVE-2023-51939
[NAME OF AFFECTED PRODUCT(S)]: relic-toolkit
[AFFECTED AND/OR FIXED VERSION(S)]: 0.6.0
[CVE ID]: CVE-2023-51939
[PROBLEM TYPE]:
[Vulnerability Type]:Fault Injection
[Root Cause]: No check or protection in signature
[Impact]: Allows attacker to obtain sensitive information and escalate privileges
[DESCRIPTION]: An issue in the cp_bbs_sig function in relic/src/cp/relic_cp_bbs.c of Relic relic-toolkit 0.6.0 allows a remote attacker to obtain sensitive information and escalate privileges via the cp_bbs_sig function.
[PUBLIC REFERENCES]: https://github.com/relic-toolkit/relic/issues/284; https://github.com/liang-junkai/Relic-bbs-fault-injection/tree/main
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment