Lucene search

HalbornCVELIST:CVE-2023-33241

HistoryAug 09, 2023 - 9:00 p.m.

CVE-2023-33241 GG18 / GG20 TSS Beta Parameter Vulnerability

2023-08-0921:00:20

Halborn

www.cve.org

cve-2023-33241

crypto wallets

gg18

gg20

tss protocol

ecdsa private key

beta parameters

range proof

9.6 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N

9.4 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

30.9%

JSON

Crypto wallets implementing the GG18 or GG20 TSS protocol might allow an attacker to extract a full ECDSA private key by injecting a malicious pallier key and cheating in the range proof. Depending on the Beta parameters chosen in the protocol implementation, the attack might require 16 signatures or more fully exfiltrate the other parties’ private key shares.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Wallet",
    "vendor": "GG TSS Implementations",
    "versions": [
      {
        "status": "affected",
        "version": "18"
      },
      {
        "status": "affected",
        "version": "20"
      }
    ]
  }
]

References

eprint.iacr.org/2019/114.pdf

eprint.iacr.org/2020/540.pdf

github.com/fireblocks-labs/mpc-ecdsa-attacks-23

github.com/fireblocks-labs/safeheron-gg20-exploit-poc

www.fireblocks.com/blog/gg18-and-gg20-paillier-key-vulnerability-technical-report/

9.6 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N

9.4 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

30.9%

JSON

Related for CVELIST:CVE-2023-33241