Lucene search

Ubuntu.comUB:CVE-2021-33589

HistoryApr 21, 2023 - 12:00 a.m.

CVE-2021-33589

2023-04-2100:00:00

ubuntu.com

ribose rnp

encryption

vulnerability

unix

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS

0.001

Percentile

37.0%

JSON

Ribose RNP before 0.15.1 does not implement a required step in a
cryptographic algorithm, resulting in weaker encryption than on the tin of
the algorithm.

OSVersionArchitecturePackageVersionFilename
ubuntu22.04noarchrnp< anyUNKNOWN
ubuntu24.04noarchrnp< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	22.04	noarch	rnp	< any	UNKNOWN
ubuntu	24.04	noarch	rnp	< any	UNKNOWN

References

launchpad.net/bugs/cve/CVE-2021-33589

nvd.nist.gov/vuln/detail/CVE-2021-33589

open.ribose.com/advisories/ra-2021-05-30/#CVE-2021-33589

security-tracker.debian.org/tracker/CVE-2021-33589

www.cve.org/CVERecord?id=CVE-2021-33589

www.ribose.com/feedback/security

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS

0.001

Percentile

37.0%

JSON

Related for UB:CVE-2021-33589