CVE-2021-40530

🗓️ 06 Sep 2021 19:15:00Reported by ubuntu.comType

ubuntucve

ubuntucve🔗 ubuntu.com👁 21 Views

ElGamal plaintext recovery due to cryptographic library interactio

Reporter	Title	Published	Views	Family All 24
FreeBSD	cryptopp -- ElGamal implementation allows plaintext recovery	6 Sep 202100:00	–	freebsd
Circl	CVE-2021-40530	5 Oct 202110:30	–	circl
CNNVD	Crypto++ 加密问题漏洞	6 Sep 202100:00	–	cnnvd
CVE	CVE-2021-40530	6 Sep 202118:44	–	cve
Cvelist	CVE-2021-40530	6 Sep 202118:44	–	cvelist
Debian CVE	CVE-2021-40530	6 Sep 202118:44	–	debiancve
EUVD	EUVD-2021-27705	3 Oct 202520:07	–	euvd
Fedora	[SECURITY] Fedora 33 Update: cryptopp-8.6.0-1.fc33	5 Oct 202100:47	–	fedora
Fedora	[SECURITY] Fedora 35 Update: cryptopp-8.6.0-1.fc35	4 Oct 202100:15	–	fedora
Fedora	[SECURITY] Fedora 34 Update: cryptopp-8.6.0-1.fc34	5 Oct 202116:17	–	fedora

OS	OS Version	Architecture	Package	Package Version	Filename
Ubuntu	22.04	any	libcrypto++	0	libcrypto++_0_any.deb
Ubuntu	24.04	any	libcrypto++	0	libcrypto++_0_any.deb
Ubuntu	26.04	any	libcrypto++	0	libcrypto++_0_any.deb
Ubuntu	25.10	any	libcrypto++	0	libcrypto++_0_any.deb
Ubuntu	18.04	any	libcrypto++	0	libcrypto++_0_any.deb
Ubuntu	20.04	any	libcrypto++	0	libcrypto++_0_any.deb
Ubuntu	14.04	any	libcrypto++	0	libcrypto++_0_any.deb

Source	Link
eprint	www.eprint.iacr.org/2021/923
github	www.github.com/weidai11/cryptopp/issues/1059
ibm	www.ibm.github.io/system-security-research-updates/2021/07/20/insecurity-elgamal-pt1
ibm	www.ibm.github.io/system-security-research-updates/2021/09/06/insecurity-elgamal-pt2
cve	www.cve.org/CVERecord

11 Jul 2025 07:48Current

6.2Medium risk

Vulners AI Score6.2

CVSS 22.6

CVSS 3.15.9

EPSS0.0112

elgamal plaintext recovery cryptographic libraries cross-configuration attack openpgp unix