CVE-2023-33242 - Vulnerability Details - OpenCVE

Crypto wallets implementing the Lindell17 TSS protocol might allow an attacker to extract the full ECDSA private key by exfiltrating a single bit in every signature attempt (256 in total) because of not adhering to the paper's security proof's assumption regarding handling aborts after a failed signature.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation poc

Automatable no

Technical Impact total

Vendors	Products
Lindell17 Project	Lindell17

Configuration 1 [-]

cpe:2.3:a:lindell17_project:lindell17:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://eprint.iacr.org/2017/552.pdf
https://github.com/fireblocks-labs/mpc-ecdsa-attacks-23
https://github.com/fireblocks-labs/zengo-lindell17-exploit-poc
https://www.fireblocks.com/blog/lindell17-abort-vulnerability-technical-report/

History

Thu, 10 Oct 2024 13:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: Halborn

Published: 2023-08-09T21:01:37.417Z

Updated: 2024-10-10T12:47:35.497Z

Reserved: 2023-05-19T15:51:23.095Z

Link: CVE-2023-33242

Vulnrichment

Updated: 2024-08-02T15:39:35.953Z

NVD

Status : Modified

Published: 2023-08-09T22:15:11.180

Modified: 2024-11-21T08:05:13.993

Link: CVE-2023-33242

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-33242", "assignerOrgId": "79d7e77b-4bd9-4e64-ae2c-02965b1d2b73", "state": "PUBLISHED", "assignerShortName": "Halborn", "dateReserved": "2023-05-19T15:51:23.095Z", "datePublished": "2023-08-09T21:01:37.417Z", "dateUpdated": "2024-10-10T12:47:35.497Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Wallet", "vendor": "Lindell TSS Implementations", "versions": [{"status": "affected", "version": "17"}]}], "credits": [{"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "Fireblocks Research, Nikolaos Makriyannis, Oren Yomtov"}], "datePublic": "2023-08-09T21:15:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Crypto wallets implementing the Lindell17 TSS protocol might allow an attacker to extract the full ECDSA private key by exfiltrating a single bit in every signature attempt (256 in total) because of not adhering to the paper's security proof's assumption regarding handling aborts after a failed signature."}], "value": "Crypto wallets implementing the Lindell17 TSS protocol might allow an attacker to extract the full ECDSA private key by exfiltrating a single bit in every signature attempt (256 in total) because of not adhering to the paper's security proof's assumption regarding handling aborts after a failed signature."}], "impacts": [{"capecId": "CAPEC-474", "descriptions": [{"lang": "en", "value": "CAPEC-474 Signature Spoofing by Key Theft"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 9.6, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"description": "Private Key Exfiltration", "lang": "en"}]}], "providerMetadata": {"orgId": "79d7e77b-4bd9-4e64-ae2c-02965b1d2b73", "shortName": "Halborn", "dateUpdated": "2023-08-09T21:40:11.815Z"}, "references": [{"url": "https://www.fireblocks.com/blog/lindell17-abort-vulnerability-technical-report/"}, {"url": "https://github.com/fireblocks-labs/mpc-ecdsa-attacks-23"}, {"url": "https://github.com/fireblocks-labs/zengo-lindell17-exploit-poc"}, {"url": "https://eprint.iacr.org/2017/552.pdf"}], "source": {"discovery": "UNKNOWN"}, "title": "Lindell17 TSS Abort Mishandling", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T15:39:35.953Z"}, "title": "CVE Program Container", "references": [{"url": "https://www.fireblocks.com/blog/lindell17-abort-vulnerability-technical-report/", "tags": ["x_transferred"]}, {"url": "https://github.com/fireblocks-labs/mpc-ecdsa-attacks-23", "tags": ["x_transferred"]}, {"url": "https://github.com/fireblocks-labs/zengo-lindell17-exploit-poc", "tags": ["x_transferred"]}, {"url": "https://eprint.iacr.org/2017/552.pdf", "tags": ["x_transferred"]}]}, {"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-10-10T12:47:28.479428Z", "id": "CVE-2023-33242", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-10-10T12:47:35.497Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://www.fireblocks.com/blog/lindell17-abort-vulnerability-technical-report/", "tags": ["x_transferred"]}, {"url": "https://github.com/fireblocks-labs/mpc-ecdsa-attacks-23", "tags": ["x_transferred"]}, {"url": "https://github.com/fireblocks-labs/zengo-lindell17-exploit-poc", "tags": ["x_transferred"]}, {"url": "https://eprint.iacr.org/2017/552.pdf", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T15:39:35.953Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-33242", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-10-10T12:47:28.479428Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-10-10T12:47:32.108Z"}}], "cna": {"title": "Lindell17 TSS Abort Mishandling", "source": {"discovery": "UNKNOWN"}, "credits": [{"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "Fireblocks Research, Nikolaos Makriyannis, Oren Yomtov"}], "impacts": [{"capecId": "CAPEC-474", "descriptions": [{"lang": "en", "value": "CAPEC-474 Signature Spoofing by Key Theft"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 9.6, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Lindell TSS Implementations", "product": "Wallet", "versions": [{"status": "affected", "version": "17"}], "defaultStatus": "unaffected"}], "datePublic": "2023-08-09T21:15:00.000Z", "references": [{"url": "https://www.fireblocks.com/blog/lindell17-abort-vulnerability-technical-report/"}, {"url": "https://github.com/fireblocks-labs/mpc-ecdsa-attacks-23"}, {"url": "https://github.com/fireblocks-labs/zengo-lindell17-exploit-poc"}, {"url": "https://eprint.iacr.org/2017/552.pdf"}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}, "descriptions": [{"lang": "en", "value": "Crypto wallets implementing the Lindell17 TSS protocol might allow an attacker to extract the full ECDSA private key by exfiltrating a single bit in every signature attempt (256 in total) because of not adhering to the paper's security proof's assumption regarding handling aborts after a failed signature.", "supportingMedia": [{"type": "text/html", "value": "Crypto wallets implementing the Lindell17 TSS protocol might allow an attacker to extract the full ECDSA private key by exfiltrating a single bit in every signature attempt (256 in total) because of not adhering to the paper's security proof's assumption regarding handling aborts after a failed signature.", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "Private Key Exfiltration"}]}], "providerMetadata": {"orgId": "79d7e77b-4bd9-4e64-ae2c-02965b1d2b73", "shortName": "Halborn", "dateUpdated": "2023-08-09T21:40:11.815Z"}}}, "cveMetadata": {"cveId": "CVE-2023-33242", "state": "PUBLISHED", "dateUpdated": "2024-10-10T12:47:35.497Z", "dateReserved": "2023-05-19T15:51:23.095Z", "assignerOrgId": "79d7e77b-4bd9-4e64-ae2c-02965b1d2b73", "datePublished": "2023-08-09T21:01:37.417Z", "assignerShortName": "Halborn"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:lindell17_project:lindell17:-:*:*:*:*:*:*:*", "matchCriteriaId": "BCB206C8-258F-4DAD-AAF2-D38153F2C7A4", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Crypto wallets implementing the Lindell17 TSS protocol might allow an attacker to extract the full ECDSA private key by exfiltrating a single bit in every signature attempt (256 in total) because of not adhering to the paper's security proof's assumption regarding handling aborts after a failed signature."}], "id": "CVE-2023-33242", "lastModified": "2024-11-21T08:05:13.993", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 9.6, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 3.1, "impactScore": 5.8, "source": "disclosures@halborn.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 8.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.2, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-08-09T22:15:11.180", "references": [{"source": "disclosures@halborn.com", "tags": ["Exploit", "Third Party Advisory"], "url": "https://eprint.iacr.org/2017/552.pdf"}, {"source": "disclosures@halborn.com", "tags": ["Exploit"], "url": "https://github.com/fireblocks-labs/mpc-ecdsa-attacks-23"}, {"source": "disclosures@halborn.com", "tags": ["Exploit"], "url": "https://github.com/fireblocks-labs/zengo-lindell17-exploit-poc"}, {"source": "disclosures@halborn.com", "tags": ["Third Party Advisory"], "url": "https://www.fireblocks.com/blog/lindell17-abort-vulnerability-technical-report/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Third Party Advisory"], "url": "https://eprint.iacr.org/2017/552.pdf"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit"], "url": "https://github.com/fireblocks-labs/mpc-ecdsa-attacks-23"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit"], "url": "https://github.com/fireblocks-labs/zengo-lindell17-exploit-poc"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://www.fireblocks.com/blog/lindell17-abort-vulnerability-technical-report/"}], "sourceIdentifier": "disclosures@halborn.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-74"}], "source": "nvd@nist.gov", "type": "Primary"}]}