OpenCVE

Zcash, before the Sapling network upgrade (2018-10-28), had a counterfeiting vulnerability. A key-generation process, during evaluation of polynomials related to a to-be-proven statement, produced certain bypass elements. Availability of these elements allowed a cheating prover to bypass a consistency check, and consequently transform the proof of one statement into an ostensibly valid proof of a different statement, thereby breaking the soundness of the proof system. This misled the original Sprout zk-SNARK verifier into accepting the correctness of a transaction.

No CVSS v4.0

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

AV:N/AC:L/Au:N/C:N/I:P/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Z.cash	Zcash

Configuration 1 [-]

cpe:2.3:a:z.cash:zcash:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://fortune.com/2019/02/05/zcash-vulnerability-cryptocurrency/
https://github.com/JinBean/CVE-Extension
https://z.cash/blog/zcash-counterfeiting-vulnerability-successfully-remediated/

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-03-27T01:37:40

Updated: 2024-08-04T20:38:33.429Z

Reserved: 2019-01-29T00:00:00

Link: CVE-2019-7167

Vulnrichment

No data.

NVD

Status : Modified

Published: 2019-03-27T02:29:00.250

Modified: 2024-11-21T04:47:42.300

Link: CVE-2019-7167

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "Zcash, before the Sapling network upgrade (2018-10-28), had a counterfeiting vulnerability. A key-generation process, during evaluation of polynomials related to a to-be-proven statement, produced certain bypass elements. Availability of these elements allowed a cheating prover to bypass a consistency check, and consequently transform the proof of one statement into an ostensibly valid proof of a different statement, thereby breaking the soundness of the proof system. This misled the original Sprout zk-SNARK verifier into accepting the correctness of a transaction."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2019-06-11T20:24:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://fortune.com/2019/02/05/zcash-vulnerability-cryptocurrency/"}, {"tags": ["x_refsource_MISC"], "url": "https://z.cash/blog/zcash-counterfeiting-vulnerability-successfully-remediated/"}, {"tags": ["x_refsource_MISC"], "url": "https://github.com/JinBean/CVE-Extension"}], "source": {"discovery": "INTERNAL"}, "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2019-7167", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Zcash, before the Sapling network upgrade (2018-10-28), had a counterfeiting vulnerability. A key-generation process, during evaluation of polynomials related to a to-be-proven statement, produced certain bypass elements. Availability of these elements allowed a cheating prover to bypass a consistency check, and consequently transform the proof of one statement into an ostensibly valid proof of a different statement, thereby breaking the soundness of the proof system. This misled the original Sprout zk-SNARK verifier into accepting the correctness of a transaction."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://fortune.com/2019/02/05/zcash-vulnerability-cryptocurrency/", "refsource": "MISC", "url": "http://fortune.com/2019/02/05/zcash-vulnerability-cryptocurrency/"}, {"name": "https://z.cash/blog/zcash-counterfeiting-vulnerability-successfully-remediated/", "refsource": "MISC", "url": "https://z.cash/blog/zcash-counterfeiting-vulnerability-successfully-remediated/"}, {"name": "https://github.com/JinBean/CVE-Extension", "refsource": "MISC", "url": "https://github.com/JinBean/CVE-Extension"}]}, "source": {"discovery": "INTERNAL"}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T20:38:33.429Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://fortune.com/2019/02/05/zcash-vulnerability-cryptocurrency/"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://z.cash/blog/zcash-counterfeiting-vulnerability-successfully-remediated/"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/JinBean/CVE-Extension"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2019-7167", "datePublished": "2019-03-27T01:37:40", "dateReserved": "2019-01-29T00:00:00", "dateUpdated": "2024-08-04T20:38:33.429Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:z.cash:zcash:*:*:*:*:*:*:*:*", "matchCriteriaId": "EA26BB19-6E16-4B93-BADC-1859FE3AE39C", "versionEndIncluding": "2.0.1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Zcash, before the Sapling network upgrade (2018-10-28), had a counterfeiting vulnerability. A key-generation process, during evaluation of polynomials related to a to-be-proven statement, produced certain bypass elements. Availability of these elements allowed a cheating prover to bypass a consistency check, and consequently transform the proof of one statement into an ostensibly valid proof of a different statement, thereby breaking the soundness of the proof system. This misled the original Sprout zk-SNARK verifier into accepting the correctness of a transaction."}, {"lang": "es", "value": "Zcash, antes de la actualizaci\u00f3n de la red Sapling (28/10/2018), ten\u00eda una vulnerabilidad de falsificaci\u00f3n. Un proceso generador de claves durante la evaluaci\u00f3n de polinomios relacionados con una instrucci\u00f3n por confirmar produc\u00eda ciertos elementos de omisi\u00f3n. La disponibilidad de estos elementos permit\u00eda que un \"prover\" falso omitiese una comprobaci\u00f3n de consistencia y, en consecuencia, transformase la prueba de una instrucci\u00f3n en una prueba ostensiblemente v\u00e1lida de una instrucci\u00f3n diferente, quebrantando as\u00ed la seguridad del sistema de pruebas. Esto hac\u00eda que el verificador Sprout zk-SNARK original aceptase que una transacci\u00f3n fuese correcta."}], "id": "CVE-2019-7167", "lastModified": "2024-11-21T04:47:42.300", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "version": "3.0"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2019-03-27T02:29:00.250", "references": [{"source": "cve@mitre.org", "tags": ["Press/Media Coverage", "Third Party Advisory"], "url": "http://fortune.com/2019/02/05/zcash-vulnerability-cryptocurrency/"}, {"source": "cve@mitre.org", "url": "https://github.com/JinBean/CVE-Extension"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "https://z.cash/blog/zcash-counterfeiting-vulnerability-successfully-remediated/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Press/Media Coverage", "Third Party Advisory"], "url": "http://fortune.com/2019/02/05/zcash-vulnerability-cryptocurrency/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://github.com/JinBean/CVE-Extension"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://z.cash/blog/zcash-counterfeiting-vulnerability-successfully-remediated/"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-754"}], "source": "nvd@nist.gov", "type": "Primary"}]}