In RELIC before 2020-08-01, RSA PKCS#1 v1.5 signature forgery can occur because certain checks of the padding (and of the first two bytes) are inadequate. NOTE: this requires that a low public exponent (such as 3) is being used. The product, by default, does not generate RSA keys with such a low number.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2021-04-07T20:10:30
Updated: 2024-08-04T17:23:10.312Z
Reserved: 2021-04-07T00:00:00
Link: CVE-2020-36315
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-04-07T21:15:15.870
Modified: 2024-11-21T05:29:15.320
Link: CVE-2020-36315
Redhat
No data.