In RELIC before 2020-08-01, RSA PKCS#1 v1.5 signature forgery can occur because certain checks of the padding (and of the first two bytes) are inadequate. NOTE: this requires that a low public exponent (such as 3) is being used. The product, by default, does not generate RSA keys with such a low number.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2021-04-07T20:10:30

Updated: 2024-08-04T17:23:10.312Z

Reserved: 2021-04-07T00:00:00

Link: CVE-2020-36315

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-04-07T21:15:15.870

Modified: 2024-11-21T05:29:15.320

Link: CVE-2020-36315

cve-icon Redhat

No data.