Description
Cryptographic Issue when using a static initialization vector for AES-GCM key wrapping, which requires a unique value for each call to ensure security.
Published: 2026-07-06
Score: 7.1 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability stems from using a static initialization vector when performing AES‑GCM key wrapping. AES‑GCM requires a unique nonce for each operation; reusing one can allow an attacker to detect patterns in ciphertext or, in extreme cases, recover the wrapped key, thereby compromising the confidentiality of protected keys.

Affected Systems

Qualcomm, Inc. Snapdragon devices whose high‑level operating system components implement AES‑GCM key wrapping with a static IV. This includes firmware and OS layers that handle encryption of keys within the device.

Risk and Exploitability

The CVSS score of 7.1 classifies the flaw as high severity. The EPSS score of less than 1% indicates a very low probability that existing exploits have been found. The vulnerability is not listed in CISA KEV. Because the flaw involves firmware‑level encryption, the attack likely requires local or privileged access to influence the key‑wrapping routine, as inferred from the cryptographic nature of the vulnerability. If exploited, an attacker could recover protected keys and undermine device security.

Generated by OpenCVE AI on July 10, 2026 at 06:48 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the vendor‑issued firmware or OS patch that replaces the static IV with a unique nonce for each key‑wrapping operation
  • Update the cryptographic library configuration to enforce unique nonces and eliminate support for static‑IV key wrapping if possible
  • Verify that no legacy code paths still allow static IV usage and that all key‑wrapping calls use the patched implementation

Generated by OpenCVE AI on July 10, 2026 at 06:48 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 06 Jul 2026 21:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Mon, 06 Jul 2026 20:30:00 +0000

Type Values Removed Values Added
Description Cryptographic Issue when using a static initialization vector for AES-GCM key wrapping, which requires a unique value for each call to ensure security.
Title Reusing a Nonce, Key Pair in Encryption in HLOS
Weaknesses CWE-323
References
Metrics cvssV3_1

{'score': 7.1, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N'}


Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: qualcomm

Published:

Updated: 2026-07-08T03:56:37.495Z

Reserved: 2025-12-17T04:35:45.743Z

Link: CVE-2026-21383

cve-icon Vulnrichment

Updated: 2026-07-06T20:55:30.938Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-07-10T07:00:06Z

Weaknesses
  • CWE-323

    Reusing a Nonce, Key Pair in Encryption