Description
CMS (Cryptographic Message Syntax) parsing in gpgsm in GnuPG through 2.5.20 mishandles the CMS format for AES-GCM because aes-ICVlen is supposed to be 12 bytes but 4 bytes is accepted. NOTE: this is related to CVE-2026-34182.
Published: 2026-06-23
Score: 2.9 Low
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

CMS parsing in gpgsm accepts an AES‑GCM ciphertext that specifies an 4‑byte ICV length instead of the required 12 bytes, which bypasses integrity verification on the ciphertext. This input‑validation weakness (CWE‑1284) can allow an attacker to craft or modify ciphertext that will be processed by a vulnerable GnuPG installation, potentially enabling covert manipulation of encrypted data without detection.

Affected Systems

The affected software is the GnuPG project’s gpgsm component, versions 2.5.20 and earlier. Any system that processes CMS messages encrypted with AES‑GCM using these GnuPG releases is potentially impacted.

Risk and Exploitability

The CVSS score of 2.9 indicates a low severity. EPSS data is not available and the vulnerability is not listed in the CISA KEV catalog, implying limited public exploitation. The likely attack vector is that an attacker who can supply crafted ciphertext to a vulnerable system—either locally or remotely—may exploit the issue. Given the low score and lack of exploitation evidence, the risk of widespread impact is considered minimal.

Generated by OpenCVE AI on June 24, 2026 at 13:05 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade GnuPG to version 2.5.21 or later where the AES‑GCM ICV length is correctly validated.
  • If an immediate update is not possible, restrict or disable AES‑GCM support in gpgsm so that only correctly formed ciphertexts are accepted.
  • Avoid using AES‑GCM encrypted CMS messages that may have been generated with the vulnerable ICV length until the vendor patch is applied.

Generated by OpenCVE AI on June 24, 2026 at 13:05 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 26 Jun 2026 00:15:00 +0000

Type Values Removed Values Added
Title GnuPG: Incorrect cryptographic message parsing
References
Metrics threat_severity

None

threat_severity

Low


Wed, 24 Jun 2026 13:30:00 +0000

Type Values Removed Values Added
Title GnuPG gpgsm AES‑GCM ICV Length Handling Improperly Validated

Wed, 24 Jun 2026 07:15:00 +0000

Type Values Removed Values Added
Title GnuPG gpgsm AES‑GCM ICV Length Handling Improperly Validated

Wed, 24 Jun 2026 04:30:00 +0000

Type Values Removed Values Added
Title Incorrect AES‑GCM ICV Length Handling in GnuPG CMS Parsing

Wed, 24 Jun 2026 01:00:00 +0000

Type Values Removed Values Added
Title Incorrect AES‑GCM ICV Length Handling in GnuPG CMS Parsing

Tue, 23 Jun 2026 22:15:00 +0000

Type Values Removed Values Added
Title CMS Parser Accepts Invalid AES‑GCM ICV Length in GnuPG gpgsm

Tue, 23 Jun 2026 19:15:00 +0000

Type Values Removed Values Added
Title CMS Parser Accepts Invalid AES‑GCM ICV Length in GnuPG gpgsm

Tue, 23 Jun 2026 17:30:00 +0000

Type Values Removed Values Added
Description CMS (Cryptographic Message Syntax) parsing in gpgsm in GnuPG through 2.5.20 mishandles the CMS format for AES-GCM because aes-ICVlen is supposed to be 12 bytes but 4 bytes is accepted. NOTE: this is related to CVE-2026-34182.
First Time appeared Gnupg
Gnupg gnupg
Weaknesses CWE-1284
CPEs cpe:2.3:a:gnupg:gnupg:*:*:*:*:*:*:*:*
Vendors & Products Gnupg
Gnupg gnupg
References
Metrics cvssV3_1

{'score': 2.9, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2026-06-23T17:35:30.113Z

Reserved: 2026-06-23T17:26:24.801Z

Link: CVE-2026-57062

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

Severity : Low

Publid Date: 2026-06-23T17:26:25Z

Links: CVE-2026-57062 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-06-24T13:15:15Z

Weaknesses
  • CWE-1284

    Improper Validation of Specified Quantity in Input