Heiko Stamer: Security Vulnerabilities
LibTMCG before 1.1.1 does not perform a range check to avoid "trivial group generators," which allows attackers to obtain sensitive information about private cards.
CVSS Score
7.8
EPSS Score
0.005
Published
2007-05-13
The CheckGroup function in openSkat VTMF before 2.1 generates public key pairs in which the "p" variable might not be prime, which allows remote attackers to determine the private key and decrypt messages.
CVSS Score
4.3
EPSS Score
0.005
Published
2004-12-31