CVE-2023-49292 — Private key recovery via invalid curve point in github.com/ecies/go/v2

Description

An attacker may be able to recover private keys due to a bug in the ECDH function. The library does not check whether the provided public key is on the curve, which means that an attacker can create a public key that is not on the curve and use it to recover the private key. A workaround is to manually check that the public key is valid by calling the IsOnCurve function from the secp256k1 libraries.

How to fix CVE-2023-49292

To remediate CVE-2023-49292, upgrade the affected package to a fixed version below.

—upgrade to 2.0.8 or later
—upgrade to 2.0.8 or later

Is CVE-2023-49292 being exploited?

Low — EPSS is 0.2%, meaning exploitation activity has not been observed at scale.

Affected packages (2)

from 0, < 2.0.8
from 0, < 2.0.8

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	HIGH8.1	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

References (6)

ADVISORYnvd.nist.gov/vuln/detail/CVE-2023-49292
PATCHgithub.com/ecies/go
WEBgithub.com/ashutosh1206/Crypton/blob/master/Diffie-Hellman-Key-Exchange/Attack-Invalid-Curve-Point/README.md
WEBgithub.com/ecies/go/commit/c6e775163866d6ea5233eb8ec8530a9122101ebd