cvedb.io
CVE-2018-6829
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2018-02-07T23:29:01.703 · Last modified 2026-06-17T02:02:19.757

Summary

cipher/elgamal.c in Libgcrypt through 1.8.2, when used to encrypt messages directly, improperly encodes plaintexts, which allows attackers to obtain sensitive information by reading ciphertext data (i.e., it does not have semantic security in face of a ciphertext-only attack). The Decisional Diffie-Hellman (DDH) assumption does not hold for Libgcrypt's ElGamal implementation.

Affected products

gnupg — libgcrypt

Does this affect you?

Add your gear to cvedb and we'll alert you only when gnupg ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.