CVE-2022-47930 | Mend Vulnerability Database

Vulnerability DatabaseCVE-2022-47930

CVE-2022-47930

April 21, 2023

An issue was discovered in IO FinNet tss-lib before 2.0.0. The parameter ssid for defining a session id is not used through the MPC implementation, which makes replaying and spoofing of messages easier. In particular, the Schnorr proof of knowledge implemented in sch.go does not utilize a session id, context, or random nonce in the generation of the challenge. This could allow a malicious user or an eavesdropper to replay a valid proof sent in the past.

Related Resources (7)

https://github.com/bnb-chain/tss-lib/pull/256

https://github.com/bnb-chain/tss-lib/commit/1a14f3ac9ecbf6115e80d44c7fff16bcc3139250

https://github.com/IoFinnet/tss-lib/releases/tag/v2.0.0

https://github.com/bnb-chain/tss-lib

https://medium.com/%40iofinnet/security-disclosure-for-ecdsa-and-eddsa-threshold-signature-schemes-4e969af7155b

https://medium.com/@iofinnet/security-disclosure-for-ecdsa-and-eddsa-threshold-signature-schemes-4e969af7155b

https://nvd.nist.gov/vuln/detail/CVE-2022-47930

Do you need more information?

CVSS v4

Base Score:

7.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Attack Requirements

NONE

Privileges Required

LOW

User Interaction

NONE

Vulnerable System Confidentiality

HIGH

Vulnerable System Integrity

HIGH

Vulnerable System Availability

NONE

Subsequent System Confidentiality

NONE

Subsequent System Integrity

NONE

Subsequent System Availability

NONE

CVSS v3

Base Score:

6.8

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

NONE

Weakness Type (CWE)

Authentication Bypass by Capture-replay

CWE-294

EPSS

Base Score:

0.08

Products

Solutions

Resources

Company

Compare

Developer Tools