CVE-2016-2427

CWE-200 — Information Exposure3 documents3 sources

Severity

5.5MEDIUM

EPSS

0.1%

top 76.42%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Bouncycastle Bc-java Google Android

Timeline

PublishedApr 18

Latest updateMay 17

Description

The AES-GCM specification in RFC 5084, as used in Android 5.x and 6.x, recommends 12 octets for the aes-ICVlen parameter field, which might make it easier for attackers to defeat a cryptographic protection mechanism and discover an authentication key via a crafted application, aka internal bug 26234568. NOTE: The vendor disputes the existence of this potential issue in Android, stating "This CVE was raised in error: it referred to the authentication tag size in GCM, whose default according to AS…

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages2 packages

▶NVDgoogle/android6 versions+5

▶NVDbouncycastle/bc-java1.54

🔴Vulnerability Details

GHSA

GHSA-727r-ghq8-fgh9: ** DISPUTED ** The AES-GCM specification in RFC 5084, as used in Android 5↗2022-05-17

▶

CVEList

CVE-2016-2427: The AES-GCM specification in RFC 5084, as used in Android 5↗2016-04-18

▶