VYPR
High severity7.5NVD Advisory· Published Feb 3, 2018· Updated Jun 17, 2026

CVE-2018-6594

CVE-2018-6594

Description

lib/Crypto/PublicKey/ElGamal.py in PyCrypto through 2.6.1 generates weak ElGamal key parameters, which allows attackers to obtain sensitive information by reading ciphertext data (i.e., it does not have semantic security in face of a ciphertext-only attack). The Decisional Diffie-Hellman (DDH) assumption does not hold for PyCrypto's ElGamal implementation.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
pycryptoPyPI
<= 2.6.1

Affected products

1

Patches

Vulnerability mechanics

References

10

News mentions

0

No linked articles in our index yet.