High severity7.4NVD Advisory· Published May 24, 2023· Updated Jun 17, 2026
CVE-2023-33983
CVE-2023-33983
Description
The Introduction Client in Briar through 1.5.3 does not implement out-of-band verification for the public keys of introducees. An introducer can launch man-in-the-middle attacks against later private communication between two introduced parties.
Affected products
2- Briar/Briardescription
Patches
Vulnerability mechanics
References
1- ethz.ch/content/dam/ethz/special-interest/infk/inst-infsec/appliedcrypto/education/theses/report_YuanmingSong.pdfnvdExploitTechnical DescriptionThird Party Advisory
News mentions
0No linked articles in our index yet.