CVE-2023-39910

CVSS V2 None CVSS V3 None

Description

The cryptocurrency wallet entropy seeding mechanism used in Libbitcoin Explorer 3.0.0 through 3.6.0 is weak, aka the Milk Sad issue. The use of an mt19937 Mersenne Twister PRNG restricts the internal entropy to 32 bits regardless of settings. This allows remote attackers to recover any wallet private keys generated from "bx seed" entropy output and steal funds. (Affected users need to move funds to a secure new cryptocurrency wallet.) NOTE: the vendor's position is that there was sufficient documentation advising against "bx seed" but others disagree. NOTE: this was exploited in the wild in June and July 2023.

Overview

CVE ID
CVE-2023-39910

Assigner
cve@mitre.org

Vulnerability Status
Analyzed

Published Version
2023-08-09T03:15:44

Last Modified Date
2023-08-22T22:15:11

Weakness Enumerations

CWE	URL
CWE-338	http://cwe.mitre.org/data/definitions/338.html

CPE Configuration (Product)

CPE	Vulnerable	Operator	Version Start	Version End
cpe:2.3:a:libbitcoin:libbitcoin_explorer::::::::	1	OR	3.0.0	3.6.0

References

Reference URL	Reference Tags
https://github.com/libbitcoin/libbitcoin-explorer/blob/20eba4db9a8a3476949d6fd08a589abda7fde3e3/src/commands/seed.cpp#L44	Third Party Advisory
https://github.com/libbitcoin/libbitcoin-explorer/blob/20eba4db9a8a3476949d6fd08a589abda7fde3e3/src/utility.cpp#L78	Third Party Advisory
https://github.com/libbitcoin/libbitcoin-system/blob/a1b777fc51d9c04e0c7a1dec5cc746b82a6afe64/src/crypto/pseudo_random.cpp#L66C12-L78	Third Party Advisory
https://milksad.info/disclosure.html	Third Party Advisory
https://news.ycombinator.com/item?id=37054862	Third Party Advisory

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2023-39910
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39910

History

Created	Old Value	New Value	Data Type	Notes
2023-09-06 03:20:36				Added to TrackCVE
2023-09-06 03:20:38			Weakness Enumeration	new