CVE-2019-7167

27.03.2019, 02:29

Zcash, before the Sapling network upgrade (2018-10-28), had a counterfeiting vulnerability. A key-generation process, during evaluation of polynomials related to a to-be-proven statement, produced certain bypass elements. Availability of these elements allowed a cheating prover to bypass a consistency check, and consequently transform the proof of one statement into an ostensibly valid proof of a different statement, thereby breaking the soundness of the proof system. This misled the original Sprout zk-SNARK verifier into accepting the correctness of a transaction.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	7.5 HIGH	NETWORK	LOW	NONE	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
mitre	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 65%

Vendor	Product	Version
z.cash	zcash	𝑥 ≤ 2.0.1

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-754 - Improper Check for Unusual or Exceptional Conditions
The software does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the software.

References

http://fortune.com/2019/02/05/zcash-vulnerability-cryptocurrency/

https://github.com/JinBean/CVE-Extension

https://z.cash/blog/zcash-counterfeiting-vulnerability-successfully-remediated/

http://fortune.com/2019/02/05/zcash-vulnerability-cryptocurrency/

https://github.com/JinBean/CVE-Extension

https://z.cash/blog/zcash-counterfeiting-vulnerability-successfully-remediated/