CVE-2023-33241

CRITICAL

Crypto wallets - Info Disclosure

Title source: llm

Description

Crypto wallets implementing the GG18 or GG20 TSS protocol might allow an attacker to extract a full ECDSA private key by injecting a malicious pallier key and cheating in the range proof. Depending on the Beta parameters chosen in the protocol implementation, the attack might require 16 signatures or more fully exfiltrate the other parties' private key shares.

References (5)

Core 5

Core References

Exploit, Third Party Advisory

https://eprint.iacr.org/2019/114.pdf

Exploit, Third Party Advisory

https://eprint.iacr.org/2020/540.pdf

Exploit

https://github.com/fireblocks-labs/mpc-ecdsa-attacks-23

View Exploit ZIP pw:eip

Exploit

https://github.com/fireblocks-labs/safeheron-gg20-exploit-poc

View Exploit ZIP pw:eip

Third Party Advisory

https://www.fireblocks.com/blog/gg18-and-gg20-paillier-key-vulnerability-technical-report/

Scores

CVSS v3 9.6

EPSS 0.0102

EPSS Percentile 59.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-74

Status published

Products (2)

gg18_project/gg18

gg20_project/gg20

Published Aug 09, 2023

Tracked Since Feb 18, 2026