CVE-2025-27498
MEDIUMascon_aead < 0.4.3 - Improper Verification of Cryptographic Signature
Title source: llmDescription
aes-gcm is a pure Rust implementation of the AES-GCM. In decrypt_in_place_detached, the decrypted ciphertext (which is the correct ciphertext) is exposed even if the tag is incorrect. This is because in decrypt_inplace in asconcore.rs, tag verification causes an error to be returned with the plaintext contents still in buffer. The vulnerability is fixed in 0.4.3.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
https://github.com/RustCrypto/AEADs/security/advisories/GHSA-r38m-44fw-h886
Scores
CVSS v4
5.6
EPSS
0.0012
EPSS Percentile
1.9%
CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:A/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
partial
Details
CWE
CWE-347
Status
published
Products (2)
crates.io/ascon_aead
0 - 0.4.3crates.io
RustCrypto/AEADs
< 0.4.3
Published
Mar 03, 2025
Tracked Since
Feb 18, 2026