A Fault Injection vulnerability in the SymmetricDecrypt function in cryptopp/elgamal.h of Cryptopp Crypto++ 8.9, allows an attacker to co-reside in the same system with a victim process to disclose information and escalate privileges.
[
{
"cpes": [
"cpe:2.3:a:cryptopp:crypto\\+\\+:8.9.0:*:*:*:*:*:*:*"
],
"vendor": "cryptopp",
"product": "crypto\\+\\+",
"versions": [
{
"status": "affected",
"version": "8.9.0"
}
],
"defaultStatus": "unknown"
}
]