Miggo Logo
Miggo Vulnerability Database
CVE-2016-1494

CVE-2016-1494: Python RSA allows attackers to spoof signatures

5.3

CVSS Score
3.0

Basic Information

CVE ID
CVE-2016-1494
GHSA ID
GHSA-8rjr-6qq5-pj9p
EPSS Score
0.91469%
CWE
CWE-20
Published
5/14/2022
Updated
10/21/2024
KEV Status
No
Technology
TechnologyPython

Technical Details

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Package NameEcosystemVulnerable VersionsFirst Patched Version
rsapip< 3.33.3

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The commit diff shows critical changes to both verify() and _find_method_hash() functions. The vulnerability stemmed from: 1) Not validating padding bytes between 0001 header and ASN.1 structure (CWE-20), and 2) Using flexible parsing of ASN.1/hash position rather than fixed structure comparison (CWE-347). The patch replaced parsing logic with full-structure comparison of the expected padded hash, confirming these functions were the vulnerable components. Multiple references (CVE description, blog post analysis, and commit message) explicitly identify verify() as the attack vector.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

T** v*ri*y *un*tion in t** RS* p**k*** *or Pyt*on (Pyt*on-RS*) ***or* *.* *llows *tt**k*rs to spoo* si*n*tur*s wit* * sm*ll pu*li* *xpon*nt vi* *r**t** si*n*tur* p***in*, *k* * **Rs*rk *tt**k.

Reasoning

T** *ommit *i** s*ows *riti**l ***n**s to *ot* v*ri*y() *n* _*in*_m*t*o*_**s*() *un*tions. T** vuln*r**ility st*mm** *rom: *) Not v*li**tin* p***in* *yt*s **tw**n **** *****r *n* *SN.* stru*tur* (*W*-**), *n* *) Usin* *l*xi*l* p*rsin* o* *SN.*/**s* p