5.9

CVSS Score

3.1

Basic Information

CVE ID

CVE-2019-11841

GHSA ID

GHSA-x3jr-pf6g-c48f

EPSS Score

0.59311%

CWE

CWE-347

Published

5/24/2022

Updated

10/2/2023

KEV Status

Technology

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2019-11841

CVE-2019-11841: Golang/x/crypto message forgery vulnerability

A message-forgery issue was discovered in crypto/openpgp/clearsign/clearsign.go in supplementary Go cryptography libraries 2019-03-25. According to the OpenPGP Message Format specification in RFC 4880 chapter 7, a cleartext signed message can contain one or more optional "Hash" Armor Headers. The "Hash" Armor Header specifies the message digest algorithm(s) used for the signature. However, the Go clearsign package ignores the value of this header, which allows an attacker to spoof it. Consequently, an attacker can lead a victim to believe the signature was generated using a different message digest algorithm than what was actually used. Moreover, since the library skips Armor Header parsing in general, an attacker can not only embed arbitrary Armor Headers, but also prepend arbitrary text to cleartext messages without invalidating the signatures.

(GitHub Advisory)

5.9

CVSS Score

3.1

Basic Information

CVE ID

CVE-2019-11841

GHSA ID

GHSA-x3jr-pf6g-c48f

EPSS Score

0.59311%

CWE

CWE-347

Published

5/24/2022

Updated

10/2/2023

KEV Status

Technology

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
golang.org/x/crypto	go	< 0.0.0-20190424203555-c05e17bb3b2d	0.0.0-20190424203555-c05e17bb3b2d

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability stems from the Decode function's failure to properly handle Armor Headers as specified in RFC 4880. The commit c05e17bb3b2d shows critical validation was added to: 1) Reject non-Hash headers 2) Check for control characters 3) Validate header formatting 4) Verify message structure integrity. The original implementation's lack of these validations made header spoofing and message injection possible. The Decode function is directly responsible for parsing signed messages, making it the clear vulnerable entry point.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

* m*ss***-*or**ry issu* w*s *is*ov*r** in `*rypto/op*np*p/*l**rsi*n/*l**rsi*n.*o` in suppl*m*nt*ry *o *rypto*r*p*y li*r*ri*s ****-**-**. ***or*in* to t** Op*nP*P M*ss*** *orm*t sp**i*i**tion in R** **** ***pt*r *, * *l**rt*xt si*n** m*ss*** **n *ont*

Reasoning

T** vuln*r**ility st*ms *rom t** `***o**` *un*tion's **ilur* to prop*rly **n*l* *rmor *****rs *s sp**i*i** in R** ****. T** *ommit `************` s*ows *riti**l v*li**tion w*s ***** to: *) R*j**t non-**s* *****rs *) ****k *or *ontrol ***r**t*rs *) `V

5.9

Basic Information

Concerned about an active attack path?

CVE-2019-11841: Golang/x/crypto message forgery vulnerability

5.9

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI