7.7

CVSS Score

3.1

Basic Information

CVE ID

CVE-2021-4239

GHSA ID

GHSA-6cr6-fmvc-vw2p

EPSS Score

0.25832%

CWE

CWE-311

Published

12/28/2022

Updated

2/9/2023

KEV Status

Technology

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2021-4239

CVE-2021-4239: Noise vulnerable to denial of service

Noise is a Go implementation of the Noise Protocol Framework. The Noise protocol implementation suffers from weakened cryptographic security after encrypting 2^64 messages, and a potential denial of service attack. After 2^64 (~18.4 quintillion) messages are encrypted with the Encrypt function, the nonce counter will wrap around, causing multiple messages to be encrypted with the same key and nonce. In a separate issue, the Decrypt function increments the nonce state even when it fails to decrypt a message. If an attacker can provide an invalid input to the Decrypt function, this will cause the nonce state to desynchronize between the peers, resulting in a failure to encrypt all subsequent messages.

(GitHub Advisory)

7.7

CVSS Score

3.1

Basic Information

CVE ID

CVE-2021-4239

GHSA ID

GHSA-6cr6-fmvc-vw2p

EPSS Score

0.25832%

CWE

CWE-311

Published

12/28/2022

Updated

2/9/2023

KEV Status

Technology

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:H

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
github.com/flynn/noise	go	< 1.0.0	1.0.0

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The commit diff explicitly shows the vulnerable Decrypt function in state.go was modified to fix nonce increment-on-failure behavior. 2. Vulnerability descriptions specifically mention Encrypt's nonce wrap-around issue, and the Go vulnerability report (GO-2022-0425) lists CipherState.Encrypt as an affected symbol. 3. Both functions manage nonce state - Encrypt through incremental counter, Decrypt through state synchronization - making them the logical points of failure for the described issues.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

Nois* is * *o impl*m*nt*tion o* t** Nois* Proto*ol *r*m*work. T** Nois* proto*ol impl*m*nt*tion su***rs *rom w**k*n** *rypto*r*p*i* s**urity **t*r *n*ryptin* *^** m*ss***s, *n* * pot*nti*l **ni*l o* s*rvi** *tt**k. **t*r *^** (~**.* quintillion) m*ss

Reasoning

*. T** *ommit *i** *xpli*itly s*ows t** vuln*r**l* ***rypt *un*tion in st*t*.*o w*s mo*i*i** to *ix non** in*r*m*nt-on-**ilur* ****vior. *. Vuln*r**ility **s*riptions sp**i*i**lly m*ntion *n*rypt's non** wr*p-*roun* issu*, *n* t** *o vuln*r**ility r*

7.7

Basic Information

Concerned about an active attack path?

CVE-2021-4239: Noise vulnerable to denial of service

7.7

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI