Vulnerability Description
A flawed protocol design in the Ledger Monero app before 1.5.1 for Ledger Nano and Ledger S devices allows a local attacker to extract the master spending key by sending crafted messages to this app selected on a PIN-entered Ledger connected to a host PC.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ledger | Monero | < 1.5.1 |
| Ledger | Nano S | - |
| Ledger | Nano X | - |
Related Weaknesses (CWE)
References
- https://deadcode.me/blog/2020/04/25/Ledger-Monero-app-spend-key-extraction.htmlExploitThird Party Advisory
- https://donjon.ledger.com/lsb/008/ExploitVendor Advisory
- https://deadcode.me/blog/2020/04/25/Ledger-Monero-app-spend-key-extraction.htmlExploitThird Party Advisory
- https://donjon.ledger.com/lsb/008/ExploitVendor Advisory
FAQ
What is CVE-2020-6861?
CVE-2020-6861 is a vulnerability with a CVSS score of 5.5 (MEDIUM). A flawed protocol design in the Ledger Monero app before 1.5.1 for Ledger Nano and Ledger S devices allows a local attacker to extract the master spending key by sending crafted messages to this app s...
How severe is CVE-2020-6861?
CVE-2020-6861 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-6861?
Check the references section above for vendor advisories and patch information. Affected products include: Ledger Monero, Ledger Nano S, Ledger Nano X.