What is GHSA-gqx7-6552-67hf?

GHSA-gqx7-6552-67hf is a security advisory published by GitHub Security Advisories with High severity. Improper Verification of Cryptographic Signature in com.oviva.telematik:epa4all-client

Which CVE IDs does GHSA-gqx7-6552-67hf cover?

GHSA-gqx7-6552-67hf covers the following CVE IDs: CVE-2026-45575. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-gqx7-6552-67hf?

GHSA-gqx7-6552-67hf has a CVSS v3 base score of 7.4, published by GitHub Security Advisories.

Which products are affected by GHSA-gqx7-6552-67hf?

GHSA-gqx7-6552-67hf affects 1 product, including: maven/com.oviva.telematik:epa4all-client:\u003c 1.2.2.

GHSA-gqx7-6552-67hfHighCVSS 7.4

Improper Verification of Cryptographic Signature in com.oviva.telematik:epa4all-client

Vendor

GitHub Security Advisories

Published

May 15, 2026

Last Modified

May 15, 2026

🔗 CVE IDs covered (1)

CVE-2026-45575 →

📋 Description

Impact

An attacker who can MITM the TLS connection between the client and the IDP (within the TI network) can substitute a forged discovery document. The forged document redirects u ri_puk_idp_enc and uri_puk_idp_sig to attacker-controlled URLs. The client then encrypts the SMC-B-signed challenge response to the attacker's encryption key and POSTs it to the attacker's auth endpoint. This captures the signed authentication material.

Patches

#36

Workarounds

None.

Resources

MS-OVIVA-EPA4ALL-d453c1

Credits

Machine Spirits (contact@machinespirits.de)

Dr. rer. nat. Simon Weber
Dipl.-Inf. Volker Schönefeld
Chiara Fliegner

🎯 Affected products1

maven/com.oviva.telematik:epa4all-client:< 1.2.2

🔗 References (5)

https://github.com/oviva-ag/epa4all-client/security/advisories/GHSA-gqx7-6552-67hf
https://github.com/oviva-ag/epa4all-client/pull/36
https://github.com/oviva-ag/epa4all-client/commit/9111d6fbb939007036a7f74b2a93bb278cb5af32
https://github.com/oviva-ag/epa4all-client/releases/tag/v1.2.2
https://github.com/advisories/GHSA-gqx7-6552-67hf