CVE-2024-42461

9.1CRITICAL

In the Elliptic package 6.5.6 for Node.js, ECDSA signature malleability occurs because BER-encoded signatures are allowed.

Published: 8/2/2024Updated: 11/3/2025
View on NVDView on MITRE

Description

In the Elliptic package 6.5.6 for Node.js, ECDSA signature malleability occurs because BER-encoded signatures are allowed.

AI AnalysisPowered by AI

Affected Products

elliptic_projectelliptic
6.5.6

References