CVE-2024-42461

9.1CRITICAL

In the Elliptic package 6.5.6 for Node.js, ECDSA signature malleability occurs because BER-encoded signatures are allowed.

Publicado: 8/2/2024Atualizado: 11/3/2025
Ver no NVDVer no MITRE

Descrição

In the Elliptic package 6.5.6 for Node.js, ECDSA signature malleability occurs because BER-encoded signatures are allowed.

Análise IADesenvolvido por IA

Produtos Afetados

elliptic_projectelliptic
6.5.6

Referências