Secp256k1-js Project - Secp256k1-js CVE - CVE Search - CVE Details

Filtered by vendor Secp256k1-js Project Subscribe

Filtered by product Secp256k1-js

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2022-41340	1 Secp256k1-js Project	1 Secp256k1-js	2022-09-28	N/A	7.5 HIGH
The secp256k1-js package before 1.1.0 for Node.js implements ECDSA without required r and s validation, leading to signature forgery.

Vulnerabilities (CVE)