Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Satoshilabs Subscribe
Filtered by product Trezor Model T
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-14199 1 Satoshilabs 4 Trezor Model T, Trezor Model T Firmware, Trezor One and 1 more 2020-06-23 4.3 MEDIUM 6.5 MEDIUM
BIP-143 in the Bitcoin protocol specification mishandles the signing of a Segwit transaction, which allows attackers to trick a user into making two signatures in certain cases, potentially leading to a huge transaction fee. NOTE: this affects all hardware wallets. It was fixed in 1.9.1 for the Trezor One and 2.3.1 for the Trezor Model T.