Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-2w8x-224x-785m

Опубликовано: 17 мар. 2026
Источник: github
Github: Прошло ревью
CVSS4: 7.7
CVSS3: 7.5

Описание

sjcl is missing point-on-curve validation in sjcl.ecc.basicKey.publicKey

All versions of the package sjcl are vulnerable to Improper Verification of Cryptographic Signature due to missing point-on-curve validation in sjcl.ecc.basicKey.publicKey(). An attacker can recover a victim's ECDH private key by sending crafted off-curve public keys and observing ECDH outputs. The dhJavaEc() function directly returns the raw x-coordinate of the scalar multiplication result (no hashing), providing a plaintext oracle without requiring any decryption feedback.

Ссылки

Пакеты

Наименование

sjcl

npm
Затронутые версииВерсия исправления

<= 1.0.8

1.0.9

EPSS

Процентиль: 4%
0.00017
Низкий

7.7 High

CVSS4

7.5 High

CVSS3

CVE ID

CVE-2026-4258

Дефекты

CWE-325
CWE-347

Связанные уязвимости

nvd логотип

CVE-2026-4258

CVSS3: 7.5
nvd
12 дней назад

All versions of the package sjcl are vulnerable to Improper Verification of Cryptographic Signature due to missing point-on-curve validation in sjcl.ecc.basicKey.publicKey(). An attacker can recover a victim's ECDH private key by sending crafted off-curve public keys and observing ECDH outputs. The dhJavaEc() function directly returns the raw x-coordinate of the scalar multiplication result (no hashing), providing a plaintext oracle without requiring any decryption feedback.

debian логотип

CVE-2026-4258

CVSS3: 7.5
debian
12 дней назад

All versions of the package sjcl are vulnerable to Improper Verificati ...

EPSS

Процентиль: 4%
0.00017
Низкий

7.7 High

CVSS4

7.5 High

CVSS3

CVE ID

CVE-2026-4258

Дефекты

CWE-325
CWE-347