Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2025-8556

Опубликовано: 06 авг. 2025
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS3: 3.7

Описание

A flaw was found in CIRCL's implementation of the FourQ elliptic curve. This vulnerability allows an attacker to compromise session security via low-order point injection and incorrect point validation during Diffie-Hellman key exchange.

РелизСтатусПримечание
devel

not-affected

1.6.1-1
esm-apps/jammy

needs-triage

esm-apps/noble

needs-triage

jammy

needs-triage

noble

needs-triage

plucky

needs-triage

upstream

released

1.6.1-1

Показывать по

Ссылки на источники

EPSS

Процентиль: 4%
0.00022
Низкий

3.7 Low

CVSS3

Связанные уязвимости

redhat логотип

CVE-2025-8556

CVSS3: 3.7
redhat
2 месяца назад

A flaw was found in CIRCL's implementation of the FourQ elliptic curve. This vulnerability allows an attacker to compromise session security via low-order point injection and incorrect point validation during Diffie-Hellman key exchange.

nvd логотип

CVE-2025-8556

CVSS3: 3.7
nvd
18 дней назад

A flaw was found in CIRCL's implementation of the FourQ elliptic curve. This vulnerability allows an attacker to compromise session security via low-order point injection and incorrect point validation during Diffie-Hellman key exchange.

debian логотип

CVE-2025-8556

CVSS3: 3.7
debian
18 дней назад

A flaw was found in CIRCL's implementation of the FourQ elliptic curve ...

github логотип

GHSA-2x5j-vhc8-9cwm

CVSS3: 3.7
github
2 месяца назад

CIRCL-Fourq: Missing and wrong validation can lead to incorrect results

EPSS

Процентиль: 4%
0.00022
Низкий

3.7 Low

CVSS3