CVE

CVE-2020-13822

admin

CVE-2020-13822

The Elliptic package 6.5.2 for Node.js allows ECDSA signature malleability via variations in encoding, leading ‘{$content}’ bytes, or integer overflows. This could conceivably have a security-relevant impact if an application relied on a single canonical signature.

Source: CVE-2020-13822

Exit mobile version