1 results (0.002 seconds)
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0
CVE-2023-44273
https://notcve.org/view.php?id=CVE-2023-44273
Consensys gnark-crypto through 0.11.2 allows Signature Malleability. This occurs because deserialisation of EdDSA and ECDSA signatures does not ensure that the data is in a certain interval. Consensys gnark-crypto hasta 0.11.2 permite maleabilidad de firma. Esto ocurre porque la deserialización de las firmas EdDSA y ECDSA no garantiza que los datos estén en un intervalo determinado. • https://github.com/Consensys/gnark-crypto/pull/449 https://github.com/Consensys/gnark-crypto/releases https://verichains.io • CWE-502: Deserialization of Untrusted Data •