Invalid Curve Attack in node-jose

2018-07-20T21:10:14
ID GHSA-RVJ9-8CVX-3VQ9
Type github
Reporter GitHub Advisory Database
Modified 2020-08-31T22:19:47

Description

Affected versions of node-jose are vulnerable to an invalid curve attack. This allows an attacker to recover the private secret key when JWE with Key Agreement with Elliptic Curve Diffie-Hellman Ephemeral Static (ECDH-ES) is used.

Proof of Concept

Recommendation

Update to version 0.9.3 or later.