Lucene search
K

29 matches found

OSV
OSV
added 2025/12/08 9:30 p.m.6 views

GHSA-MPMC-QCHH-R9Q8 Altcha Proof-of-Work obfuscation mode cryptanalytic break

A cryptanalytic break in Altcha Proof-of-Work obfuscation mode version 0.8.0 and later allows for remote visitors to recover the Proof-of-Work nonce in constant time via mathematical deduction...

6.9CVSS6.9AI score0.00189EPSS
Exploits0References5
vulnersOsv
vulnersOsv
added 2025/12/08 7:41 p.m.7 views

@levo-so/react (>=0.1.15 <=0.1.43), @levo-so/react-collection (>=0.0.1 <=0.1.86) +2 more potentially affected by CVE-2025-65849 via altcha (>=1.0.7 <=2.0.2)

altcha NPM version =1.0.7, =0.1.15, =0.0.1, =0.1.91, =0.0.23, =0.0.34 Source cves: CVE-2025-65849 Source advisory: SNYK:JS-ALTCHA-14236435...

9.1CVSS5.7AI score0.00189EPSS
Exploits0
Snyk
Snyk
added 2025/12/08 7:41 p.m.4 views

Inadequate Encryption Strength

Overview org.webjars.npm:altcha is a Privacy-first CAPTCHA widget, compliant with global regulations GDPR/HIPAA/CCPA/LGDP/DPDPA/PIPL and WCAG accessible. No tracking, self-verifying. Affected versions of this package are vulnerable to Inadequate Encryption Strength in the Proof of Work obfuscatio...

9.1CVSS5.7AI score0.00189EPSS
Exploits0References2
NVD
NVD
added 2025/12/08 7:15 p.m.7 views

CVE-2025-65849

A cryptanalytic break in Altcha Proof-of-Work obfuscation mode version 0.8.0 and later allows for remote visitors to recover the Proof-of-Work nonce in constant time via mathematical deduction. NOTE: this is disputed by the Supplier because the product's objective is "to discourage automated...

9.1CVSS0.00189EPSS
Exploits0References3
OSV
OSV
added 2025/12/08 7:15 p.m.5 views

CVE-2025-65849

A cryptanalytic break in Altcha Proof-of-Work obfuscation mode version 0.8.0 and later allows for remote visitors to recover the Proof-of-Work nonce in constant time via mathematical deduction. NOTE: this is disputed by the Supplier because the product's objective is "to discourage automated...

9.1CVSS5.9AI score0.00189EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/12/08 12:0 a.m.20 views

CVE-2025-65849

A cryptanalytic break in Altcha Proof-of-Work obfuscation mode version 0.8.0 and later allows for remote visitors to recover the Proof-of-Work nonce in constant time via mathematical deduction. NOTE: this is disputed by the Supplier because the product's objective is "to discourage automated...

0.00189EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/12/08 12:0 a.m.3 views

CVE-2025-65849

A cryptanalytic break in Altcha Proof-of-Work obfuscation mode version 0.8.0 and later allows for remote visitors to recover the Proof-of-Work nonce in constant time via mathematical deduction. NOTE: this is disputed by the Supplier because the product's objective is "to discourage automated...

6.5AI score0.00189EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/12/08 12:0 a.m.8 views

ALTCHA 安全漏洞

ALTCHA is a self-hosted CAPTCHA software from ALTCHA Open Source. A security vulnerability exists in ALTCHA that stems from a cryptanalysis flaw that could lead to the recovery of random numbers through mathematical derivation...

9.1CVSS6.4AI score0.00189EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/12/08 12:0 a.m.5 views

PT-2025-49588

A cryptanalytic break in Altcha Proof-of-Work obfuscation mode version 0.8.0 and later allows for remote visitors to recover the Proof-of-Work nonce in constant time via mathematical deduction...

7AI score0.00189EPSS
Exploits0References4
Rows per page
Query Builder