Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-1437

Malicious code in bioql PyPI...

6.8CVSS6.7AI score0.00523EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/05/23 12:22 a.m.5 views

CVE-2022-47931

IO FinNet tss-lib before 2.0.0 allows a collision of hash values...

9.1CVSS6.8AI score0.00453EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 9:51 p.m.7 views

CVE-2022-47930

An issue was discovered in IO FinNet tss-lib before 2.0.0. The parameter ssid for defining a session id is not used through the MPC implementation, which makes replaying and spoofing of messages easier. In particular, the Schnorr proof of knowledge implemented in sch.go does not utilize a session...

6.8CVSS6.7AI score0.00523EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/02/11 4:17 a.m.3 views

SUSE CVE-2022-47930

An issue was discovered in IO FinNet tss-lib before 2.0.0. The parameter ssid for defining a session id is not used through the MPC implementation, which makes replaying and spoofing of messages easier. In particular, the Schnorr proof of knowledge implemented in sch.go does not utilize a session...

6.8CVSS6.8AI score0.00523EPSS
Exploits0References3
Prion
Prion
added 2023/04/21 6:15 p.m.22 views

Design/Logic Flaw

An issue was discovered in IO FinNet tss-lib before 2.0.0. The parameter ssid for defining a session id is not used through the MPC implementation, which makes replaying and spoofing of messages easier. In particular, the Schnorr proof of knowledge implemented in sch.go does not utilize a session...

3.6CVSS6.5AI score0.00523EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/21 12:0 a.m.10 views

CVE-2022-47930

An issue was discovered in IO FinNet tss-lib before 2.0.0. The parameter ssid for defining a session id is not used through the MPC implementation, which makes replaying and spoofing of messages easier. In particular, the Schnorr proof of knowledge implemented in sch.go does not utilize a session...

6.5AI score0.00523EPSS
Exploits0References2
CVE
CVE
added 2023/04/21 12:0 a.m.77 views

CVE-2022-47930

CVE-2022-47930 affects IO FinNet tss-lib prior to 2.0.0. The root cause is that the parameter ssid used to define a session id is not applied through the MPC implementation, and the Schnorr proof of knowledge in sch.go does not utilize a session id, context, or random nonce when generating the ch...

6.8CVSS6.5AI score0.00523EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2023/04/21 12:0 a.m.28 views

tss-lib 安全漏洞

tss-lib is an open source IO FinNet implementation of the multi-party t,n- threshold ECDSA Elliptic Curve Digital Signature Algorithm based on Gennaro and Goldfeder 20201 and EdDSA Edwards Curve Digital Signature Algorithm. A security vulnerability exists in IO FinNet tss-lib versions prior to...

7.5CVSS7.2AI score0.00864EPSS
Exploits0References5
Cvelist
Cvelist
added 2023/04/21 12:0 a.m.23 views

CVE-2022-47930

An issue was discovered in IO FinNet tss-lib before 2.0.0. The parameter ssid for defining a session id is not used through the MPC implementation, which makes replaying and spoofing of messages easier. In particular, the Schnorr proof of knowledge implemented in sch.go does not utilize a session...

6.7AI score0.00523EPSS
Exploits0References2
CVE
CVE
added 2022/12/22 12:0 a.m.62 views

CVE-2022-47931

CVE-2022-47931 affects IO FinNet tss-lib prior to 2.0.0, describing a collision of hash values in the library used for threshold ECDSA/EdDSA in multi-party signing. The connected documents identify the affected version range (before 2.0.0) and point to the v2.0.0 release as remediation, along wit...

9.1CVSS9.1AI score0.00453EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2022/12/22 12:0 a.m.4 views

IO FinNet tss-lib 加密问题漏洞

tss-lib is an open source IO FinNet implementation of the multi-party t,n- threshold ECDSA Elliptic Curve Digital Signature Algorithm based on Gennaro and Goldfeder 20201 and EdDSA Edwards Curve Digital Signature Algorithm. A security vulnerability exists in IO FinNet tss-lib versions prior to...

9.1CVSS8.2AI score0.00453EPSS
Exploits0References5
Rows per page
Query Builder