org.webjars.npm:bitcore-lib (=0.15.0), org.webjars.npm:bitcore-mnemonic (=1.5.0) +6 more potentially affected by CVE-2025-14505 via org.webjars.npm:elliptic (>=6.4.0 <=6.6.1)

org.webjars.npm:elliptic MAVEN version =6.4.0, =4.0.0, =3.2.0, =4.0.2 Source cves: CVE-2025-14505 Source advisory: SNYK:JAVA-ORGWEBJARSNPM-14908845...

org.webjars.npm:bitcore-lib (=0.15.0), org.webjars.npm:bitcore-mnemonic (=1.5.0) +5 more potentially affected by CVE-2025-27611 via org.webjars.npm:base-x (=3.0.8)

org.webjars.npm:base-x MAVEN version =3.0.8 is affected by a known vulnerability. The following packages have a transitive dependency on org.webjars.npm:base-x and may be impacted: - org.webjars.npm:bitcore-lib =0.15.0 - org.webjars.npm:bitcore-mnemonic =1.5.0 - org.webjars.npm:bs58 =4.0.1 -...

MAL-2024-10608 Malicious code in bitcore-mnemic (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3a72a50d12427111f0b683bda37a019abbeeee63bc70ac6278b220df90b87991 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-10609 Malicious code in bitcore-mnemoic (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ab9b0ec80242884d35432aaa1d154e06c0b6b7e99cff7afcbd8f4834cb9d584d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...