003-gas-convert (=1.0.1), 0x-hunter-core (>=1.0.0 <=1.0.1-5) +15107 more potentially affected by CVE-2026-2739 via bn.js (>=0.10.1 <=4.12.0)

bn.js NPM version =0.10.1, =1.0.0, =0.0.3, =0.0.3, =0.0.11, =1.1.0, =0.0.2, =0.9.9, =0.10.33 - 108-gas-convert =1.0.0 - 2.typescript-init =1.0.0 - 260f-check-balance =1.0.0 - 260f-gas-convert =1.0.0 and more Source cves: CVE-2026-2739 Source advisory: OSV:GHSA-378V-28HJ-76WF...

1inch-agent-kit (=1.0.53), 1matrix-amino (>=1.0.0 <=1.0.1) +4836 more potentially affected by CVE-2026-2739 via bn.js (>=5.0.0 <=5.2.2)

bn.js NPM version =5.0.0, =1.0.0, =1.0.1, =1.0.1, =1.0.0, =1.0.1, =1.0.0, =1.0.1, =1.0.1, =1.0.2 and more Source cves: CVE-2026-2739 Source advisory: OSV:GHSA-378V-28HJ-76WF...

UBUNTU-CVE-2026-2739

This affects versions of the package bn.js before 5.2.3. Calling maskn0 on any BN instance corrupts the internal state, causing toString, divmod, and other methods to enter an infinite loop, hanging the process indefinitely...

Linux Distros Unpatched Vulnerability : CVE-2026-2739

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - This affects versions of the package bn.js before 5.2.3. Calling maskn0 on any BN instance corrupts the internal state, causing toString, divmod, and other...

003-gas-convert (=1.0.1), 0x-hunter-core (>=1.0.0 <=1.0.1-5) +13827 more potentially affected by CVE-2026-2739 via bn.js (>=4.10.3 <=4.12.0)

bn.js NPM version =4.10.3, =1.0.0, =0.0.3, =0.0.3, =0.0.11, =1.1.0, =0.0.2, =0.9.9, =0.10.33 - 108-gas-convert =1.0.0 - 2.typescript-init =1.0.0 - 260f-check-balance =1.0.0 - 260f-gas-convert =1.0.0 and more Source cves: CVE-2026-2739 Source advisory: SNYK:JS-BNJS-15274301...

org.webjars.npm:asn1.js (>=4.0.0 <=5.4.1), org.webjars.npm:asn1.js-rfc5280 (=3.0.0) +26 more potentially affected by CVE-2026-2739 via org.webjars.npm:bn.js (>=4.11.6 <=5.2.0)

org.webjars.npm:bn.js MAVEN version =4.11.6, =4.0.0, =4.0.1, =4.0.0, =5.0.0, =6.2.3, =6.6.1 - org.webjars.npm:ethereum-cryptography =0.1.3 - org.webjars.npm:ethers =5.4.6 - org.webjars.npm:ethersprojectaddress =5.4.0 - org.webjars.npm:ethersprojectbignumber =5.4.1 and more Source cves:...

1inch-agent-kit (=1.0.53), 1matrix-amino (>=1.0.0 <=1.0.1) +4836 more potentially affected by CVE-2026-2739 via bn.js (>=5.0.0 <=5.2.2)

bn.js NPM version =5.0.0, =1.0.0, =1.0.1, =1.0.1, =1.0.0, =1.0.1, =1.0.0, =1.0.1, =1.0.1, =1.0.2 and more Source cves: CVE-2026-2739 Source advisory: SNYK:JS-BNJS-15274301...