Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 9:51 p.m.8 views

CVE-2022-47930

An issue was discovered in IO FinNet tss-lib before 2.0.0. The parameter ssid for defining a session id is not used through the MPC implementation, which makes replaying and spoofing of messages easier. In particular, the Schnorr proof of knowledge implemented in sch.go does not utilize a session...

6.8CVSS6.7AI score0.00523EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2023/04/21 12:0 a.m.11 views

CVE-2022-47930

An issue was discovered in IO FinNet tss-lib before 2.0.0. The parameter ssid for defining a session id is not used through the MPC implementation, which makes replaying and spoofing of messages easier. In particular, the Schnorr proof of knowledge implemented in sch.go does not utilize a session...

6.5AI score0.00523EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/04/21 12:0 a.m.42 views

CVE-2022-47930

An issue was discovered in IO FinNet tss-lib before 2.0.0. The parameter ssid for defining a session id is not used through the MPC implementation, which makes replaying and spoofing of messages easier. In particular, the Schnorr proof of knowledge implemented in sch.go does not utilize a session...

6.7AI score0.00523EPSS
Exploits0References2
CVE
CVE
added 2023/04/21 12:0 a.m.82 views

CVE-2022-47930

CVE-2022-47930 affects IO FinNet tss-lib prior to 2.0.0. The root cause is that the parameter ssid used to define a session id is not applied through the MPC implementation, and the Schnorr proof of knowledge in sch.go does not utilize a session id, context, or random nonce when generating the ch...

6.8CVSS6.5AI score0.00523EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder