Lucene search
K

11 matches found

SUSE CVE
SUSE CVE
added 2026/02/21 12:23 a.m.5 views

SUSE CVE-2026-26958

filippo.io/edwards25519 is a Go library implementing the edwards25519 elliptic curve with APIs for building cryptographic primitives. In versions 1.1.0 and earlier, MultiScalarMult produces invalid results or undefined behavior if the receiver is not the identity point. If Point.MultiScalarMult i...

6.5CVSS7AI score0.00366EPSS
Exploits0References11
RedhatCVE
RedhatCVE
added 2026/02/20 11:27 a.m.4 views

CVE-2026-26958

A flaw was found in filippo.io/edwards25519, a Go library used for cryptographic operations. This vulnerability occurs in the MultiScalarMult function when it processes points that are not properly initialized or are not the identity point. Such conditions can lead to incorrect cryptographic...

6.3CVSS5.5AI score0.00366EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/02/20 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-26958

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - filippo.io/edwards25519 is a Go library implementing the edwards25519 elliptic curve with APIs for building cryptographic primitives. In versions 1.1.0 and...

6.3CVSS7.2AI score0.00366EPSS
Exploits0References3
NVD
NVD
added 2026/02/19 11:16 p.m.8 views

CVE-2026-26958

filippo.io/edwards25519 is a Go library implementing the edwards25519 elliptic curve with APIs for building cryptographic primitives. In versions 1.1.0 and earlier, MultiScalarMult produces invalid results or undefined behavior if the receiver is not the identity point. If Point.MultiScalarMult i...

6.3CVSS0.00366EPSS
Exploits0References3
OSV
OSV
added 2026/02/19 11:16 p.m.7 views

AZL-78123 CVE-2026-26958 affecting package keda 2.14.1-11

filippo.io/edwards25519 is a Go library implementing the edwards25519 elliptic curve with APIs for building cryptographic primitives. In versions 1.1.0 and earlier, MultiScalarMult produces invalid results or undefined behavior if the receiver is not the identity point. If Point.MultiScalarMult i...

6.3CVSS7.1AI score0.00366EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/19 11:1 p.m.27 views

CVE-2026-26958 filippo.io/edwards25519 MultiScalarMult function produces invalid results or undefined behavior if receiver is not the identity

filippo.io/edwards25519 is a Go library implementing the edwards25519 elliptic curve with APIs for building cryptographic primitives. In versions 1.1.0 and earlier, MultiScalarMult produces invalid results or undefined behavior if the receiver is not the identity point. If Point.MultiScalarMult i...

6.3CVSS0.00366EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/02/19 11:1 p.m.3 views

CVE-2026-26958 filippo.io/edwards25519 MultiScalarMult function produces invalid results or undefined behavior if receiver is not the identity

filippo.io/edwards25519 is a Go library implementing the edwards25519 elliptic curve with APIs for building cryptographic primitives. In versions 1.1.0 and earlier, MultiScalarMult produces invalid results or undefined behavior if the receiver is not the identity point. If Point.MultiScalarMult i...

6.3CVSS5.5AI score0.00366EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/02/19 11:1 p.m.6 views

CVE-2026-26958

filippo.io/edwards25519 is a Go library implementing the edwards25519 elliptic curve with APIs for building cryptographic primitives. In versions 1.1.0 and earlier, MultiScalarMult produces invalid results or undefined behavior if the receiver is not the identity point. If Point.MultiScalarMult i...

6.3CVSS7.5AI score0.00366EPSS
Exploits0
CVE
CVE
added 2026/02/19 11:1 p.m.42 views

CVE-2026-26958

CVE-2026-26958 affects filippo.io/edwards25519. In v1.1.0 and earlier, MultiScalarMult can produce invalid results or undefined behavior if the receiver is not the identity point; an initialized non-identity receiver yields an incorrect result, and a zero/uninitialized receiver yields invalid beh...

6.3CVSS5.4AI score0.00366EPSS
Exploits0References3
Snyk
Snyk
added 2026/02/18 10:37 p.m.2 views

Improper Initialization

Overview Affected versions of this package are vulnerable to Improper Initialization via the MultiScalarMult function when the receiver is not properly initialized. An attacker can cause invalid results or undefined behavior by invoking this function on an uninitialized or non-identity receiver...

6.5CVSS5.5AI score0.00366EPSS
Exploits0References2
OSV
OSV
added 2026/02/17 9:58 p.m.5 views

GO-2026-4503 Invalid result or undefined behavior in filippo.io/edwards25519

Previously, if MultiScalarMult was invoked on an initialized point who was not the identity point, MultiScalarMult produced an incorrect result. If called on an uninitialized point, MultiScalarMult exhibited undefined behavior...

6.3CVSS5.5AI score0.00366EPSS
Exploits0References2
Rows per page
Query Builder