1 matches found
AZL-50322 CVE-2024-48949 affecting package reaper for versions less than 3.1.1-13
The verify function in lib/elliptic/eddsa/index.js in the Elliptic package before 6.5.6 for Node.js omits "sig.S.gtesig.eddsa.curve.n || sig.S.isNeg" validation...