CVE-2020-1026
The CVE-2020-1026 issue affects the MSR JavaScript Cryptography Library’s ECC implementation. It results from multiple bugs in ECC code, enabling an attacker to potentially leak a server’s private ECC key (key leakage attack) or craft an invalid ECDSA signature that passes as valid. The vulnerabi...