CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16 matches found

SUSE CVE•added 2026/02/21 12:23 a.m.•4 views

SUSE CVE-2026-26958

filippo.io/edwards25519 is a Go library implementing the edwards25519 elliptic curve with APIs for building cryptographic primitives. In versions 1.1.0 and earlier, MultiScalarMult produces invalid results or undefined behavior if the receiver is not the identity point. If Point.MultiScalarMult i...

6.5CVSS7AI score0.00366EPSS

Exploits0References11

OSV•added 2026/02/19 11:16 p.m.•5 views

DEBIAN-CVE-2026-26958

6.3CVSS7.5AI score0.00366EPSS

Exploits0References1

OSV•added 2026/02/19 11:16 p.m.•6 views

AZL-78216 CVE-2026-26958 affecting package telegraf 1.31.0-15

6.3CVSS5.7AI score0.00366EPSS

Exploits0References1

NVD•added 2026/02/19 11:16 p.m.•5 views

CVE-2026-26958

6.3CVSS0.00366EPSS

Exploits0References3

OSV•added 2026/02/19 11:16 p.m.•5 views

AZL-78123 CVE-2026-26958 affecting package keda 2.14.1-11

6.3CVSS7.1AI score0.00366EPSS

Exploits0References1

Debian CVE•added 2026/02/19 11:1 p.m.•5 views

CVE-2026-26958

6.3CVSS7.5AI score0.00366EPSS

Exploits0

ATTACKERKB•added 2026/02/19 11:1 p.m.•5 views

CVE-2026-26958

6.3CVSS5.5AI score0.00366EPSS

Exploits0References4Affected Software1

Vulnrichment•added 2026/02/19 11:1 p.m.•3 views

CVE-2026-26958 filippo.io/edwards25519 MultiScalarMult function produces invalid results or undefined behavior if receiver is not the identity

6.3CVSS5.5AI score0.00366EPSS

Exploits0References3

OSV•added 2026/02/19 11:1 p.m.•5 views

CVE-2026-26958 filippo.io/edwards25519 MultiScalarMult function produces invalid results or undefined behavior if receiver is not the identity

6.3CVSS5.5AI score0.00366EPSS

Exploits0References5

Cvelist•added 2026/02/19 11:1 p.m.•22 views

CVE-2026-26958 filippo.io/edwards25519 MultiScalarMult function produces invalid results or undefined behavior if receiver is not the identity

6.3CVSS0.00366EPSS

Exploits0References3

CVE•added 2026/02/19 11:1 p.m.•34 views

CVE-2026-26958

CVE-2026-26958 affects filippo.io/edwards25519. In v1.1.0 and earlier, MultiScalarMult can produce invalid results or undefined behavior if the receiver is not the identity point; an initialized non-identity receiver yields an incorrect result, and a zero/uninitialized receiver yields invalid beh...

6.3CVSS5.4AI score0.00366EPSS

Exploits0References3

CNNVD•added 2026/02/19 12:0 a.m.•6 views

filippo.io/edwards25519 安全漏洞

filippo.io/edwards25519 is a Go language library developed by Filippo Valsorda. Versions of filippo.io/edwards25519 prior to 1.1.0 contained security vulnerabilities. These vulnerabilities stemmed from the MultiScalarMult method generating invalid results or undefined behavior when the recipient ...

6.3CVSS7.3AI score0.00366EPSS

Exploits0References3

Snyk•added 2026/02/18 10:37 p.m.•3 views

Improper Initialization

Overview Affected versions of this package are vulnerable to Improper Initialization via the MultiScalarMult function when the receiver is not properly initialized. An attacker can cause invalid results or undefined behavior by invoking this function on an uninitialized or non-identity receiver...

6.5CVSS5.5AI score0.00366EPSS

Exploits0References2

OSV•added 2026/02/18 10:37 p.m.•2 views

GHSA-FW7P-63QQ-7HPR filippo.io/edwards25519 MultiScalarMult produces invalid results or undefined behavior if receiver is not the identity

Point.MultiScalarMult failed to initialize its receiver. If the method was called on an initialized point that is not the identity point, MultiScalarMult produced an incorrect result. If the method was called on an uninitialized point, the behavior was undefined. In particular, if the receiver wa...

6.3CVSS5.6AI score0.00366EPSS

Exploits0References5

Snyk•added 2026/02/18 10:37 p.m.•2 views

Improper Initialization

6.5CVSS5.5AI score0.00366EPSS

Exploits0References2