Skip to main content

Research Javascript Cryptography Library

2 CVEs product

Monthly

CVE-2020-1026 npm CRITICAL PATCH Act Now

A Security Feature Bypass vulnerability exists in the MSR JavaScript Cryptography Library that is caused by multiple bugs in the library’s Elliptic Curve Cryptography (ECC) implementation.An. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Research Javascript Cryptography Library
NVD
CVSS 3.1
9.8
EPSS
2.5%
CVE-2018-8319 npm CRITICAL PATCH Act Now

A Security Feature Bypass vulnerability exists in MSR JavaScript Cryptography Library that is caused by incorrect arithmetic computations, aka "MSR JavaScript Cryptography Library Security Feature. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Microsoft Research Javascript Cryptography Library
NVD
CVSS 3.0
9.8
EPSS
7.0%
EPSS 3% CVSS 9.8
CRITICAL PATCH Act Now

A Security Feature Bypass vulnerability exists in the MSR JavaScript Cryptography Library that is caused by multiple bugs in the library’s Elliptic Curve Cryptography (ECC) implementation.An. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Research Javascript Cryptography Library
NVD
EPSS 7% CVSS 9.8
CRITICAL PATCH Act Now

A Security Feature Bypass vulnerability exists in MSR JavaScript Cryptography Library that is caused by incorrect arithmetic computations, aka "MSR JavaScript Cryptography Library Security Feature. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Microsoft Research Javascript Cryptography Library
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy