Skip to main content

Sweet B

4 CVEs product

Monthly

CVE-2022-23004 MEDIUM This Month

When computing a shared secret or point multiplication on the NIST P-256 curve using a public key with an X coordinate of zero, an error is returned from the library, and an invalid unreduced value. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Sweet B
NVD
CVSS 3.1
5.3
EPSS
0.6%
CVE-2022-23003 MEDIUM This Month

When computing a shared secret or point multiplication on the NIST P-256 curve that results in an X coordinate of zero, the resulting output is not properly reduced modulo the P-256 field prime and. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Sweet B
NVD
CVSS 3.1
5.3
EPSS
0.6%
CVE-2022-23002 MEDIUM This Month

When compressing or decompressing a point on the NIST P-256 elliptic curve with an X coordinate of zero, the resulting output is not properly reduced modulo the P-256 field prime and is invalid. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Sweet B
NVD
CVSS 3.1
5.3
EPSS
0.6%
CVE-2022-23001 MEDIUM This Month

When compressing or decompressing elliptic curve points using the Sweet B library, an incorrect choice of sign bit is used. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Sweet B
NVD
CVSS 3.1
5.3
EPSS
0.6%
EPSS 1% CVSS 5.3
MEDIUM This Month

When computing a shared secret or point multiplication on the NIST P-256 curve using a public key with an X coordinate of zero, an error is returned from the library, and an invalid unreduced value. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Sweet B
NVD
EPSS 1% CVSS 5.3
MEDIUM This Month

When computing a shared secret or point multiplication on the NIST P-256 curve that results in an X coordinate of zero, the resulting output is not properly reduced modulo the P-256 field prime and. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Sweet B
NVD
EPSS 1% CVSS 5.3
MEDIUM This Month

When compressing or decompressing a point on the NIST P-256 elliptic curve with an X coordinate of zero, the resulting output is not properly reduced modulo the P-256 field prime and is invalid. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Sweet B
NVD
EPSS 1% CVSS 5.3
MEDIUM This Month

When compressing or decompressing elliptic curve points using the Sweet B library, an incorrect choice of sign bit is used. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Sweet B
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy