CVE-2024-49365 | bitcoinjs tiny-secp256k1 up to 1.1.6 Global Buffer verify signature verification (GHSA-5vhg-9xg4-cv9m)

Inserito da Angelo Barbosa | Lug 1, 2025 | CVE

A vulnerability was found in bitcoinjs tiny-secp256k1 up to 1.1.6 and classified as critical. This issue affects the function verify of the component Global Buffer Handler. The manipulation leads to improper verification of cryptographic signature.

The identification of this vulnerability is CVE-2024-49365. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-49365 | bitcoinjs tiny-secp256k1 up to 1.1.6 Global Buffer verify signature verification (GHSA-5vhg-9xg4-cv9m)

Post correlati

CVE-2025-39363 | AlphaEfficiencyTeam Custom Login and Registration Plugin up to 1.0.0 on WordPress cross site scripting

CVE-2023-52597 | Linux Kernel up to 6.7.3 s390 kvm_arch_vcpu_ioctl_set_fpu memory corruption

CVE-2024-25350 | PHPGurukul Zoo Management System 1.0 edit-ticket.php tickettype/tprice sql injection

CVE-2023-50372 | Custom Post Type Page Template Plugin up to 1.1 on WordPress cross-site request forgery