CVE-2024-21502 | fastecdsa up to 2.3.1 src/curveMath.c curvemath_mul uninitialized variable

Inserito da Angelo Barbosa | Feb 24, 2024 | CVE

A vulnerability was found in fastecdsa up to 2.3.1 and classified as problematic. This issue affects the function curvemath_mul of the file src/curveMath.c. The manipulation leads to use of uninitialized variable.

The identification of this vulnerability is CVE-2024-21502. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-21502 | fastecdsa up to 2.3.1 src/curveMath.c curvemath_mul uninitialized variable

Post correlati

CVE-2023-48650 | Concrete CMS up to 8.5.13/9.2.2 Layout Preset Name cross site scripting

CVE-2024-22388 | HID Global iCLASS SE/OMNIKEY Encoder Configuration improper authorization (icsa-24-037-01)

CVE-2024-40101 | Microweber up to 2.0.15 /search keywords cross site scripting

CVE-2024-52415 | Skpstorm SK WP Settings Backup Plugin up to 1.0 on WordPress cross-site request forgery