CVE-2024-48948 | Elliptic Package 6.5.7 on Node.js ECDSA _truncateToN integrity check (ID 321)

Posted by Angelo Barbosa | Oct 15, 2024 | CVE

A vulnerability has been found in Elliptic Package 6.5.7 on Node.js and classified as problematic. This vulnerability affects the function _truncateToN of the component ECDSA. The manipulation leads to improper validation of integrity check value.

This vulnerability was named CVE-2024-48948. Access to the local network is required for this attack. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-48948 | Elliptic Package 6.5.7 on Node.js ECDSA _truncateToN integrity check (ID 321)

Related Posts

CVE-2024-3780 | Technicolor CGA2121 1.0.1 information disclosure

CVE-2024-9914 | D-Link DIR-619L B1 2.06 formSetWizardSelectMode curTime buffer overflow

CVE-2024-33002 | SAP S4 HANA Document Service Handler for DPS cross site scripting

CVE-2024-26628 | Linux Kernel up to 5.15.148/6.1.76/6.6.15/6.7.3 amdkfd deadlock