← volver
CVE-2024-58262

CVE-2024-58262

CVSS 2.9 LOWEPSS 0.1%CWE-733
The curve25519-dalek crate before 4.1.3 for Rust has a constant-time operation on elliptic curve scalars that is removed by LLVM.
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
Productos afectados
dalek-cryptography · curve25519-dalek

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://crates.io/crates/curve25519-dalekhttps://github.com/dalek-cryptography/curve25519-dalek/pull/659https://rustsec.org/advisories/RUSTSEC-2024-0344.html