Security Advisory

CVE-2022-23806

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-02-11 00:00:00

Last updated 2024-08-03 03:51:45

Assigner mitre

State PUBLISHED

Description

Curve.IsOnCurve in crypto/elliptic in Go before 1.16.14 and 1.17.x before 1.17.7 can incorrectly return true in situations with a big.Int value that is not a valid field element.

← Browse all CVEs View on cve.org ↗