CVE-2019-20399

Published January 23rd, 2020

View on NVD ↗

CVSS v3

5.9

MEDIUM

CVSS v2

4.3

MEDIUM

Affected

PROJECT

Description

A timing vulnerability in the Scalar::check_overflow function in Parity libsecp256k1-rs before 0.3.1 potentially allows an attacker to leak information via a side-channel attack.

paritytech/libsecp256k1

Pure Rust Implementation of secp256k1.

GitHub

184