developmentil/ecdh

Releases3

Frequency3 years 10 months

Last Release over 3 years ago

Stars11

Native Node.js module for ECDH and ECDSA.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2022-44310 ↗	Feb 24, 2023Friday, 24 February 2023, 20:15	7.5 HIGH	—
In Development IL ecdh before 0.2.0, an attacker can send an invalid point (not on the curve) as the public key, and obtain the derived shared secret.