org.webjars.npm:secp256k1@3.8.0 vulnerabilities
-
latest version
4.0.2
-
first published
8 years ago
-
latest version published
3 years ago
-
licenses detected
- [3.2.0,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the org.webjars.npm:secp256k1 package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
org.webjars.npm:secp256k1 is a This module provides native bindings to ecdsa secp256k1 functions Affected versions of this package are vulnerable to Improper Validation of Integrity Check Value due to a missing that check in Note:
Other operations on public keys like How to fix Improper Validation of Integrity Check Value? A fix was pushed into the |
[0,)
|