Description

A Security Feature Bypass vulnerability exists in MSR JavaScript Cryptography Library that is caused by incorrect arithmetic computations, aka "MSR JavaScript Cryptography Library Security Feature Bypass Vulnerability." This affects Microsoft Research JavaScript Cryptography Library.

Remediation

References

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8319

http://www.securitytracker.com/id/1041268

http://www.securityfocus.com/bid/104655

Related Vulnerabilities

CVE-2021-22696 Vulnerability in maven package org.apache.cxf:cxf-rt-rs-security-oauth2

CVE-2022-3509 Vulnerability in maven package com.google.protobuf:protobuf-javalite

CVE-2023-38493 Vulnerability in maven package com.linecorp.armeria:armeria

CVE-2020-7597 Vulnerability in npm package codecov

CVE-2022-28220 Vulnerability in maven package org.apache.james:james-server-protocols-imap4

Severity

Critical

Classification

CWE-682 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Patch Vendor Advisory Third Party Advisory VDB Entry