Description

A Security Feature Bypass vulnerability exists in MSR JavaScript Cryptography Library that is caused by incorrect arithmetic computations, aka "MSR JavaScript Cryptography Library Security Feature Bypass Vulnerability." This affects Microsoft Research JavaScript Cryptography Library.

Remediation

References

http://www.securityfocus.com/bid/104655

http://www.securitytracker.com/id/1041268

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8319

Related Vulnerabilities

CVE-2022-29167 Vulnerability in npm package hawk

CVE-2019-19771 Vulnerability in npm package bp66

CVE-2022-42743 Vulnerability in npm package deep-parse-json

CVE-2016-4000 Vulnerability in maven package org.python:jython-standalone

CVE-2022-21222 Vulnerability in maven package org.webjars.npm:css-what

Severity

Critical

Classification

CWE-682 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Third Party Advisory VDB Entry Patch Vendor Advisory