Consensys gnark-crypto up to and including 0.11.2 allows Signature Malleability. This occurs because deserialisation of EdDSA and ECDSA signatures does not ensure that the data is in a certain interval.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
consensys gnark-crypto |