慢雾安全团队发文披露,在广泛使用的 elliptic 加密库中发现一个关键漏洞(GHSA-vjh7-7g9h-fjfh)。
攻击者可通过构造特定输入,仅需一个签名就能提取私钥,这可能导致数字资产或身份凭证被盗。该漏洞可能影响依赖此加密库的区块链应用和数字身份系统。
慢雾:在 elliptic 加密库中发现一个关键漏洞,该漏洞或导致私钥泄露
2025-03-05 04:11:48
Disclaimer:
1. The information provided does not constitute investment advice. Investors should make independent decisions and bear all risks themselves.
2. The copyright of this content belongs to the original author. The views expressed herein are solely those of the author and do not represent the stance or position of this website.
