Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A flaw was found in all python-ecdsa versions before 0.13.3, where it did not correctly verify whether signatures used DER encoding. Without this verification, a malformed signature could be accepted, making the signature malleable. Without proper verification, an attacker could use a malleable signature to create false transactions.
CVSS Information
N/A
Vulnerability Type
密码学签名的验证不恰当
Vulnerability Title
python-ecdsa 数据伪造问题漏洞
Vulnerability Description
python-ecdsa是一款基于Python的签名验证插件。 python-ecdsa 0.13.3之前版本中存在安全漏洞。攻击者可利用该漏洞获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A