tiny-secp256k1 — Vulnerabilities & Security Advisories 2

All 2 CVE vulnerabilities found in tiny-secp256k1, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2024-49364	tiny-secp256k1 vulnerable to private key extraction when signing a malicious JSON-stringifyable message in bundled environment CWE-522	7.5^AI	High^AI	2025-07-01
CVE-2024-49365	tiny-secp256k1 allows for verify() bypass when running in bundled environment CWE-347	5.3^AI	Medium^AI	2025-07-01

All 2 known CVE vulnerabilities affecting tiny-secp256k1 with full Chinese analysis, references, and POCs where available.