Go P256 ScalarMult/ScalarBaseMult Error with Large Scalars
CVE-2023-24532 Published on March 8, 2023
Incorrect calculation on P256 curves in crypto/internal/nistec
The ScalarMult and ScalarBaseMult methods of the P256 Curve may return an incorrect result if called with some specific unreduced scalars (a scalar larger than the order of the curve). This does not impact usages of crypto/ecdsa or crypto/ecdh.
Products Associated with CVE-2023-24532
Want to know whenever a new CVE is published for GoLang Go? stack.watch will email you.
Affected Versions
Go standard library crypto/internal/nistec:- Before 1.19.7 is affected.
- Version 1.20.0-0 and below 1.20.2 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.