pkg:Go/github.com/consensys/gnark

所有已知漏洞

• CRITICAL9.1CVE-2025-57801Gnark is vulnerable to signature malleability in EdDSA and ECDSA due to missing scalar checks in github.com/consensys/gnark
  from 0, < 0.14.0
• CRITICAL9.1CVE-2025-57801Gnark is vulnerable to signature malleability in EdDSA and ECDSA due to missing scalar checks in github.com/consensys/gnark
  from 0, < 0.14.0
• HIGH7.5CVE-2025-58157Denial of service when computing scalar multiplication using fake-GLV algorithm in github.com/consensys/gnark
  from 0, < 0.13.0
• HIGH7.5CVE-2025-58157Denial of service when computing scalar multiplication using fake-GLV algorithm in github.com/consensys/gnark
  >= 0.12.0, < 0.13.0
• MEDIUM6.2CVE-2024-45039Groth16 commitment extension unsound for more than one commitment in github.com/consensys/gnark
  from 0, < 0.11.0
• MEDIUM6.2CVE-2024-45039Groth16 commitment extension unsound for more than one commitment in github.com/consensys/gnark
  from 0, < 0.11.0
• MEDIUM5.9CVE-2024-45040gnark commitments to private witnesses in Groth16 as implemented break zero-knowledge property
  from 0, < 0.11.0
• MEDIUM5.9CVE-2024-45040gnark commitments to private witnesses in Groth16 as implemented break zero-knowledge property
  from 0, < 0.11.0
• MEDIUM5.5CVE-2024-50354Gnark out-of-memory during deserialization with crafted inputs in github.com/consensys/gnark
  from 0, < 0.12.0
• MEDIUM5.5CVE-2024-50354Gnark out-of-memory during deserialization with crafted inputs in github.com/consensys/gnark
  from 0, < 0.11.1
• MEDIUM5.5CVE-2023-44378Unsoundness in variable comparison / non-unique binary decomposition in github.com/consensys/gnark
  from 0, < 0.9.0
• MEDIUM5.5CVE-2023-44378Unsoundness in variable comparison / non-unique binary decomposition in github.com/consensys/gnark
  from 0, < 0.9.0