Description

A Security Feature Bypass vulnerability exists in MSR JavaScript Cryptography Library that is caused by incorrect arithmetic computations, aka "MSR JavaScript Cryptography Library Security Feature Bypass Vulnerability." This affects Microsoft Research JavaScript Cryptography Library.

Remediation

References

http://www.securityfocus.com/bid/104655

http://www.securitytracker.com/id/1041268

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8319

Related Vulnerabilities

CVE-2019-14653 Vulnerability in maven package org.webjars.npm:editor.md

CVE-2022-43432 Vulnerability in maven package org.jenkins-ci.plugins:xframium

CVE-2015-8860 Vulnerability in npm package tar

CVE-2016-10652 Vulnerability in npm package prebuild-lwip

CVE-2020-2115 Vulnerability in maven package org.jenkins-ci.plugins:nunit

Severity

Critical

Classification

CWE-682 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Third Party Advisory VDB Entry Patch Vendor Advisory