CVE-2025-14505Use of a Cryptographic Primitive with a Risky Implementation in Node-elliptic

CWE-1240Use of a Cryptographic Primitive with a Risky Implementation7 documents6 sources
Severity
5.6MEDIUMNVD
EPSS
0.0%
top 98.56%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Debian Node-ellipticIndutny Elliptic
Timeline
PublishedJan 8

Description

The ECDSA implementation of the Elliptic package generates incorrect signatures if an interim value of 'k' (as computed based on step 3.2 of RFC 6979 https://datatracker.ietf.org/doc/html/rfc6979 ) has leading zeros and is susceptible to cryptanalysis, which can lead to secret key exposure. This happens, because the byte-length of 'k' is incorrectly computed, resulting in its getting truncated during the computation. Legitimate transactions or communications will be broken as a result. Furthermo

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:LExploitability: 2.2 | Impact: 3.4

Affected Packages2 packages

debiandebian/node-elliptic< node-elliptic 6.6.1+dfsg+~6.4.18-2 (forky)
npmindutny/elliptic6.6.1

🔴Vulnerability Details

3
OSV
CVE-2025-14505: The ECDSA implementation of the Elliptic package generates incorrect signatures if an interim value of 'k' (as computed based on step 32026-01-08
GHSA
Elliptic Uses a Cryptographic Primitive with a Risky Implementation2026-01-08
OSV
Elliptic Uses a Cryptographic Primitive with a Risky Implementation2026-01-08

📋Vendor Advisories

2
Red Hat
elliptic: Key handling flaws in Elliptic2026-01-08
Debian
CVE-2025-14505: node-elliptic - The ECDSA implementation of the Elliptic package generates incorrect signatures ...2025

🕵️Threat Intelligence

1
Wiz
CVE-2025-14505 Impact, Exploitability, and Mitigation Steps | Wiz