QwikSec

Security Database

CVE

CWE

Training

CVE-2026-4258

Published: Mar 17, 2026

Modified: Mar 17, 2026

PUBLISHED

CVSS v3.1

7.5

HIGH

Description

All versions of the package sjcl are vulnerable to Improper Verification of Cryptographic Signature due to missing point-on-curve validation in sjcl.ecc.basicKey.publicKey(). An attacker can recover a victim's ECDH private key by sending crafted off-curve public keys and observing ECDH outputs. The dhJavaEc() function directly returns the raw x-coordinate of the scalar multiplication result (no hashing), providing a plaintext oracle without requiring any decryption feedback.

Vendor	Product	Versions
n/a	sjcl	affected `0 - < *`

Weaknesses (CWE)

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

References

https://security.snyk.io/vuln/SNYK-JS-SJCL-15369617

https://gist.github.com/Kr0emer/2560f98edb10b0b34f2438cd63913c47

https://github.com/bitwiseshiftleft/sjcl/blob/master/core/ecc.js%23L454-L461

https://github.com/bitwiseshiftleft/sjcl/commit/ee307459972442a17beebc29dc331fffd8aff796

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.