VYPR

npm package

msrcrypto

pkg:npm/msrcrypto

Vulnerabilities (2)

  • CVE-2020-1026Apr 15, 2020
    affected < 1.5.8fixed 1.5.8

    A Security Feature Bypass vulnerability exists in the MSR JavaScript Cryptography Library that is caused by multiple bugs in the library’s Elliptic Curve Cryptography (ECC) implementation.An attacker could potentially abuse these bugs to learn information about a server’s pri

  • CVE-2018-8319CriJul 11, 2018
    affected < 1.4.1fixed 1.4.1

    A Security Feature Bypass vulnerability exists in MSR JavaScript Cryptography Library that is caused by incorrect arithmetic computations, aka "MSR JavaScript Cryptography Library Security Feature Bypass Vulnerability." This affects Microsoft Research JavaScript Cryptography Libr