CVE-2024-48949 Blast Radius

CRITICAL • CVSS 9.1The verify function in lib/elliptic/eddsa/index.js in the Elliptic package before 6.5.6 for Node.js omits "sig.S().gte(sig.eddsa.curve.n) || sig.S().i

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2024-48949.

Start Free Scan →← Back to CVE-2024-48949