François Garillot

1 exploit Active since Jul 2025
CVE-2022-50237 WRITEUP MEDIUM WRITEUP
ed25519-dalek < 2.0.0 - Private Key Exposure via Double Public Key Signing Oracle
The ed25519-dalek crate before 2 for Rust allows a double public key signing function oracle attack. The Keypair implementation leads to a simple computation for extracting a private key.
CVSS 5.9