CVE-2025-14505

MEDIUM

Elliptic <unknown> - Info Disclosure

Title source: llm

Description

The ECDSA implementation of the Elliptic package generates incorrect signatures if an interim value of 'k' (as computed based on step 3.2 of RFC 6979 https://datatracker.ietf.org/doc/html/rfc6979 ) has leading zeros and is susceptible to cryptanalysis, which can lead to secret key exposure. This happens, because the byte-length of 'k' is incorrectly computed, resulting in its getting truncated during the computation. Legitimate transactions or communications will be broken as a result. Furthermore, due to the nature of the fault, attackers could–under certain conditions–derive the secret key, if they could get their hands on both a faulty signature generated by a vulnerable version of Elliptic and a correct signature for the same inputs. This issue affects all known versions of Elliptic (at the time of writing, versions less than or equal to 6.6.1).

References (2)

Core 2

Core References

Various Sources third-party-advisory

https://www.herodevs.com/vulnerability-directory/cve-2025-14505

Issue Tracking issue-tracking exploit

https://github.com/indutny/elliptic/issues/321

Scores

CVSS v3 5.6

EPSS 0.0001

EPSS Percentile 2.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-1240

Status published

Products (2)

N/A/Elliptic <=6.6.1

npm/elliptic 0npm

Published Jan 08, 2026

Tracked Since Feb 18, 2026