/
DirectorySecurity AdvisoriesPricing
Sign in
Security Advisories

CVE-2025-8556

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2025-8556

Severity

3.7

Low

CVSS V3

Description

A flaw was found in CIRCL's implementation of the FourQ elliptic curve. This vulnerability allows an attacker to compromise session security via low-order point injection and incorrect point validation during Diffie-Hellman key exchange.

References

Affected packages


Safe Source for Open Sourceâ„¢
Contact us
© 2025 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Product

Chainguard ContainersChainguard LibrariesChainguard VMsIntegrationsPricing