CVE-2018-8319

A Security Feature Bypass vulnerability exists in MSR JavaScript Cryptography Library that is caused by incorrect arithmetic computations, aka "MSR JavaScript Cryptography Library Security Feature Bypass Vulnerability." This affects Microsoft Research JavaScript Cryptography Library.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
microsoftCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 89%
VendorProductVersion
microsoftresearch_javascript_cryptography_library
1.4
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/104655
http://www.securitytracker.com/id/1041268
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8319
http://www.securityfocus.com/bid/104655
http://www.securitytracker.com/id/1041268
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8319