CVE-2025-66692
- Source
- https://cve.org/CVERecord?id=CVE-2025-66692
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-66692.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2025-66692
- Published
- 2026-01-20T21:16:04.437Z
- Modified
- 2026-03-13T03:42:17.039701Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
A buffer over-read in the PublicKey::verify() method of Binance - Trust Wallet Core before commit 5668c67 allows attackers to cause a Denial of Service (DoS) via a crafted input.
- References
Affected packages
Git / github.com/trustwallet/wallet-core
Affected versions
0.*
0.0.1
0.10.0
0.12.0
0.12.1
0.12.10
0.12.11
0.12.12
0.12.13
0.12.14
0.12.15
0.12.16
0.12.17
0.12.18
0.12.19
0.12.21
0.12.22
0.12.23
0.12.24
0.12.25
0.12.26
0.12.27
0.12.28
0.12.29
0.12.30
0.12.31
0.12.32
0.12.33
0.12.4
0.12.5
0.12.6
0.12.7
0.12.8
0.12.9
0.4.0
0.5.0
0.5.2
0.5.3
0.6.0
0.6.1
0.7.0
0.7.1
0.7.2
0.8.0
0.8.1
0.9.0
0.9.1
1.*
1.0
1.0.1
1.0.2
1.0.3
1.0.4
2.*
2.0.0
2.0.1
2.0.10
2.0.12
2.0.14
2.0.15
2.0.16
2.0.19
2.0.2
2.0.20
2.0.21
2.0.22
2.0.3
2.0.4
2.0.6
2.0.8
2.1.0
2.1.1
2.1.2
2.1.3
2.1.4
2.2.0
2.2.1
2.2.10
2.2.11
2.2.12
2.2.13
2.2.14
2.2.2
2.2.3
2.2.4
2.2.5
2.2.6
2.2.7
2.2.8
2.2.9
2.3.0
2.3.1
2.3.2
2.3.3
2.3.4
2.3.5
2.3.6
2.3.8
2.3.9
2.4.0
2.4.1
2.5.0
2.5.1
2.5.10
2.5.2
2.5.3
2.5.4
2.5.5
2.5.6
2.5.7
2.5.8
2.5.9
2.6.0
2.6.1
2.6.10
2.6.11
2.6.12
2.6.13
2.6.14
2.6.16
2.6.17
2.6.18
2.6.19
2.6.2
2.6.20
2.6.21
2.6.22
2.6.23
2.6.24
2.6.25
2.6.27
2.6.29
2.6.3
2.6.30
2.6.31
2.6.32
2.6.33
2.6.34
2.6.35
2.6.36
2.6.4
2.6.5
2.6.6
2.6.7
2.6.8
2.6.9
2.7.0
2.7.1
2.7.2
2.7.3
2.7.4
2.7.5
2.7.6
2.7.7
2.7.8
2.7.9
2.8.0
2.9.0
2.9.1
2.9.2
2.9.3
2.9.4
2.9.5
2.9.6
2.9.7
2.9.8
3.*
3.0.0
3.0.1
3.0.2
3.0.3
3.0.4
3.0.5
3.0.6
3.0.7
3.0.8
3.0.9
3.1.0
3.1.1
3.1.10
3.1.11
3.1.12
3.1.13
3.1.14
3.1.15
3.1.16
3.1.17
3.1.18
3.1.19
3.1.20
3.1.21
3.1.22
3.1.23
3.1.24
3.1.25
3.1.26
3.1.27
3.1.28
3.1.29
3.1.3
3.1.30
3.1.31
3.1.32
3.1.33
3.1.34
3.1.35
3.1.36
3.1.37
3.1.38
3.1.39
3.1.4
3.1.6
3.1.7
3.1.8
3.1.9
3.2.0
3.2.1
3.2.10
3.2.11
3.2.12
3.2.13
3.2.14
3.2.15
3.2.16
3.2.17
3.2.18
3.2.19
3.2.2
3.2.20
3.2.21
3.2.3
3.2.4
3.2.5
3.2.6
3.2.7
3.2.8
3.2.9
3.3.2
4.*
4.0.0
4.0.1
4.0.10
4.0.11
4.0.12
4.0.13
4.0.14
4.0.15
4.0.16
4.0.17
4.0.18
4.0.19
4.0.2
4.0.20
4.0.21
4.0.22
4.0.23
4.0.24
4.0.25
4.0.26
4.0.27
4.0.28
4.0.29
4.0.3
4.0.30
4.0.31
4.0.32
4.0.33
4.0.34
4.0.35
4.0.36
4.0.37
4.0.38
4.0.39
4.0.4
4.0.40
4.0.41
4.0.42
4.0.43
4.0.44
4.0.45
4.0.46
4.0.47
4.0.48
4.0.49
4.0.5
4.0.6
4.0.7
4.0.8
4.0.9
4.1.0
4.1.1
4.1.10
4.1.11
4.1.12
4.1.13
4.1.14
4.1.15
4.1.16
4.1.17
4.1.18
4.1.19
4.1.2
4.1.20
4.1.21
4.1.22
4.1.3
4.1.4
4.1.5
4.1.6
4.1.7
4.1.8
4.1.8-rc2
4.1.9
4.2.0
4.2.0-dev-rc4
4.2.1
4.2.10
4.2.11
4.2.12
4.2.13
4.2.14
4.2.15
4.2.16
4.2.17
4.2.18
4.2.19
4.2.2
4.2.20
4.2.21
4.2.3
4.2.4
4.2.5
4.2.6
4.2.7
4.2.8
4.2.9
4.3.0
4.3.1
4.3.10
4.3.11
4.3.11-rc2
4.3.12
4.3.13
4.3.14
4.3.15
4.3.16
4.3.17
4.3.18
4.3.19
4.3.2
4.3.20
4.3.21
4.3.22
4.3.23
4.3.3
4.3.4
4.3.5
4.3.6
4.3.7
4.3.8
4.3.9
Database specific
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-66692.json"
vanir_signatures
[
{
"id": "CVE-2025-66692-01bb7f06",
"signature_type": "Function",
"digest": {
"function_hash": "128324311157585814372525828692126498875",
"length": 1291.0
},
"target": {
"file": "tests/chains/Tezos/TWAnySignerTests.cpp",
"function": "TEST"
},
"source": "https://github.com/trustwallet/wallet-core/commit/7c78376f1a49ebd97060ff3fa56672db4758944d",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2025-66692-0e9efd5f",
"signature_type": "Line",
"digest": {
"line_hashes": [
"161426400410266580999099866027387227573",
"65409512503859976687428574672018328646",
"199979982074297058575534398672435011899",
"18968693919440429033176533190940011684",
"15988646266621205800680975724418334131",
"83625924099062244093436783246232712451",
"10087909548783869958281713464368576307",
"109736543117609555986610675761525784245",
"296020545865413289403770500799684093028",
"272168467515318038822841374504447579385",
"15614438404218487512838570378482611255",
"178503775799112968210907208423355979082"
],
"threshold": 0.9
},
"target": {
"file": "tests/chains/Tezos/OperationListTests.cpp"
},
"source": "https://github.com/trustwallet/wallet-core/commit/7c78376f1a49ebd97060ff3fa56672db4758944d",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2025-66692-12d28017",
"signature_type": "Function",
"digest": {
"function_hash": "75680609184176118852148802074666970838",
"length": 1068.0
},
"target": {
"file": "tests/chains/Tezos/OperationListTests.cpp",
"function": "TEST"
},
"source": "https://github.com/trustwallet/wallet-core/commit/7c78376f1a49ebd97060ff3fa56672db4758944d",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2025-66692-199694b1",
"signature_type": "Function",
"digest": {
"function_hash": "56839906555045465743944202583134452761",
"length": 3378.0
},
"target": {
"file": "tests/chains/Tezos/TransactionCompilerTests.cpp",
"function": "TEST"
},
"source": "https://github.com/trustwallet/wallet-core/commit/7c78376f1a49ebd97060ff3fa56672db4758944d",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2025-66692-21c9232b",
"signature_type": "Function",
"digest": {
"function_hash": "12670646121929595253048164865672845919",
"length": 3126.0
},
"target": {
"file": "src/Tezos/Forging.cpp",
"function": "forgeOperation"
},
"source": "https://github.com/trustwallet/wallet-core/commit/7c78376f1a49ebd97060ff3fa56672db4758944d",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2025-66692-51f3d11f",
"signature_type": "Function",
"digest": {
"function_hash": "108670184771774812786520418231264506638",
"length": 2166.0
},
"target": {
"file": "tests/chains/Tezos/SignerTests.cpp",
"function": "TEST"
},
"source": "https://github.com/trustwallet/wallet-core/commit/7c78376f1a49ebd97060ff3fa56672db4758944d",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2025-66692-6716a724",
"signature_type": "Function",
"digest": {
"function_hash": "19150228631416150635523117925579431158",
"length": 873.0
},
"target": {
"file": "tests/chains/Tezos/OperationListTests.cpp",
"function": "TEST"
},
"source": "https://github.com/trustwallet/wallet-core/commit/7c78376f1a49ebd97060ff3fa56672db4758944d",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2025-66692-73f70ebb",
"signature_type": "Line",
"digest": {
"line_hashes": [
"222367367422805005860576467203345224181",
"41819746620106600917543028054803360732",
"139645983306364128231112219202137159670",
"53703197254496462379657090240713215482",
"107965153668320961473716947168549620507",
"120516098741876344320751525912481004845",
"120166097479530084360776833342296094876",
"66949178131777129775911789990486868218"
],
"threshold": 0.9
},
"target": {
"file": "tests/chains/Tezos/TWAnySignerTests.cpp"
},
"source": "https://github.com/trustwallet/wallet-core/commit/7c78376f1a49ebd97060ff3fa56672db4758944d",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2025-66692-9ac76085",
"signature_type": "Line",
"digest": {
"line_hashes": [
"63406846354035370150007059868976238408",
"58492103186208084020827390526245489496",
"83982506245061677244765623696960144532",
"32228825131357996867685401053624525970",
"323889955369329787259415197196957109931",
"40662712204369644708333388570238551986",
"211341825303812379774117301752281255531",
"22769928558285589788986097208108257744",
"278364210304013446285982841147091121923",
"119123793082555073209018324286488732693",
"93383173585980501224682367717489324843",
"99755290254281743019629801312941505971",
"319503675832830799550217595116983187104",
"319907073818836287167732985256754056722",
"63801128913091499168610714059725039068",
"43864028704782145506368365294532452474",
"139976012652314020522512448735086793422",
"302109163595378183426708618534186567595",
"318747799108196502557248424382802143776",
"87867535016862808766241466045596564350",
"5467096498088820540132888528708421193",
"157651247630513821979368963223131050817",
"299005570282706958611764419763566568216",
"22400309929394748119778826368470138977",
"43423208951536255556728240763097191228",
"180475216105056695550692587151121123804",
"74856366331617219134188884007951438527",
"284587640762860532635954543979716343111",
"168742462609214193974973521062114232509",
"303158131445515624177753225999200610954",
"726206151801848065592323339995576497",
"45872052999232469446458897974915258171",
"188183186228917745669875953079179752889",
"226900523020937966090160165058716531680",
"275313491950484808904296103126408467882",
"259677545161656288519799954848238838509",
"51109387386748291869375745839413452367",
"230860089064520448880016061385157638730",
"208218395739264079127441679055794950617",
"75255789037924771875095430291262535434",
"299292252985248883630500418341158590470",
"306862962504878689332045217482201119988",
"191851726402935344311641125341544419741",
"33790541690325846160996395487811181813",
"91583905488438021542697421199533449978",
"176650738954643703078054403511824144468",
"187534442447268257124369995876185162549",
"83797017477897336080373166608201756578",
"83688312851896560690123391665992761444",
"274841845701126529551183444476907308312",
"73094257955861484419772110632370825955",
"333822529380259333955437502722412232859",
"221637509253447501725492251901892977120",
"248691789813096817455929428346325924005",
"85165626006121445703460627622305601945",
"196809364984480688502685764442898438869",
"57943971045842178472998754652069792628",
"146167509830031954908412721476188273940",
"193075631435937802483251490248589519113",
"125612962062293597957660743206333844145",
"72723203821941065464734030225828227150",
"186252238789294394858111509769983523365",
"13101416970655460128961102539447493002",
"315647162683758068752754792301908816178",
"80147303798397040569233510538265257668",
"213841877345517971129072745730511844473"
],
"threshold": 0.9
},
"target": {
"file": "tests/chains/Tezos/TransactionCompilerTests.cpp"
},
"source": "https://github.com/trustwallet/wallet-core/commit/7c78376f1a49ebd97060ff3fa56672db4758944d",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2025-66692-9ec3a646",
"signature_type": "Line",
"digest": {
"line_hashes": [
"57746345415150007798169043097026939231",
"199551690813602841600949686504899450589",
"230336851192380334432999105259049734447",
"87906687962814845055839822592779539416"
],
"threshold": 0.9
},
"target": {
"file": "tests/chains/Tezos/SignerTests.cpp"
},
"source": "https://github.com/trustwallet/wallet-core/commit/7c78376f1a49ebd97060ff3fa56672db4758944d",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2025-66692-c3371c36",
"signature_type": "Line",
"digest": {
"line_hashes": [
"25693463484828518699815710209160278608",
"103030737157757505378161210496267315548",
"263974296215128760492634246856608361642",
"205105758624094931456303622625420217726"
],
"threshold": 0.9
},
"target": {
"file": "src/Tezos/Forging.cpp"
},
"source": "https://github.com/trustwallet/wallet-core/commit/7c78376f1a49ebd97060ff3fa56672db4758944d",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2025-66692-cd6c0445",
"signature_type": "Function",
"digest": {
"function_hash": "90319036644329392172366045010433711509",
"length": 1777.0
},
"target": {
"file": "tests/chains/Tezos/TWAnySignerTests.cpp",
"function": "TEST"
},
"source": "https://github.com/trustwallet/wallet-core/commit/7c78376f1a49ebd97060ff3fa56672db4758944d",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2025-66692-d557fccb",
"signature_type": "Function",
"digest": {
"function_hash": "39191557353719571909807436113129044799",
"length": 784.0
},
"target": {
"file": "tests/chains/Tezos/ForgingTests.cpp",
"function": "TEST"
},
"source": "https://github.com/trustwallet/wallet-core/commit/7c78376f1a49ebd97060ff3fa56672db4758944d",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2025-66692-e002e404",
"signature_type": "Function",
"digest": {
"function_hash": "237950203488547456504736154993680439695",
"length": 1626.0
},
"target": {
"file": "tests/chains/Tezos/OperationListTests.cpp",
"function": "TEST"
},
"source": "https://github.com/trustwallet/wallet-core/commit/7c78376f1a49ebd97060ff3fa56672db4758944d",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2025-66692-fab41694",
"signature_type": "Line",
"digest": {
"line_hashes": [
"271428216193847111225307099917608535150",
"324294790195694275177459709762808441764",
"272639345092881803923462183920923466357",
"136459896436734276202480960608176803173"
],
"threshold": 0.9
},
"target": {
"file": "tests/chains/Tezos/ForgingTests.cpp"
},
"source": "https://github.com/trustwallet/wallet-core/commit/7c78376f1a49ebd97060ff3fa56672db4758944d",
"signature_version": "v1",
"deprecated": false
}
]