CVE-2025-8556

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2025-8556

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-8556.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2025-8556

Aliases

Downstream

DEBIAN-CVE-2025-8556

ECHO-6134-c525-36a8

MINI-2wh7-v592-vhcj

MINI-37q3-wwpp-w6f4

MINI-3q4f-5jww-2c6f

MINI-4m9p-qrvm-cr7m

MINI-4qg6-rrwg-79gv

MINI-4qwv-2w6r-7755

MINI-4wvv-rf5j-m7x2

MINI-53pr-p368-4jwq

MINI-6q8q-xff7-p78p

MINI-6xv8-hr99-78fh

MINI-743f-cf79-qjxw

MINI-8j98-p4mf-v9rv

MINI-9j2q-w85q-82r9

MINI-cvmj-7v5h-p9cf

MINI-h282-pc6g-x38q

MINI-hv78-fhpp-c9cg

MINI-mcw6-v7ch-x63q

MINI-rhjj-6wqq-q7pr

MINI-rp6q-c3px-84rf

MINI-rvjr-hm7m-r4m8

MINI-vmwh-h9v4-36cq

MINI-wmxh-p536-hvf4

MINI-x847-4qj3-xq3g

MINI-xj6h-6qcw-mqf5

SUSE-SU-2026:0439-1

UBUNTU-CVE-2025-8556

openSUSE-SU-2026:10013-1

Related

Published

2025-08-06T09:15:28.173Z

Modified

2026-03-23T05:02:31.415540261Z

Severity

3.7 (Low) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS Calculator

Summary

[none]

Details

A flaw was found in CIRCL's implementation of the FourQ elliptic curve. This vulnerability allows an attacker to compromise session security via low-order point injection and incorrect point validation during Diffie-Hellman key exchange.

References

Affected packages

Git /

Affected ranges

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-8556.json"