CNNVD-202601-3177 Information
CNNVD ID
CNNVD-202601-3177
Related CVE
- CNNVD Published: 2026-01-20
Description (Chinese)
Trust Wallet Core是Trust Wallet公司的一个开源的、跨平台的、以移动为中心的库。 Trust Wallet Core 5668c67之前版本存在安全漏洞,该漏洞源于PublicKey::verify方法存在缓冲区过度读取,可能导致通过特制输入造成拒绝服务。
Description (English)
Trust Wallet Core is an open-source, cross-platform, mobile-centric repository of Trust Wallet. The previous version of Trust Wallet Core 5668c67 had a security loophole, which stemmed from the overreading of the buffer zone by the PublicKey::verify method, which could lead to the denial of services through ad hoc input.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Trust Wallet
Published
2026-01-20
Last Modified
2026-02-24
References
https://gist.github.com/inkman97/b791189338f73b758c31a7db3cd50c2d https://github.com/trustwallet/wallet-core/commit/5668c67 https://access.redhat.com/security/cve/cve-2025-66692
Patch
https://github.com/trustwallet/wallet-core/commit/5668c67
Share on: