Westerndigital Sweet B — known CVE vulnerabilities
Every CVE whose affected-product data names Westerndigital Sweet B, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2022-23001 — CVSS 5.3 (medium): When compressing or decompressing elliptic curve points using the Sweet B library, an incorrect choice of sign bit is used. An attacker…
CVE-2022-23002 — CVSS 5.3 (medium): When compressing or decompressing a point on the NIST P-256 elliptic curve with an X coordinate of zero, the resulting output is not…
CVE-2022-23003 — CVSS 5.3 (medium): When computing a shared secret or point multiplication on the NIST P-256 curve that results in an X coordinate of zero, the resulting…
CVE-2022-23004 — CVSS 5.3 (medium): When computing a shared secret or point multiplication on the NIST P-256 curve using a public key with an X coordinate of zero, an error is…