{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-22700", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2026-01-08T19:23:09.856Z", "datePublished": "2026-01-10T05:17:25.583Z", "dateUpdated": "2026-01-12T14:46:46.227Z"}, "containers": {"cna": {"title": "RustCrypto Has Insufficient Length Validation in decrypt() in SM2-PKE", "problemTypes": [{"descriptions": [{"cweId": "CWE-20", "lang": "en", "description": "CWE-20: Improper Input Validation", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}}], "references": [{"name": "https://github.com/RustCrypto/elliptic-curves/security/advisories/GHSA-j9xq-69pf-pcm8", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/RustCrypto/elliptic-curves/security/advisories/GHSA-j9xq-69pf-pcm8"}, {"name": "https://github.com/RustCrypto/elliptic-curves/pull/1603", "tags": ["x_refsource_MISC"], "url": "https://github.com/RustCrypto/elliptic-curves/pull/1603"}, {"name": "https://github.com/RustCrypto/elliptic-curves/commit/e60e99167a9a2b187ebe80c994c5204b0fdaf4ab", "tags": ["x_refsource_MISC"], "url": "https://github.com/RustCrypto/elliptic-curves/commit/e60e99167a9a2b187ebe80c994c5204b0fdaf4ab"}], "affected": [{"vendor": "RustCrypto", "product": "elliptic-curves", "versions": [{"version": "= 0.14.0-pre.0", "status": "affected"}, {"version": "= 0.14.0-rc.0", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-01-10T05:17:25.583Z"}, "descriptions": [{"lang": "en", "value": "RustCrypto: Elliptic Curves is general purpose Elliptic Curve Cryptography (ECC) support, including types and traits for representing various elliptic curve forms, scalars, points, and public/secret keys composed thereof. In versions 0.14.0-pre.0 and 0.14.0-rc.0, a denial-of-service vulnerability exists in the SM2 public-key encryption (PKE) implementation: the decrypt() path performs unchecked slice::split_at operations on input buffers derived from untrusted ciphertext. An attacker can submit short/undersized ciphertext or carefully-crafted DER-encoded structures to trigger bounds-check panics (Rust unwinding) which crash the calling thread or process. This issue has been patched via commit e60e991."}], "source": {"advisory": "GHSA-j9xq-69pf-pcm8", "discovery": "UNKNOWN"}}, "adp": [{"references": [{"url": "https://github.com/RustCrypto/elliptic-curves/security/advisories/GHSA-j9xq-69pf-pcm8", "tags": ["exploit"]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-01-12T14:46:42.360189Z", "id": "CVE-2026-22700", "options": [{"Exploitation": "poc"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-01-12T14:46:46.227Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-22700", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-01-12T14:46:42.360189Z"}}}], "references": [{"url": "https://github.com/RustCrypto/elliptic-curves/security/advisories/GHSA-j9xq-69pf-pcm8", "tags": ["exploit"]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-01-12T14:46:26.854Z"}}], "cna": {"title": "RustCrypto Has Insufficient Length Validation in decrypt() in SM2-PKE", "source": {"advisory": "GHSA-j9xq-69pf-pcm8", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}}], "affected": [{"vendor": "RustCrypto", "product": "elliptic-curves", "versions": [{"status": "affected", "version": "= 0.14.0-pre.0"}, {"status": "affected", "version": "= 0.14.0-rc.0"}]}], "references": [{"url": "https://github.com/RustCrypto/elliptic-curves/security/advisories/GHSA-j9xq-69pf-pcm8", "name": "https://github.com/RustCrypto/elliptic-curves/security/advisories/GHSA-j9xq-69pf-pcm8", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://github.com/RustCrypto/elliptic-curves/pull/1603", "name": "https://github.com/RustCrypto/elliptic-curves/pull/1603", "tags": ["x_refsource_MISC"]}, {"url": "https://github.com/RustCrypto/elliptic-curves/commit/e60e99167a9a2b187ebe80c994c5204b0fdaf4ab", "name": "https://github.com/RustCrypto/elliptic-curves/commit/e60e99167a9a2b187ebe80c994c5204b0fdaf4ab", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "RustCrypto: Elliptic Curves is general purpose Elliptic Curve Cryptography (ECC) support, including types and traits for representing various elliptic curve forms, scalars, points, and public/secret keys composed thereof. In versions 0.14.0-pre.0 and 0.14.0-rc.0, a denial-of-service vulnerability exists in the SM2 public-key encryption (PKE) implementation: the decrypt() path performs unchecked slice::split_at operations on input buffers derived from untrusted ciphertext. An attacker can submit short/undersized ciphertext or carefully-crafted DER-encoded structures to trigger bounds-check panics (Rust unwinding) which crash the calling thread or process. This issue has been patched via commit e60e991."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-20", "description": "CWE-20: Improper Input Validation"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-01-10T05:17:25.583Z"}}}, "cveMetadata": {"cveId": "CVE-2026-22700", "state": "PUBLISHED", "dateUpdated": "2026-01-12T14:46:46.227Z", "dateReserved": "2026-01-08T19:23:09.856Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2026-01-10T05:17:25.583Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:rustcrypto:sm2_elliptic_curve:0.14.0:pre0:*:*:*:rust:*:*", "matchCriteriaId": "5F5BCFE9-1585-4A90-857F-7F9E1B9C9ADA", "vulnerable": true}, {"criteria": "cpe:2.3:a:rustcrypto:sm2_elliptic_curve:0.14.0:rc0:*:*:*:rust:*:*", "matchCriteriaId": "B584C50F-8ED4-45F4-8799-7CCFE8D4DF66", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "RustCrypto: Elliptic Curves is general purpose Elliptic Curve Cryptography (ECC) support, including types and traits for representing various elliptic curve forms, scalars, points, and public/secret keys composed thereof. In versions 0.14.0-pre.0 and 0.14.0-rc.0, a denial-of-service vulnerability exists in the SM2 public-key encryption (PKE) implementation: the decrypt() path performs unchecked slice::split_at operations on input buffers derived from untrusted ciphertext. An attacker can submit short/undersized ciphertext or carefully-crafted DER-encoded structures to trigger bounds-check panics (Rust unwinding) which crash the calling thread or process. This issue has been patched via commit e60e991."}], "id": "CVE-2026-22700", "lastModified": "2026-01-22T14:53:48.393", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2026-01-10T06:15:52.517", "references": [{"source": "security-advisories@github.com", "tags": ["Patch"], "url": "https://github.com/RustCrypto/elliptic-curves/commit/e60e99167a9a2b187ebe80c994c5204b0fdaf4ab"}, {"source": "security-advisories@github.com", "tags": ["Patch"], "url": "https://github.com/RustCrypto/elliptic-curves/pull/1603"}, {"source": "security-advisories@github.com", "tags": ["Exploit", "Vendor Advisory"], "url": "https://github.com/RustCrypto/elliptic-curves/security/advisories/GHSA-j9xq-69pf-pcm8"}, {"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "tags": ["Exploit", "Vendor Advisory"], "url": "https://github.com/RustCrypto/elliptic-curves/security/advisories/GHSA-j9xq-69pf-pcm8"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "security-advisories@github.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-18T16:31:27.461808+00:00", "value": {"mitigation_remediation": ["Upgrade the elliptic\u2011curves crate to version 0.14.0 or later, which includes the commit that fixes bounds\u2011check validation.", "If you cannot upgrade immediately, add explicit length validation before calling decrypt() or wrap the decrypt call in a panic\u2011catching boundary to prevent the entire application from crashing.", "Disable or restrict use of the SM2\u2011PKE decrypt functionality for untrusted data, or replace it with a vetted cryptography library that correctly validates input lengths."], "summary": {"action": "Patch Update", "impact": "Denial of Service via bounds\u2011check panic in SM2\u2011PKE decrypt"}, "threat_synthesis": {"affected_systems": "Affected packages are RustCrypto:elliptic\u2011curves, specifically the SM2 elliptic curve crate versions 0.14.0\u2011pre.0 and 0.14.0\u2011rc.0. Any application that imports this crate and uses the decrypt() function on data originating from untrusted sources is vulnerable.", "description_and_impact": "The SM2 public\u2011key encryption implementation in the RustCrypto elliptic\u2011curve crate exhibits a CWE-20 Input Validation weakness, failing to validate the length of input ciphertext before performing operations that split slices. An attacker can provide undersized or specially crafted DER\u2011encoded data that causes a bounds\u2011check panic in Rust, which unwinds and terminates the calling thread or the process, resulting in denial of service.", "risk_and_exploitability": "With a CVSS score of 7.5 and an EPSS of less than 1%, the likelihood of exploitation is low but the impact is severe. Attackers only need to supply malicious ciphertext to trigger a bounds\u2011check panic, which terminates the thread or entire process, causing denial of service. The vulnerability is not yet in the CISA KEV catalog, but its severity warrants prompt remediation. In the absence of defensive panic handling, the crash will propagate upward, potentially bringing down critical services."}}}}, "created": "2026-01-12T14:36:49.171871+00:00", "updated": "2026-04-18T16:45:05.215666+00:00", "vendors": ["rustcrypto", "rustcrypto$PRODUCT$elliptic-curves"]}