Description

RustCrypto: Elliptic Curves is general purpose Elliptic Curve Cryptography (ECC) support, including types and traits for representing various elliptic curve forms, scalars, points, and public/secret keys composed thereof. In versions 0.14.0-pre.0 and 0.14.0-rc.0, a critical vulnerability exists in the SM2 Public Key Encryption (PKE) implementation where the ephemeral nonce k is generated with severely reduced entropy. A unit mismatch error causes the nonce generation function to request only 32 bits of randomness instead of the expected 256 bits. This reduces the security of the encryption from a 128-bit level to a trivial 16-bit level, allowing a practical attack to recover the nonce k and decrypt any ciphertext given only the public key and ciphertext. This issue has been patched via commit e4f7778.

INFO

Published Date :

2026-01-10T05:17:19.993Z

Last Modified :

2026-01-12T16:48:30.706Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2026-22698 vulnerability.

Vendors Products
Rustcrypto
  • Elliptic-curves
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-22698.

URL Resource
https://crates.io/crates/sm2/0.14.0-pre.0 cve-icon cve-icon
https://crates.io/crates/sm2/0.14.0-rc.0 cve-icon cve-icon
https://github.com/RustCrypto/elliptic-curves/commit/4781762f23ff22ab34763410f648128055c93731 cve-icon cve-icon
https://github.com/RustCrypto/elliptic-curves/commit/e4f77788130d065d760e57fb109370827110a525 cve-icon cve-icon
https://github.com/RustCrypto/elliptic-curves/pull/1600 cve-icon cve-icon
https://github.com/RustCrypto/elliptic-curves/security/advisories/GHSA-w3g8-fp6j-wvqw cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
VS Confidentiality
VS Integrity
VS Availability
SS Confidentiality
SS Integrity
SS Availability