CVE-2026-1229

CIRCL has an incorrect calculation in secp384r1 CombinedMult in github.com/cloudflare/circl

Description

CIRCL has an incorrect calculation in secp384r1 CombinedMult in github.com/cloudflare/circl

Patch Available

Fix available through Seal Security.  
No upgrade required, protect your application instantly.

Fix without upgrading

Score

2.9

Severity

Low

Ecosystem

GO

Publish Date

February 26, 2026

Modified Date

March 8, 2026

Score Vector

CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L/E:P/S:N/AU:Y/U:Amber

Affected Versions