{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-17T05:01:06.595","vulnerabilities":[{"cve":{"id":"CVE-2025-69277","sourceIdentifier":"cve@mitre.org","published":"2025-12-31T06:15:41.513","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"libsodium before ad3004e, in atypical use cases involving certain custom cryptography or untrusted data to crypto_core_ed25519_is_valid_point, mishandles checks for whether an elliptic curve point is valid because it sometimes allows points that aren't in the main cryptographic group."},{"lang":"es","value":"libsodium antes de ad3004e, en casos de uso atípicos que involucran cierta criptografía personalizada o datos no confiables para crypto_core_ed25519_is_valid_point, maneja incorrectamente las comprobaciones sobre si un punto de curva elíptica es válido porque a veces permite puntos que no están en el grupo criptográfico principal."}],"metrics":{"cvssMetricV31":[{"source":"cve@mitre.org","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N","baseScore":4.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.4,"impactScore":2.7}]},"weaknesses":[{"source":"cve@mitre.org","type":"Secondary","description":[{"lang":"en","value":"CWE-184"}]}],"references":[{"url":"https://00f.net/2025/12/30/libsodium-vulnerability/","source":"cve@mitre.org"},{"url":"https://github.com/jedisct1/libsodium/commit/ad3004ec8731730e93fcfbbc824e67eadc1c1bae","source":"cve@mitre.org"},{"url":"https://github.com/pyca/pynacl/commit/96314884d88d1089ff5f336dba61d7abbcddbbf7","source":"cve@mitre.org"},{"url":"https://github.com/pyca/pynacl/commit/ecf41f55a3d8f1e10ce89c61c4b4d67f3f4467cf","source":"cve@mitre.org"},{"url":"https://github.com/pyca/pynacl/issues/920","source":"cve@mitre.org"},{"url":"https://ianix.com/pub/ed25519-deployment.html","source":"cve@mitre.org"},{"url":"https://news.ycombinator.com/item?id=46435614","source":"cve@mitre.org"},{"url":"https://lists.debian.org/debian-lts-announce/2026/01/msg00004.html","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}