CVE-2018-8319: Incorrect Calculation

September 10, 2018 (updated September 16, 2021)

A Security Feature Bypass vulnerability exists in MSR JavaScript Cryptography Library that is caused by incorrect arithmetic computations, aka “MSR JavaScript Cryptography Library Security Feature Bypass Vulnerability.” This affects Microsoft Research JavaScript Cryptography Library.

References

www.securityfocus.com/bid/104655
www.securitytracker.com/id/1041268
github.com/advisories/GHSA-qg3g-2mgh-33j8
nvd.nist.gov/vuln/detail/CVE-2018-8319
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8319
www.npmjs.com/advisories/1112

Detect and mitigate CVE-2018-8319 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →