Vulnerabilities > Satoshilabs

DATE CVE VULNERABILITY TITLE RISK
2020-06-16 CVE-2020-14199 Improper Verification of Cryptographic Signature vulnerability in Satoshilabs Trezor Model T Firmware and Trezor ONE Firmware
BIP-143 in the Bitcoin protocol specification mishandles the signing of a Segwit transaction, which allows attackers to trick a user into making two signatures in certain cases, potentially leading to a huge transaction fee.
network
low complexity
satoshilabs CWE-347
6.5