Vulnerabilities > Westerndigital > Sweet B
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-07-29 | CVE-2022-23001 | Incorrect Calculation vulnerability in Westerndigital Sweet B 1 When compressing or decompressing elliptic curve points using the Sweet B library, an incorrect choice of sign bit is used. | 5.3 |
| 2022-07-29 | CVE-2022-23002 | Unspecified vulnerability in Westerndigital Sweet B 1 When compressing or decompressing a point on the NIST P-256 elliptic curve with an X coordinate of zero, the resulting output is not properly reduced modulo the P-256 field prime and is invalid. | 5.3 |
| 2022-07-29 | CVE-2022-23003 | Incorrect Calculation vulnerability in Westerndigital Sweet B 1 When computing a shared secret or point multiplication on the NIST P-256 curve that results in an X coordinate of zero, the resulting output is not properly reduced modulo the P-256 field prime and is invalid. | 5.3 |
| 2022-07-29 | CVE-2022-23004 | Incorrect Calculation vulnerability in Westerndigital Sweet B 1 When computing a shared secret or point multiplication on the NIST P-256 curve using a public key with an X coordinate of zero, an error is returned from the library, and an invalid unreduced value is written to the output buffer. | 5.3 |