Product
consensys gnark
7 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2025-58157
CVE-2025-57801
CVE-2024-50354
CVE-2024-45040
CVE-2024-45039
CVE-2023-44378
CVE-2023-44273
all versions
gnark is a zero-knowledge proof system framework. In version 0.12.0, there is a potential denial of service vulnerability when com
< 0.14.0
gnark is a zero-knowledge proof system framework. In versions prior to 0.14.0, the Verify function in eddsa.go and ecdsa.go used t
< 0.12.0
gnark is a fast zk-SNARK library that offers a high-level API to design circuits. In gnark 0.11.0 and earlier, deserialization of
< 0.11.0
gnark is a fast zk-SNARK library that offers a high-level API to design circuits. Prior to version 0.11.0, commitments to private
< 0.11.0
gnark is a fast zk-SNARK library that offers a high-level API to design circuits. Versions prior to 0.11.0 have a soundness issue
< 0.9.0
gnark is a zk-SNARK library that offers a high-level API to design circuits. Prior to version 0.9.0, for some in-circuit values, i
< 0.12.0
Consensys gnark-crypto through 0.11.2 allows Signature Malleability. This occurs because deserialisation of EdDSA and ECDSA signat