216.73.217.98

CVE-2026-46669

· Published 10/06/2026 22:17 · Modified 11/06/2026 16:16

Labels: CVE-2026-46669 2026-06-10CVE-2026-46669CWE-20[email protected]

Essential information

Published
10/06/2026 22:17
Modified
11/06/2026 16:16
Author
Creator
CVSS
8.7 HIGH (v3) 8.7 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

OpenVM is a performant and modular zkVM framework built for customization and extensibility. Prior to version 1.6.0, the openvm-pairing guest library's try_honest_pairing_check function invokes Theorem 3 of https://eprint.iacr.org/2024/640.pdf but does not check that the scaling factor s is in a proper subfield of Fp12. This allows incorrect results to the pairing check. This issue has been patched in version 1.6.0.

NVD status

Status
Undergoing Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
openvm / openvm cpe:2.3:a:openvm:openvm:<1.6.0:*:*:*:*:*:*:*

References