Svenschindler

**Name of the Vulnerable Software and Affected Versions** thinbus-srp-npm versions 2.0.0 and below **Description** A protocol compliance bug exists in the Javascript Secure Remote Password implementation, specifically in the client's entropy generation. The client generates a fixed 252 bits of entropy instead of the intended bit length of the safe prime (defaulted to 2048 bits). This is due to the client public value being generated from a private value that is 4 bits below the specification, reducing the protocol's security margin and making it practically exploitable. The server utilizes a full-sized 2048-bit random number to create the shared session key and password proof. **Recommendations** Upgrade to version 2.0.1 or later.