CVE-2026-22698

Name of the Vulnerable Software and Affected Versions RustCrypto versions 0.14.0-pre.0 through 0.14.0-rc.0

Description The Elliptic Curves library within RustCrypto, a general-purpose Elliptic Curve Cryptography (ECC) implementation, contains a flaw in its SM2 Public Key Encryption (PKE) implementation. The issue stems from reduced entropy during ephemeral nonce (k) generation, caused by a unit mismatch error requesting only 32 bits of randomness instead of the expected 256 bits. This significantly weakens the encryption, reducing its security from 128 bits to 16 bits, potentially allowing an attacker to recover the nonce and decrypt ciphertext given the public key and ciphertext.

Recommendations Versions prior to 0.14.0-pre.0 and after 0.14.0-rc.0 should be used.