Vulnerability Description
CGGMP24 is a state-of-art ECDSA TSS protocol that supports 1-round signing (requires 3 preprocessing rounds), identifiable abort, and a key refresh protocol. Prior to version 0.6.3, there is a missing check in the ZK proof that enables an attack in which single malicious signer can reconstruct full private key. This issue has been patched in version 0.6.3, for full mitigation it is recommended to upgrade to cggmp24 version 0.7.0-alpha.2 as it contains more security checks.
Related Weaknesses (CWE)
References
- https://github.com/LFDT-Lockness/cggmp21/security/advisories/GHSA-m95p-425x-x889
- https://www.dfns.co/article/cggmp21-vulnerabilities-patched-and-explained
FAQ
What is CVE-2025-66016?
CVE-2025-66016 is a documented vulnerability. CGGMP24 is a state-of-art ECDSA TSS protocol that supports 1-round signing (requires 3 preprocessing rounds), identifiable abort, and a key refresh protocol. Prior to version 0.6.3, there is a missing...
How severe is CVE-2025-66016?
CVSS scoring is not yet available for CVE-2025-66016. Check NVD for updates.
Is there a patch for CVE-2025-66016?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.