Rust Crypto ML-DSA Crate Signature Verification Vulnerability
CVE-2026-24850

5.3MEDIUM

Key Information:

Vendor

Rustcrypto

Vendor
CVE Published:
28 January 2026

What is CVE-2026-24850?

The ML-DSA crate, part of RustCrypto, has a vulnerability in its signature verification implementation that incorrectly allows repeated hint indices due to a regression from version 0.0.4. According to the ML-DSA specification, hint indices within each polynomial are required to be strictly increasing, but this scan allows duplicates by using a non-strict comparison. This flaw could lead to potential security issues, as the integrity of the signature verification process is compromised. The issue has been resolved in version 0.1.0-rc.4.

Affected Version(s)

signatures >= 0.0.4, < 0.1.0-rc.4

References

CVSS V3.1

Score:
5.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.