CVE-2025-52884 | risc0 risc0-ethereum up to 2.1.0 Steel.validateCommitment invalid special elements (GHSA-gjv3-89hh-9xq2)

A vulnerability was found in risc0 risc0-ethereum up to 2.1.0. It has been classified as problematic. This affects the function Steel.validateCommitment. The manipulation leads to improper handling of invalid use of special elements.

This vulnerability is uniquely identified as CVE-2025-52884. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More