Critical Vulnerability in OpenPGP.js Allows Signature Spoofing

A vulnerability in OpenPGP.js, listed under the number CVE-2025-47934, allows the falsification of message signature verification. This security flaw enables attackers to bypass the signature verification process, which can lead to serious consequences for the security of encrypted communications. The vulnerability directly affects the verification of message signatures, a crucial element in ensuring the authenticity and integrity of communications.