Lucene search
China National Vulnerability DatabaseCNVD-2021-95644HistoryNov 11, 2021 - 12:00 a.m.
Stark Bank Data Forgery Issue Vulnerability (CNVD-2021-95644)
2021-11-1100:00:00
China National Vulnerability Database
www.cnvd.org.cn
12
stark bank
data forgery
vulnerability
python-ecdsa
signatureforgery
api
brazil
cnvd-2021-95644
EPSS
0.004
Percentile
72.5%
Stark Bank is a banking API for individual developers in Brazil that performs all banking operations through the API, simplifying and automating payments, facilitating reconciliations, and scaling operations. a data forgery issue vulnerability exists in Stark Bank python-ecdsa, which stems from the failure of the product’s verify function to check for non-zero signatures, which could be exploited by an attacker to forge a signature on any message and forge a signature.
Related
veracode
veracode
Signature Forgery
2021-11-11 07:38:10
github
github
Improper Verification of Cryptographic Signature in starkbank-ecdsa
2021-11-10 20:41:39
osv
osv
Improper Verification of Cryptographic Signature in starkbank-ecdsa
2021-11-10 20:41:39
PYSEC-2021-426
2021-11-09 22:15:00
CVE-2021-43572
2021-11-09 22:15:07
cvelist
cvelist
CVE-2021-43572
2021-11-09 21:05:20
prion
prion
Design/Logic Flaw
2021-11-09 22:15:00
cve
cve
CVE-2021-43572
2021-11-09 22:15:07
nvd
nvd
CVE-2021-43572
2021-11-09 22:15:07