Vulners
Lucene search
The verify function in the RSA package for Python (Python-RSA) before 3.3 allows attackers to spoof signatures with a small public exponent via crafted signature padding, aka a BERserk attack.
| Reporter | Title | Published | Views | Family All 39 |
|---|---|---|---|---|
 | Medium: python-rsa | 9 Feb 201600:00 | – | amazon |
 | Amazon Linux AMI : python-rsa (ALAS-2016-644) | 10 Feb 201600:00 | – | nessus |
| Fedora 23 : python-rsa-3.3-2.fc23 (2016-70edfbbcef) | 4 Mar 201600:00 | – | nessus |
| Fedora 22 : python-rsa-3.3-2.fc22 (2016-c845706426) | 4 Mar 201600:00 | – | nessus |
| FreeBSD : py-rsa -- Bleichenbacher'06 signature forgery vulnerability (e78bfc9d-cb1e-11e5-b251-0050562a4d7b) | 5 Feb 201600:00 | – | nessus |
| openSUSE Security Update : python-rsa (openSUSE-2016-33) | 25 Jan 201600:00 | – | nessus |
 | python-rsa: signature forgery | 25 Jan 201600:00 | – | archlinux |
| python2-rsa: signature forgery | 25 Jan 201600:00 | – | archlinux |
 | Security Bulletin: A vulnerability in Python-RSA affects PowerKVM (CVE-2016-1494) | 18 Jun 201801:33 | – | ibm |
 | RSA package for Python spoofing vulnerability | 15 Jan 201600:00 | – | cnvd |
10
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
03 Sep 2025 22:43Current
9.5High risk
Vulners AI Score9.5
CVSS 25
CVSS 35.3
EPSS0.03132