Lucene search
GoogleOSV:CVE-2021-43572HistoryNov 09, 2021 - 10:15 p.m.
CVE-2021-43572
2021-11-0922:15:07
Google
osv.dev
4
The verify function in the Stark Bank Python ECDSA library (aka starkbank-escada or ecdsa-python) before 2.0.1 fails to check that the signature is non-zero, which allows attackers to forge signatures on arbitrary messages.
Related
osv
osv
Improper Verification of Cryptographic Signature in starkbank-ecdsa
2021-11-10 20:41:39
PYSEC-2021-426
2021-11-09 22:15:00
github
github
Improper Verification of Cryptographic Signature in starkbank-ecdsa
2021-11-10 20:41:39
veracode
veracode
Signature Forgery
2021-11-11 07:38:10
cnvd
cnvd
Stark Bank Data Forgery Issue Vulnerability (CNVD-2021-95644)
2021-11-11 00:00:00
prion
prion
Design/Logic Flaw
2021-11-09 22:15:00
cve
cve
CVE-2021-43572
2021-11-09 22:15:07
nvd
nvd
CVE-2021-43572
2021-11-09 22:15:07
cvelist
cvelist
CVE-2021-43572
2021-11-09 21:05:20