Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

RedHat Linux
RedHat Linuxadded 2021/05/18 3:27 p.m.0 views

p11-kit: out-of-bounds read in p11_rpc_buffer_get_byte_array function in rpc-message.c

An issue was discovered in p11-kit 0.21.1 through 0.23.21. A heap-based buffer over-read has been discovered in the RPC protocol used by thep11-kit server/remote commands and the client library. When the remote entity supplies a byte array through a serialized PKCS11 function call, the receiving...

5.3CVSS7.3AI score0.00083EPSS
Exploits0References5
Microsoft CVE
Microsoft CVEadded 2020/12/24 12:0 a.m.3 views

An issue was discovered in p11-kit 0.23.6 through 0.23.21. A heap-based buffer overflow has been discovered in the RPC protocol used by p11-kit server/remote commands and the client library. When the remote entity supplies a serialized byte array in a CK_ATTRIBUTE the receiving entity may not allocate sufficient length for the buffer to store the deserialized value.

...

7.5CVSS8.7AI score0.00355EPSS
Exploits0
CNNVD
CNNVDadded 2020/12/14 12:0 a.m.5 views

P11-glue P11-kit Input Validation Error Vulnerability

P11-glue P11-kit is a utility software for loading and enumerating PKCS modules by the individual developer of P11-glue. An input validation error vulnerability exists in P11-glue P11-kit versions 0.21.1 through 0.23.21. No information about this vulnerability is available at this time, so stay...

7.5CVSS6.9AI score0.00244EPSS
Exploits0References38
CNNVD
CNNVDadded 2020/12/14 12:0 a.m.3 views

P11-glue P11-kit Buffer Error Vulnerability

P11-glue P11-kit is a utility software for loading and enumerating PKCS modules by the individual developer of P11-glue. A buffer error vulnerability exists in P11-glue P11-kit server/remote versions 0.23.6 through 0.23.21, which stems from a heap-based buffer overflow found in the RPC protocol,...

7.5CVSS7.3AI score0.00355EPSS
Exploits0References35
Veracode
Veracodeadded 2020/12/13 4:16 a.m.22 views

Denial Of Service (DoS)

p11-kit is vulnerable to denial of service DoS. The vulnerability exists through a heap-based buffer over-read has been discovered in the RPC protocol used by the p11-kit server/remote commands and the client library in versions 0.21.1 up to 0.23.21. When the remote entity supplies a byte array...

5.3CVSS3.5AI score0.00083EPSS
Exploits0References5Affected Software6
Positive Technologies
Positive Technologiesadded 2020/11/27 12:0 a.m.4 views

PT-2020-5853 · P11 Kit +7 · P11-Kit +7

Name of the Vulnerable Software and Affected Versions: p11-kit versions 0.23.6 through 0.23.21 Description: A heap-based buffer overflow has been discovered in the RPC protocol used by p11-kit server/remote commands and the client library. When the remote entity supplies a serialized byte array i...

7.5CVSS6.7AI score0.00355EPSS
Exploits0References60
Rows per page
Query Builder