Lucene search
+L

122 matches found

OSV
OSV
added 2025/08/07 8:55 p.m.11 views

GHSA-C7P4-HX26-PR73 JWE is missing AES-GCM authentication tag validation in encrypted JWE

Overview The authentication tag of encrypted JWEs can be brute forced, which may result in loss of confidentiality for those JWEs and provide ways to craft arbitrary JWEs. Impact - JWEs can be modified to decrypt to an arbitrary value - JWEs can be decrypted by observing parsing differences - The...

9.1CVSS6.4AI score0.00244EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2025/08/07 8:55 p.m.13 views

JWE is missing AES-GCM authentication tag validation in encrypted JWE

Overview The authentication tag of encrypted JWEs can be brute forced, which may result in loss of confidentiality for those JWEs and provide ways to craft arbitrary JWEs. Impact - JWEs can be modified to decrypt to an arbitrary value - JWEs can be decrypted by observing parsing differences - The...

9.1CVSS6.8AI score0.00244EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologies
added 2025/08/07 12:0 a.m.14 views

PT-2025-32334

Name of the Vulnerable Software and Affected Versions jwe versions 1.1.0 and below Description The authentication tag of encrypted JWEs can be brute forced, potentially leading to a loss of confidentiality and the ability to craft arbitrary JWEs. This allows modification of JWEs to decrypt to an...

9.4CVSS6.8AI score0.00244EPSS
Exploits1References21
RubySec
RubySec
added 2025/08/07 12:0 a.m.13 views

JWE is missing AES-GCM authentication tag validation in encrypted JWE

Overview The authentication tag of encrypted JWEs can be brute forced, which may result in loss of confidentiality for those JWEs and provide ways to craft arbitrary JWEs. Impact - JWEs can be modified to decrypt to an arbitrary value - JWEs can be decrypted by observing parsing differences - The...

9.1CVSS6.4AI score0.00244EPSS
Exploits1References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/06/05 11:14 p.m.22 views

CVE-2025-24015

Deno is a JavaScript, TypeScript, and WebAssembly runtime. Versions 1.46.0 through 2.1.6 have an issue that affects AES-256-GCM and AES-128-GCM in Deno in which the authentication tag is not being validated. This means tampered ciphertexts or incorrect keys might not be detected, which breaks the...

8.7CVSS7AI score0.0024EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2025/06/05 3:16 a.m.4 views

SUSE CVE-2025-24015

Deno is a JavaScript, TypeScript, and WebAssembly runtime. Versions 1.46.0 through 2.1.6 have an issue that affects AES-256-GCM and AES-128-GCM in Deno in which the authentication tag is not being validated. This means tampered ciphertexts or incorrect keys might not be detected, which breaks the...

8.7CVSS7AI score0.0024EPSS
Exploits1References3
OSV
OSV
added 2025/06/04 8:48 p.m.9 views

GHSA-2X3R-HWV5-P32X Deno's AES GCM authentication tags are not verified

Summary This affects AES-256-GCM and AES-128-GCM in Deno, introduced by commit 0d1beed. Specifically, the authentication tag is not being validated. This means tampered ciphertexts or incorrect keys might not be detected, which breaks the guarantees expected from AES-GCM. Older versions of Deno...

8.7CVSS7.2AI score0.0024EPSS
Exploits1References7
Github Security Blog
Github Security Blog
added 2025/06/04 8:48 p.m.32 views

Deno's AES GCM authentication tags are not verified

Summary This affects AES-256-GCM and AES-128-GCM in Deno, introduced by commit 0d1beed. Specifically, the authentication tag is not being validated. This means tampered ciphertexts or incorrect keys might not be detected, which breaks the guarantees expected from AES-GCM. Older versions of Deno...

8.7CVSS7AI score0.0024EPSS
Exploits1References7Affected Software2
NVD
NVD
added 2025/06/03 11:15 p.m.12 views

CVE-2025-24015

Deno is a JavaScript, TypeScript, and WebAssembly runtime. Versions 1.46.0 through 2.1.6 have an issue that affects AES-256-GCM and AES-128-GCM in Deno in which the authentication tag is not being validated. This means tampered ciphertexts or incorrect keys might not be detected, which breaks the...

8.7CVSS0.0024EPSS
Exploits1References4
AlpineLinux
AlpineLinux
added 2025/06/03 11:15 p.m.7 views

CVE-2025-24015

Deno is a JavaScript, TypeScript, and WebAssembly runtime. Versions 1.46.0 through 2.1.6 have an issue that affects AES-256-GCM and AES-128-GCM in Deno in which the authentication tag is not being validated. This means tampered ciphertexts or incorrect keys might not be detected, which breaks the...

8.7CVSS7.3AI score0.0024EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/06/03 10:48 p.m.22 views

CVE-2025-24015 Deno's AES GCM authentication tags are not verified

Deno is a JavaScript, TypeScript, and WebAssembly runtime. Versions 1.46.0 through 2.1.6 have an issue that affects AES-256-GCM and AES-128-GCM in Deno in which the authentication tag is not being validated. This means tampered ciphertexts or incorrect keys might not be detected, which breaks the...

8.7CVSS0.0024EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/06/03 12:0 a.m.12 views

PT-2025-23677 · Deno · Deno

Name of the Vulnerable Software and Affected Versions: Deno versions 1.46.0 through 2.1.6 Description: The issue affects AES-256-GCM and AES-128-GCM in Deno, where the authentication tag is not being validated. This means tampered ciphertexts or incorrect keys might not be detected, which breaks...

8.7CVSS6.5AI score0.0024EPSS
Exploits1References13
RedhatCVE
RedhatCVE
added 2025/05/23 3:14 a.m.6 views

CVE-2023-26084

The armv8decaesgcmfull API of Arm AArch64cryptolib before 86065c6 fails to the verify the authentication tag of AES-GCM protected data, leading to a man-in-the-middle attack. This occurs because of an improperly initialized variable...

3.7CVSS7AI score0.00362EPSS
Exploits0References1
OSV
OSV
added 2024/06/06 6:15 a.m.8 views

AZL-42530 CVE-2024-3049 affecting package booth 1.0-8

A flaw was found in Booth, a cluster ticket manager. If a specially-crafted hash is passed to gcrymdgetalgodlen, it may allow an invalid HMAC to be accepted by the Booth server...

5.9CVSS6.1AI score0.00535EPSS
Exploits0References1
OSV
OSV
added 2023/12/18 10:41 p.m.5 views

MGASA-2023-0350 Updated cjose packages fix a security vulnerability

The updated packages fix a security vulnerability: The AES GCM decryption routine incorrectly uses the Tag length from the actual Authentication Tag provided in the JWE. The spec says that a fixed length of 16 octets must be applied. Therefore this bug allows an attacker to provide a truncated...

8.6CVSS8.3AI score0.0071EPSS
Exploits1References3
Mageia
Mageia
added 2023/12/18 10:41 p.m.25 views

Updated cjose packages fix a security vulnerability

The updated packages fix a security vulnerability: The AES GCM decryption routine incorrectly uses the Tag length from the actual Authentication Tag provided in the JWE. The spec says that a fixed length of 16 octets must be applied. Therefore this bug allows an attacker to provide a truncated...

8.6CVSS7.2AI score0.0071EPSS
Exploits1References2
OSV
OSV
added 2023/09/22 4:11 p.m.32 views

GHSA-423W-P2W9-R7VQ AEADs/aes-gcm: Plaintext exposed in decrypt_in_place_detached even on tag verification failure

Summary In the AES GCM implementation of decryptinplacedetached, the decrypted ciphertext i.e. the correct plaintext is exposed even if tag verification fails. Impact If a program using the aes-gcm crate's decryptinplace APIs accesses the buffer after decryption failure, it will contain a...

4.7CVSS5AI score0.00262EPSS
Exploits1References8
Vulnrichment
Vulnrichment
added 2023/09/08 12:0 a.m.13 views

CVE-2023-40271

In Trusted Firmware-M through TF-Mv1.8.0, for platforms that integrate the CryptoCell accelerator, when the CryptoCell PSA Driver software Interface is selected, and the Authenticated Encryption with Associated Data Chacha20-Poly1305 algorithm is used, with the single-part verification function...

7.4AI score0.00323EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/09/07 12:0 a.m.14 views

PT-2023-27353 · Unknown · Cryptocell Psa Driver +1

Name of the Vulnerable Software and Affected Versions: Trusted Firmware-M versions TF-Mv1.6.0 through TF-Mv1.8.0 Description: The issue arises when the CryptoCell PSA Driver software Interface is selected, and the Authenticated Encryption with Associated Data Chacha20-Poly1305 algorithm is used. ...

7.5CVSS7.4AI score0.00323EPSS
Exploits1References9
OSV
OSV
added 2023/08/24 10:2 p.m.6 views

USN-6307-1 cjose vulnerability

It was discovered that JOSE for C/C++ AES GCM decryption routine incorrectly uses the Tag length from the actual Authentication Tag provided in the JWE. An attacker could use this to cause a denial of service system crash or might expose sensitive information...

8.6CVSS5.8AI score0.0071EPSS
Exploits1References2
Rows per page
Query Builder