Lucene search
K

5 matches found

Cvelist
Cvelist
added 2026/01/10 12:11 a.m.25 views

CVE-2026-21899 CryptoLib has an out-of-bounds read and crash vulnerability when decoding an empty Base64url string

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. Prior to version 1.4.3, in base64urlDecode, padding-stripping...

4.7CVSS0.00317EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2025/08/08 12:0 a.m.8 views

The vulnerability of the mbedtls_lms_verify() function in Mbed TLS software allows a hacker to bypass existing security restrictions.

The vulnerability of the mbedtlslmsverify function in Mbed TLS is related to the absence of a necessary encryption step. Exploiting this vulnerability could allow attackers to circumvent existing security restrictions...

4.9CVSS5.5AI score0.00125EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2025/03/17 12:0 a.m.4 views

CryptoLib 安全漏洞

CryptoLib is a NASA open source application. It is used to provide a software-only solution using the CCSDS space data link security protocol. A security vulnerability exists in CryptoLib 1.3.3 and earlier versions, which stems from a memory leak in the cryptohandleincrementingnontransmittedcount...

7.5CVSS6.6AI score0.0046EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2024/11/01 12:0 a.m.6 views

The vulnerability of the X509_V_FLAG_CRL_CHECK component in the OpenSSL cryptographic library allows a attacker to trigger a service failure.

The vulnerability of the X509VFLAGCRLCHECK component in the OpenSSL cryptographic library is related to reading data beyond the memory boundaries. Exploiting this vulnerability could allow a malicious actor to cause a service failure...

6.8CVSS7AI score0.01481EPSS
Exploits0References7Affected Software4
ATTACKERKB
ATTACKERKB
added 2023/12/18 4:15 a.m.3 views

CVE-2023-50980

gf2n.cpp in Crypto++ aka cryptopp through 8.9.0 allows attackers to cause a denial of service application crash via DER public-key data for an F2^m curve, if the degree of each term in the polynomial is not strictly decreasing...

7.5CVSS5.8AI score0.00829EPSS
Exploits1References2
Rows per page
Query Builder