Lucene search
K

185 matches found

Vulnrichment
Vulnrichment
added 2026/06/10 12:33 a.m.9 views

CVE-2026-45328 ESF-IDF: Out-of-Bounds Write in ESP-TEE Secure Service Wrappers

ESF-IDF is the Espressif Internet of Things IOT Development Framework. In versions 5.5.4 and 6.0, the esptee component exposes secure-service wrappers in espsecureservices.c and espsecureservicesiram.c that bridge calls from the user application i.e. the REE to TEE-protected hardware peripherals...

9.3CVSS5.3AI score0.00126EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/06/10 12:0 a.m.6 views

EulerOS 2.0 SP13 : python-ecdsa (EulerOS-SA-2026-2352)

According to the versions of the python-ecdsa packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : The ecdsa PyPI package is a pure Python implementation of ECC Elliptic Curve Cryptography with support for ECDSA Elliptic Curve Digital...

5.3CVSS5.5AI score0.00476EPSS
Exploits1References2
OSV
OSV
added 2026/04/27 6:33 p.m.12 views

JLSEC-2026-254 Issue summary: Use of the low-level GF(2^m) elliptic curve APIs with untrusted explicit values...

Issue summary: Use of the low-level GF2^m elliptic curve APIs with untrusted explicit values for the field polynomial can lead to out-of-bounds memory reads or writes. Impact summary: Out of bound memory writes can lead to an application crash or even a possibility of a remote code execution,...

4.3CVSS6.6AI score0.05966EPSS
Exploits0References16
Packet Storm News
Packet Storm News
added 2026/03/30 12:0 a.m.22 views

Securing Elliptic Curve Cryptocurrencies against Quantum Vulnerabilities: Resource Estimates and Mitigations

This whitepaper seeks to elucidate implications that the capabilities of developing quantum architectures have on blockchain vulnerabilities and mitigation strategies. First, we provide new resource estimates for breaking the 256-bit Elliptic Curve Discrete Logarithm Problem, the core of modern...

6AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/28 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2026-33936

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ecdsa PyPI package is a pure Python implementation of ECC Elliptic Curve Cryptography with support for ECDSA Elliptic Curve Digital Signature Algorithm, EdD...

5.3CVSS5.8AI score0.00476EPSS
Exploits1References3
OSV
OSV
added 2026/03/27 11:17 p.m.3 views

UBUNTU-CVE-2026-33936

The ecdsa PyPI package is a pure Python implementation of ECC Elliptic Curve Cryptography with support for ECDSA Elliptic Curve Digital Signature Algorithm, EdDSA Edwards-curve Digital Signature Algorithm and ECDH Elliptic Curve Diffie-Hellman. Prior to version 0.19.2, an issue in the low-level D...

5.3CVSS5.8AI score0.00476EPSS
Exploits1References6
CNNVD
CNNVD
added 2026/03/27 12:0 a.m.9 views

Pure-Python ECDSA and ECDH 安全漏洞

Pure-Python ECDSA and ECDH is a pure Python implementation of elliptic curve cryptography library open-sourced by tlsfuzzer. Versions of Pure-Python ECDSA and ECDH prior to 0.19.2 have security vulnerabilities. These vulnerabilities stem from low-level DER parsing functions, which may cause...

5.3CVSS5.8AI score0.00476EPSS
Exploits1References3
EUVD
EUVD
added 2026/03/19 9:30 p.m.7 views

EUVD-2026-13172

In wolfSSL 5.8.4, constant-time masking logic in sp256getentry2569 is optimized into conditional branches bnez by GCC when targeting RISC-V RV32I with -O3. This transformation breaks the side-channel resistance of ECC scalar multiplication, potentially allowing a local attacker to recover secret...

2.1CVSS5.8AI score0.00128EPSS
Exploits0References2
OSV
OSV
added 2026/02/11 9:23 a.m.3 views

SUSE-SU-2026:0434-1 Security update for gpg2

This update for gpg2 fixes the following issues: Security fixes: - CVE-2026-24882: Fixed stack-based buffer overflow in TPM2 PKDECRYPT for TPM-backed RSA and ECC keys bsc1257396 - Fixed GnuPG accepting Path Separators and Path Traversals in Literal Data 'Filename' Field bsc1256389...

8.4CVSS6.2AI score0.00421EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2026/01/27 7:16 p.m.6 views

CVE-2026-24882

In GnuPG before 2.5.17, a stack-based buffer overflow exists in tpm2daemon during handling of the PKDECRYPT command for TPM-backed RSA and ECC keys...

8.4CVSS6.4AI score0.00421EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/01/27 6:40 p.m.18 views

CVE-2026-24882

In GnuPG before 2.5.17, a stack-based buffer overflow exists in tpm2daemon during handling of the PKDECRYPT command for TPM-backed RSA and ECC keys...

8.4CVSS0.00421EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/01/27 12:0 a.m.8 views

GNUPG security vulnerabilities

GNU Privacy Guard is a set of open-source encryption software from the GNU community in the United States, licensed under the GNU General Public License. This software supports algorithms such as public key encryption, symmetric encryption, and hashing. Versions of GnuPG prior to 2.5.17 contained...

8.4CVSS6.3AI score0.00421EPSS
Exploits1References2
EUVD
EUVD
added 2026/01/13 3:2 p.m.5 views

EUVD-2026-1874

RustCrypto Has Insufficient Length Validation in decrypt in SM2-PKE...

7.5CVSS6.3AI score0.00279EPSS
Exploits1References4
OSV
OSV
added 2026/01/10 5:17 a.m.6 views

CVE-2026-22699 RustCrypto SM2-PKE has Unchecked AffinePoint Decoding (unwrap) in decrypt()

RustCrypto: Elliptic Curves is general purpose Elliptic Curve Cryptography ECC support, including types and traits for representing various elliptic curve forms, scalars, points, and public/secret keys composed thereof. In versions 0.14.0-pre.0 and 0.14.0-rc.0, a denial-of-service vulnerability...

7.5CVSS6.8AI score0.00375EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2026/01/09 12:27 p.m.8 views

CVE-2018-12438

The Elliptic Curve Cryptography library aka sunec or libsunec allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual machine on the...

4.9CVSS6.5AI score0.00464EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-4409

Malware in sbrugna...

4.9CVSS5.1AI score0.00464EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-17774

Malware in sbrugna...

3.8CVSS4.8AI score0.00207EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2011-1942

Malware in sbrugna...

2.6CVSS8AI score0.0343EPSS
Exploits1References14
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-0551

Malicious code in bioql PyPI...

9.8CVSS9AI score0.02541EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.31 views

EUVD-2024-0448

Malicious code in bioql PyPI...

7.4CVSS7.3AI score0.00977EPSS
Exploits1References8
Rows per page
Query Builder