Lucene search
K

228 matches found

Snyk
Snyk
added 2026/01/10 6:53 a.m.4 views

Improper Verification of Cryptographic Signature

Overview Affected versions of this package are vulnerable to Improper Verification of Cryptographic Signature via the VerifyBundle function in the verify.go file. An attacker can bypass artifact integrity checks by crafting a bundle that includes any arbitrary Rekor entry, allowing successful...

6.8CVSS6.9AI score0.00077EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/01/09 10:17 a.m.7 views

CVE-2019-18193

In Unisys Stealth core 3.4.108.0, 3.4.209.x, 4.0.027.x and 4.0.114, key material inadvertently logged under certain conditions. Fixed included in 3.4.109, 4.0.027.13, 4.0.125 and 5.0.013.0...

7.5CVSS7AI score0.0028EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:1 a.m.11 views

CVE-2023-43542

Memory corruption while copying a keyblobs material when the key materials size is not accurately checked...

7.8CVSS7.2AI score0.00103EPSS
Exploits0References1
Hacker One
Hacker One
added 2025/12/28 2:45 p.m.17 views

curl: Cross‑Layer State Confusion in libcurl: Credential & Key‑Material Persistence Across Redirect / Connection Reuse Boundaries

Summary: This report describes a state‑level security invariant violation in libcurl where credential‑ or key‑related state may persist or be re‑applied across logical trust boundaries redirects, connection reuse, or scheme transitions without a formal invariant enforcing reset semantics. The iss...

7.4AI score
Exploits0
RustSec
RustSec
added 2025/12/12 12:0 p.m.7 views

Timing side-channel in ML-DSA decomposition

Summary A timing side-channel was discovered in the Decompose algorithm which is used during ML-DSA signing to generate hints for the signature. Details The analysis was performed using a constant-time analyzer that examines compiled assembly code for instructions with data-dependent timing...

6.4CVSS6.1AI score0.00173EPSS
Exploits0Affected Software1
OSV
OSV
added 2025/12/12 12:0 p.m.10 views

RUSTSEC-2025-0144 Timing side-channel in ML-DSA decomposition

Summary A timing side-channel was discovered in the Decompose algorithm which is used during ML-DSA signing to generate hints for the signature. Details The analysis was performed using a constant-time analyzer that examines compiled assembly code for instructions with data-dependent timing...

6.4CVSS6.1AI score0.00173EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/12/02 10:38 a.m.3 views

CVE-2025-41744 Sprecher Automation: SPRECON-E series has static default key material for TLS connections

Sprecher Automations SPRECON-E series uses default cryptographic keys that allow an unprivileged remote attacker to access all encrypted communications, thereby compromising confidentiality and integrity...

9.1CVSS6.6AI score0.00366EPSS
Exploits4References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-9448

Malware in sbrugna...

5.5CVSS5.6AI score0.0021EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-3552

Malware in sbrugna...

7.2CVSS6.6AI score0.00125EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-6611

Malware in sbrugna...

7.5CVSS7.5AI score0.02511EPSS
Exploits3References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-7996

Malware in sbrugna...

7.5CVSS7.5AI score0.0028EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-10309

Malware in sbrugna...

8.1CVSS7AI score0.00698EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-5206

Malware in sbrugna...

6.4CVSS6.5AI score0.00212EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2016-1603

Malware in sbrugna...

10CVSS9.5AI score0.01252EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-36364

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00481EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-23415

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00484EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-36366

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.0053EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-36368

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00484EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-51010

Malicious code in bioql PyPI...

5.5CVSS5.8AI score0.00128EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-12950

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00481EPSS
Exploits0References2
Rows per page
Query Builder