Lucene search
K

270 matches found

RedHat Linux
RedHat Linux
added 2026/05/04 2:31 p.m.6 views

pyasn1: pyasn1: Denial of Service due to memory exhaustion from malformed RELATIVE-OID

A flaw was found in pyasn1, a generic ASN.1 library for Python. A remote attacker could exploit this vulnerability by sending a specially crafted RELATIVE-OID with excessive continuation octets. This input validation vulnerability leads to memory exhaustion, resulting in a Denial of Service DoS f...

7.5CVSS6.6AI score0.00679EPSS
Exploits0References7
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/04 12:28 p.m.11 views

Security Bulletin: pyasn1 Memory Exhaustion via Malformed RELATIVE-OID Leads to Denial of Service

Summary pyasn1 is a generic ASN.1 library for Python. Prior to 0.6.2, a Denial-of-Service issue has been found that leads to memory exhaustion from malformed RELATIVE-OID with excessive continuation octets. This vulnerability is fixed in 0.6.2. Vulnerability Details CVEID:CVE-2026-23490...

7.5CVSS6.5AI score0.00679EPSS
Exploits0Affected Software1
OSV
OSV
added 2026/04/27 6:33 p.m.27 views

JLSEC-2026-239 Issue summary: Processing some specially crafted ASN.1 object identifiers or data containing them...

Issue summary: Processing some specially crafted ASN.1 object identifiers or data containing them may be very slow. Impact summary: Applications that use OBJobj2txt directly, or use any of the OpenSSL subsystems OCSP, PKCS7/SMIME, CMS, CMP/CRMF or TS with no message size limit may experience...

6.5CVSS6.3AI score0.73461EPSS
Exploits0References14
Cvelist
Cvelist
added 2026/04/24 7:40 p.m.31 views

CVE-2026-41502 BACnet Stack: Off-by-One Out-of-Bounds Read in ReadPropertyMultiple Object ID Decoder

BACnet Stack is a BACnet open source protocol stack C library for embedded systems. Prior to 1.4.3, an off-by-one out-of-bounds read vulnerability in bacnet-stack's ReadPropertyMultiple service decoder allows unauthenticated remote attackers to read one byte past an allocated buffer boundary by...

8.7CVSS0.00401EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/04/24 7:40 p.m.5 views

CVE-2026-41502 BACnet Stack: Off-by-One Out-of-Bounds Read in ReadPropertyMultiple Object ID Decoder

BACnet Stack is a BACnet open source protocol stack C library for embedded systems. Prior to 1.4.3, an off-by-one out-of-bounds read vulnerability in bacnet-stack's ReadPropertyMultiple service decoder allows unauthenticated remote attackers to read one byte past an allocated buffer boundary by...

8.7CVSS5.7AI score0.00401EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/04/14 7:23 p.m.5 views

CVE-2026-5187

Two potential heap out-of-bounds write locations existed in DecodeObjectId in wolfcrypt/src/asn.c. First, a bounds check only validates one available slot before writing two OID arc values out0 and out1, enabling a 2-byte out-of-bounds write when outSz equals 1. Second, multiple callers pass...

9.8CVSS5.8AI score0.00283EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/04/14 7:23 p.m.10 views

CVE-2026-5295

A stack buffer overflow exists in wolfSSL's PKCS7 implementation in the wcPKCS7DecryptOri function in wolfcrypt/src/pkcs7.c. When processing a CMS EnvelopedData message containing an OtherRecipientInfo ORI recipient, the function copies an ASN.1-parsed OID into a fixed 32-byte stack buffer...

8CVSS6.2AI score0.00175EPSS
Exploits0References1
Snyk
Snyk
added 2026/04/10 12:11 a.m.5 views

Stack-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Stack-based Buffer Overflow in the wcPKCS7DecryptOri function when processing a CMS EnvelopedData message containing an OtherRecipientInfo recipient. An attacker can execute arbitrary code or cause a crash by sending a crafted message...

8CVSS6.2AI score0.00175EPSS
Exploits0References2
OSV
OSV
added 2026/04/09 11:17 p.m.6 views

DEBIAN-CVE-2026-5295

A stack buffer overflow exists in wolfSSL's PKCS7 implementation in the wcPKCS7DecryptOri function in wolfcrypt/src/pkcs7.c. When processing a CMS EnvelopedData message containing an OtherRecipientInfo ORI recipient, the function copies an ASN.1-parsed OID into a fixed 32-byte stack buffer...

8CVSS5.7AI score0.00175EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/04/09 11:17 p.m.7 views

CVE-2026-5295

A stack buffer overflow exists in wolfSSL's PKCS7 implementation in the wcPKCS7DecryptOri function in wolfcrypt/src/pkcs7.c. When processing a CMS EnvelopedData message containing an OtherRecipientInfo ORI recipient, the function copies an ASN.1-parsed OID into a fixed 32-byte stack buffer...

8CVSS6.2AI score0.00175EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/04/09 10:53 p.m.24 views

CVE-2026-5295 Stack Buffer Overflow in wolfSSL PKCS7 wc_PKCS7_DecryptOri() via Oversized OID

A stack buffer overflow exists in wolfSSL's PKCS7 implementation in the wcPKCS7DecryptOri function in wolfcrypt/src/pkcs7.c. When processing a CMS EnvelopedData message containing an OtherRecipientInfo ORI recipient, the function copies an ASN.1-parsed OID into a fixed 32-byte stack buffer...

5.9CVSS0.00175EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/09 10:53 p.m.2 views

CVE-2026-5295 Stack Buffer Overflow in wolfSSL PKCS7 wc_PKCS7_DecryptOri() via Oversized OID

A stack buffer overflow exists in wolfSSL's PKCS7 implementation in the wcPKCS7DecryptOri function in wolfcrypt/src/pkcs7.c. When processing a CMS EnvelopedData message containing an OtherRecipientInfo ORI recipient, the function copies an ASN.1-parsed OID into a fixed 32-byte stack buffer...

5.9CVSS6.2AI score0.00175EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/04/09 10:13 p.m.5 views

CVE-2026-5194

A flaw was found in wolfSSL. Missing hash/digest size and Object Identifier OID checks allow the acceptance of smaller, less secure digests during the verification of Elliptic Curve Digital Signature Algorithm ECDSA certificates. This could enable a remote attacker, with knowledge of the public...

10CVSS5.9AI score0.00468EPSS
Exploits1References4
EUVD
EUVD
added 2026/04/09 9:31 p.m.6 views

EUVD-2026-21070

Missing hash/digest size and OID checks allow digests smaller than allowed when verifying ECDSA certificates, or smaller than is appropriate for the relevant key type, to be accepted by signature verification functions. This could lead to reduced security of ECDSA certificate-based authentication...

9.3CVSS5.8AI score0.00468EPSS
Exploits1References2
EUVD
EUVD
added 2026/04/09 9:31 p.m.6 views

EUVD-2026-21068

Two potential heap out-of-bounds write locations existed in DecodeObjectId in wolfcrypt/src/asn.c. First, a bounds check only validates one available slot before writing two OID arc values out0 and out1, enabling a 2-byte out-of-bounds write when outSz equals 1. Second, multiple callers pass...

2.3CVSS5.9AI score0.00283EPSS
Exploits0References2
OSV
OSV
added 2026/04/09 8:16 p.m.1 views

DEBIAN-CVE-2026-5187

Two potential heap out-of-bounds write locations existed in DecodeObjectId in wolfcrypt/src/asn.c. First, a bounds check only validates one available slot before writing two OID arc values out0 and out1, enabling a 2-byte out-of-bounds write when outSz equals 1. Second, multiple callers pass...

9.8CVSS5.3AI score0.00283EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/04/09 8:16 p.m.2 views

CVE-2026-5187

Two potential heap out-of-bounds write locations existed in DecodeObjectId in wolfcrypt/src/asn.c. First, a bounds check only validates one available slot before writing two OID arc values out0 and out1, enabling a 2-byte out-of-bounds write when outSz equals 1. Second, multiple callers pass...

9.8CVSS5.8AI score0.00283EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/04/09 8:16 p.m.6 views

CVE-2026-5194

Missing hash/digest size and OID checks allow digests smaller than allowed when verifying ECDSA certificates, or smaller than is appropriate for the relevant key type, to be accepted by signature verification functions. This could lead to reduced security of ECDSA certificate-based authentication...

9.3CVSS5.8AI score0.00468EPSS
Exploits1References2
AlpineLinux
AlpineLinux
added 2026/04/09 7:45 p.m.3 views

CVE-2026-5187

Two potential heap out-of-bounds write locations existed in DecodeObjectId in wolfcrypt/src/asn.c. First, a bounds check only validates one available slot before writing two OID arc values out0 and out1, enabling a 2-byte out-of-bounds write when outSz equals 1. Second, multiple callers pass...

9.8CVSS5.7AI score0.00283EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/04/09 7:30 p.m.2 views

CVE-2026-5194 wolfSSL ECDSA Certificate Verification

Missing hash/digest size and OID checks allow digests smaller than allowed when verifying ECDSA certificates, or smaller than is appropriate for the relevant key type, to be accepted by signature verification functions. This could lead to reduced security of ECDSA certificate-based authentication...

9.3CVSS5.8AI score0.00468EPSS
Exploits1References1
Rows per page
Query Builder