Lucene search
K

883 matches found

Cvelist
Cvelist
added 2026/05/25 8:13 p.m.26 views

CVE-2026-48850

PuTTY 0.72 before 0.84 has a double free in RSA KEX...

3.7CVSS0.0032EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/25 8:13 p.m.11 views

EUVD-2026-31729

PuTTY 0.72 before 0.84 has a double free in RSA KEX...

3.7CVSS5.8AI score0.0032EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/25 8:13 p.m.10 views

CVE-2026-48850

PuTTY 0.72 before 0.84 has a double free in RSA KEX...

3.7CVSS5.8AI score0.0032EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/25 8:13 p.m.8 views

CVE-2026-48850

PuTTY 0.72 before 0.84 has a double free in RSA KEX...

3.7CVSS5.8AI score0.0032EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/05/25 8:13 p.m.10 views

CVE-2026-48850

PuTTY 0.72 before 0.84 has a double free in RSA KEX...

5.9CVSS5.8AI score0.0032EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/25 8:13 p.m.22 views

CVE-2026-48850

PuTTY 0.72 before 0.84 has a double free in RSA KEX...

5.9CVSS5.8AI score0.0032EPSS
Exploits0References2
CVE
CVE
added 2026/05/25 8:13 p.m.55 views

CVE-2026-48850

PuTTY 0.72 before 0.84 contains a double free in RSA KEX (CVE-2026-48850). Affected: PuTTY 0.72–0.83. Root cause: memory management error during RSA key exchange. Impact: availability impact described as High by CVE data; other impact not indicated. Exploitation status is not provided in the docu...

5.9CVSS5.8AI score0.0032EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/25 12:0 a.m.14 views

PT-2026-43123

Name of the Vulnerable Software and Affected Versions PuTTY versions 0.77 through 0.83 Description The software uses a copy of the PuTTY icon to indicate trust for TELNET data. However, the trust status is not cleared between the proxy authentication phase and the main session, which may lead to...

3.1CVSS5.8AI score0.00224EPSS
Exploits0References10
CNNVD
CNNVD
added 2026/05/25 12:0 a.m.9 views

PuTTY 安全漏洞

PuTTY is a suite of free Telnet, Rlogin and SSH client software from the individual developer Simon Tatham. The software is primarily used for remote administration of Linux systems. A security vulnerability exists in PuTTY versions prior to 0.84 that stems from using a copy of the PuTTY icon as ...

3.1CVSS5.8AI score0.00224EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/25 12:0 a.m.23 views

PuTTY 安全漏洞

PuTTY is a suite of free Telnet, Rlogin and SSH client software from the individual developer Simon Tatham. The software is primarily used for remote administration of Linux systems. A security vulnerability exists in PuTTY versions prior to 0.84, which stems from an assertion failure in ECDSA...

3.7CVSS5.8AI score0.00274EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/25 12:0 a.m.10 views

PuTTY 资源管理错误漏洞

PuTTY is a suite of free Telnet, Rlogin and SSH client software from the individual developer Simon Tatham. The software is primarily used for remote administration of Linux systems. A resource management error vulnerability exists in PuTTY versions prior to 0.84, which stems from a double releas...

5.9CVSS5.8AI score0.0032EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/25 12:0 a.m.14 views

PT-2026-43124

Name of the Vulnerable Software and Affected Versions PuTTY versions 0.71 through 0.83 Description An assertion failure occurs during the ECDSA Elliptic Curve Digital Signature Algorithm signature verification process...

3.7CVSS5.4AI score0.00274EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2026/05/25 12:0 a.m.16 views

PT-2026-43122

Name of the Vulnerable Software and Affected Versions PuTTY versions 0.72 through 0.83 Description A double free issue exists in the RSA KEX Key Exchange, which is the process used by two parties to establish a shared secret key over an insecure channel. Recommendations Update to version 0.84...

5.9CVSS5.8AI score0.0032EPSS
Exploits0References10
Malwarebytes
Malwarebytes
added 2026/05/20 3:33 p.m.31 views

Fake malware-signing service Fox Tempest dismantled by Microsoft

Microsoft says it dismantled a malware-signing-as-a-service MSaaS called Fox Tempest, which helped cybercriminals make malware appear legitimate. The service let customers submit malicious files to be digitally signed with short-lived Microsoft-issued certificates, making the malware look...

6AI score
Exploits0
SUSE CVE
SUSE CVE
added 2026/03/24 12:28 a.m.6 views

SUSE CVE-2026-4115

A vulnerability was detected in PuTTY 0.83. Affected is the function eddsaverify of the file crypto/ecc-ssh.c of the component Ed25519 Signature Handler. The manipulation results in improper verification of cryptographic signature. The attack may be performed from remote. The attack requires a hi...

6.3CVSS5.3AI score0.00534EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/03/23 10:53 a.m.1 views

CVE-2026-4115

A flaw was found in PuTTY's Ed25519 Signature Handler component, specifically within the eddsaverify function. A remote attacker could potentially exploit this vulnerability due to improper verification of cryptographic signatures...

6.3CVSS5.8AI score0.00534EPSS
Exploits1References2
EUVD
EUVD
added 2026/03/22 3:31 p.m.4 views

EUVD-2026-14301

A vulnerability was detected in PuTTY 0.83. Affected is the function eddsaverify of the file crypto/ecc-ssh.c of the component Ed25519 Signature Handler. The manipulation results in improper verification of cryptographic signature. The attack may be performed from remote. The attack requires a hi...

6.3CVSS5.1AI score0.00534EPSS
Exploits1References9
NVD
NVD
added 2026/03/22 1:16 p.m.27 views

CVE-2026-4115

A vulnerability was detected in PuTTY 0.83. Affected is the function eddsaverify of the file crypto/ecc-ssh.c of the component Ed25519 Signature Handler. The manipulation results in improper verification of cryptographic signature. The attack may be performed from remote. The attack requires a hi...

6.3CVSS0.00534EPSS
Exploits1References9
OSV
OSV
added 2026/03/22 1:16 p.m.5 views

UBUNTU-CVE-2026-4115

A vulnerability was detected in PuTTY 0.83. Affected is the function eddsaverify of the file crypto/ecc-ssh.c of the component Ed25519 Signature Handler. The manipulation results in improper verification of cryptographic signature. The attack may be performed from remote. The attack requires a hi...

6.3CVSS5.2AI score0.00534EPSS
Exploits1References10
UbuntuCve
UbuntuCve
added 2026/03/22 1:16 p.m.5 views

CVE-2026-4115

A vulnerability was detected in PuTTY 0.83. Affected is the function eddsaverify of the file crypto/ecc-ssh.c of the component Ed25519 Signature Handler. The manipulation results in improper verification of cryptographic signature. The attack may be performed from remote. The attack requires a hi...

6.3CVSS5.3AI score0.00534EPSS
Exploits1References9
Rows per page
Query Builder