Lucene search
K

201 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/22 12:0 a.m.9 views

Unity Linux 20.1050e / 20.1070e Security Update: ed25519-java (UTSA-2026-016772)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016772 advisory. The implementation of EdDSA in EdDSA-Java aka ed25519-java through 0.3.0 exhibits signature malleability and does not satisfy the SUF-CMA Strong Existential...

4.3CVSS5.8AI score0.00133EPSS
Exploits0References4
OSV
OSV
added 2026/04/01 10:13 p.m.5 views

GHSA-X3FF-W252-2G7J StableLib Ed25519 Signature Malleability via Missing S < L Check

Ed25519 Signature Malleability via Missing S = L to prevent signature malleability. When S = L, SB = S mod LB = S - LB, meaning two different 32-byte S values produce the same verification result. An attacker who observes a valid signature R, S can produce a second valid signature R, S + L for th...

5.3CVSS5.8AI score
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/04/01 10:13 p.m.8 views

StableLib Ed25519 Signature Malleability via Missing S < L Check

Ed25519 Signature Malleability via Missing S = L to prevent signature malleability. When S = L, SB = S mod LB = S - LB, meaning two different 32-byte S values produce the same verification result. An attacker who observes a valid signature R, S can produce a second valid signature R, S + L for th...

7.5CVSS5.9AI score0.00348EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/03/28 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-33895

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Forge also called node-forge is a native implementation of Transport Layer Security in JavaScript. Prior to version 1.4.0, Ed25519 signature verification accept...

8.1CVSS6.7AI score0.00348EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/03/27 9:52 p.m.4 views

CVE-2026-33895

A flaw was found in Forge also called node-forge, a JavaScript library used for Transport Layer Security TLS. The library's Ed25519 signature verification process does not correctly validate cryptographic signatures, allowing forged non-canonical signatures to be accepted. A remote attacker could...

7.5CVSS5.8AI score0.00348EPSS
Exploits0References6
NVD
NVD
added 2026/03/27 9:17 p.m.5 views

CVE-2026-33895

Forge also called node-forge is a native implementation of Transport Layer Security in JavaScript. Prior to version 1.4.0, Ed25519 signature verification accepts forged non-canonical signatures where the scalar S is not reduced modulo the group order S = L. A valid signature and its S + L variant...

7.5CVSS0.00348EPSS
Exploits0References10
OSV
OSV
added 2026/03/27 9:17 p.m.4 views

UBUNTU-CVE-2026-33895

Forge also called node-forge is a native implementation of Transport Layer Security in JavaScript. Prior to version 1.4.0, Ed25519 signature verification accepts forged non-canonical signatures where the scalar S is not reduced modulo the group order S = L. A valid signature and its S + L variant...

7.5CVSS5.7AI score0.00348EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/03/27 9:17 p.m.3 views

CVE-2026-33895

Forge also called node-forge is a native implementation of Transport Layer Security in JavaScript. Prior to version 1.4.0, Ed25519 signature verification accepts forged non-canonical signatures where the scalar S is not reduced modulo the group order S = L. A valid signature and its S + L variant...

7.5CVSS5.7AI score0.00348EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/03/27 8:47 p.m.27 views

CVE-2026-33895 Forge has signature forgery in Ed25519 due to missing S > L check

Forge also called node-forge is a native implementation of Transport Layer Security in JavaScript. Prior to version 1.4.0, Ed25519 signature verification accepts forged non-canonical signatures where the scalar S is not reduced modulo the group order S = L. A valid signature and its S + L variant...

7.5CVSS0.00348EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/03/27 8:47 p.m.9 views

CVE-2026-33895 Forge has signature forgery in Ed25519 due to missing S > L check

Forge also called node-forge is a native implementation of Transport Layer Security in JavaScript. Prior to version 1.4.0, Ed25519 signature verification accepts forged non-canonical signatures where the scalar S is not reduced modulo the group order S = L. A valid signature and its S + L variant...

7.5CVSS5.7AI score0.00348EPSS
Exploits0References3
OSV
OSV
added 2026/03/27 8:47 p.m.2 views

CVE-2026-33895 Forge has signature forgery in Ed25519 due to missing S > L check

Forge also called node-forge is a native implementation of Transport Layer Security in JavaScript. Prior to version 1.4.0, Ed25519 signature verification accepts forged non-canonical signatures where the scalar S is not reduced modulo the group order S = L. A valid signature and its S + L variant...

7.5CVSS5.7AI score0.00348EPSS
Exploits0References12
ATTACKERKB
ATTACKERKB
added 2026/03/27 8:47 p.m.4 views

CVE-2026-33895

Forge also called node-forge is a native implementation of Transport Layer Security in JavaScript. Prior to version 1.4.0, Ed25519 signature verification accepts forged non-canonical signatures where the scalar S is not reduced modulo the group order S = L. A valid signature and its S + L variant...

7.5CVSS5.7AI score0.00348EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2026/03/27 12:0 a.m.11 views

Digital Bazaar Forge 数据伪造问题漏洞

Digital Bazaar Forge is a native implementation of TLS in JavaScript by the American company Digital Bazaar, and it serves as an open-source tool for developing encrypted and network-intensive web applications. Versions of Digital Bazaar Forge prior to 1.4.0 contained a data manipulation...

7.5CVSS5.7AI score0.00348EPSS
Exploits0References3
OSV
OSV
added 2026/03/26 10:4 p.m.3 views

GHSA-Q67F-28XG-22RW Forge has signature forgery in Ed25519 due to missing S > L check

Summary Ed25519 signature verification accepts forged non-canonical signatures where the scalar S is not reduced modulo the group order S = L. A valid signature and its S + L variant both verify in forge, while Node.js crypto.verify OpenSSL-backed rejects the S + L variant, as defined by the...

7.5CVSS6.7AI score0.00348EPSS
Exploits0References7
OSV
OSV
added 2026/02/17 6:9 p.m.4 views

GO-2026-4458 Blocklist Bypass possible via ECDSA Signature Malleability in github.com/slackhq/nebula

Blocklist Bypass possible via ECDSA Signature Malleability in github.com/slackhq/nebula...

8.1CVSS5.4AI score0.00133EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/02/10 12:23 a.m.4 views

SUSE CVE-2026-25793

Nebula is a scalable overlay networking tool. In versions from 1.7.0 to 1.10.2, when using P256 certificates which is not the default configuration, it is possible to evade a blocklist entry created against the fingerprint of a certificate by using ECDSA Signature Malleability to use a copy of th...

8.1CVSS5.5AI score0.00133EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/02/06 10:55 p.m.6 views

CVE-2026-25793

Nebula is a scalable overlay networking tool. In versions from 1.7.0 to 1.10.2, when using P256 certificates which is not the default configuration, it is possible to evade a blocklist entry created against the fingerprint of a certificate by using ECDSA Signature Malleability to use a copy of th...

7.6CVSS5.3AI score0.00133EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/02/06 10:55 p.m.13 views

CVE-2026-25793

Nebula (versions 1.7.0–1.10.2) is vulnerable when CURVE_P256 is used. An ECDSA Signature Malleability flaw allows copying a certificate to produce a different fingerprint, enabling blocklist bypass for fingerprint-based entries. The issue is fixed in version 1.10.3. Impact is described as high (c...

8.1CVSS5.3AI score0.00133EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/02/06 10:55 p.m.5 views

CVE-2026-25793 Nebula Has Possible Blocklist Bypass via ECDSA Signature Malleability

Nebula is a scalable overlay networking tool. In versions from 1.7.0 to 1.10.2, when using P256 certificates which is not the default configuration, it is possible to evade a blocklist entry created against the fingerprint of a certificate by using ECDSA Signature Malleability to use a copy of th...

7.6CVSS5.4AI score0.00133EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2026/02/06 8:5 p.m.11 views

Blocklist Bypass possible via ECDSA Signature Malleability

Impact When using P256 certificates which is not the default configuration, it is possible to evade a blocklist entry created against the fingerprint of a certificate by using ECDSA Signature Malleability to use a copy of the certificate with a different fingerprint. In order for this to affect a...

8.1CVSS5.7AI score0.00133EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder