Lucene search
+L

6 matches found

attackerkb
attackerkb
added 2026/07/03 6:16 a.m.10 views

CVE-2026-9079

libcurl had a flaw that when instructed to clear proxy authentication credentials which made it not do so, leaving the old credentials around to get used for subsequent transfers that should not know nor use them...

6AI score0.01064EPSS
Exploits1References4Affected Software1
attackerkb
attackerkb
added 2026/05/19 9:55 p.m.15 views

CVE-2023-7345

Ledger Live with vulnerable versions of ledgerhq/hw-app-eth prior to 6.34.7 contains an integer parsing vulnerability that allows attackers to manipulate EIP-712 typed data messages by exploiting incorrect hexadecimal field parsing when values contain an odd number of characters. Attackers can...

6.9CVSS5.8AI score0.00263EPSS
Exploits0References3
cvelist
cvelist
added 2026/05/19 9:55 p.m.32 views

CVE-2023-7345 Ledger Live hw-app-eth EIP-712 Message Parsing Integer Truncation

Ledger Live with vulnerable versions of ledgerhq/hw-app-eth prior to 6.34.7 contains an integer parsing vulnerability that allows attackers to manipulate EIP-712 typed data messages by exploiting incorrect hexadecimal field parsing when values contain an odd number of characters. Attackers can...

6.9CVSS0.00263EPSS
Exploits0References2
cve
cve
added 2026/05/19 9:55 p.m.26 views

CVE-2023-7345

Affected software: Ledger Live with vulnerable versions of ledgerhq/hw-app-eth prior to 6.34.7. Root cause: Integer parsing vulnerability in EIP-712 message handling due to incorrect hexadecimal field parsing when values have an odd number of characters. Impact: Attackers could obtain signatures ...

6.9CVSS5.8AI score0.00263EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/05/19 12:0 a.m.12 views

PT-2026-42019

Name of the Vulnerable Software and Affected Versions ledgerhq/hw-app-eth versions prior to 6.34.7 Description An integer parsing issue exists where incorrect hexadecimal field parsing occurs when values contain an odd number of characters. This allows attackers to manipulate EIP-712 typed data...

6.9CVSS5.8AI score0.00263EPSS
Exploits0References7
osv
osv
added 2018/07/20 12:29 a.m.4 views

CVE-2018-14439

espritblock eos4j, an unofficial SDK for EOS, through 2018-07-12 mishandles floating-point numbers with more than four digits after the decimal point, which might allow attackers to trigger currency transfers of unintended amounts...

7.5CVSS5.8AI score0.01033EPSS
Exploits1References2
Rows per page
Query Builder