CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

50 matches found

ATTACKERKB•added 2026/04/24 5:16 p.m.•1 views

CVE-2026-41676

rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.27 to before 0.10.78, Deriver::derive and PkeyCtxRef::derive sets len = buf.len and passes it as the in/out length to EVPPKEYderive, relying on OpenSSL to honor it. On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extra...

9.2CVSS5.4AI score0.00066EPSS

Exploits0References2Affected Software1

OSV•added 2026/04/22 9:22 p.m.•2 views

GHSA-PQF5-4PQQ-29F5 rust-openssl: Deriver::derive and PkeyCtxRef::derive can overflow short buffers on OpenSSL 1.1.1

Deriver::derive and PkeyCtxRef::derive sets len = buf.len and passes it as the in/out length to EVPPKEYderive, relying on OpenSSL to honor it. On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extract ignore the incoming keylen, unconditionally writing the full shared secret 32/56/prime-size bytes. A...

9.2CVSS5.8AI score0.00066EPSS

Exploits0References6

Positive Technologies•added 2026/04/22 12:0 a.m.•3 views

PT-2026-34619

rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.27 to before 0.10.78, Deriver::derive and PkeyCtxRef::derive sets len = buf.len and passes it as the in/out length to EVP PKEY derive, relying on OpenSSL to honor it. On OpenSSL 1.1.x, X25519, X448, DH and...

9.2CVSS5.4AI score0.00066EPSS

Exploits0References10

OSV•added 2026/03/13 7:54 p.m.•1 views

UBUNTU-CVE-2026-2673

Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group configuration includes the default by using the 'DEFAULT' keyword. Impact summary: A less preferred key exchange may be used even when a more preferred group is...

6.5CVSS5.8AI score0.00023EPSS

Exploits0References5

Packet Storm News•added 2026/03/05 12:0 a.m.•3 views

AirPlay RTSP Auditor

This Metasploit module is a hardened RTSP security auditing tool targeting Apple AirPlay services port 7000. It performs a structured authentication handshake using X25519 key exchange, derives shared secrets, and sends a dynamically constructed Apple Binary Property List bplist payload over RTSP...

5.9AI score

Exploits0

OSV•added 2026/02/13 8:5 p.m.•2 views

GHSA-G433-PQ76-6CMF Bug fixes in hpke-rs, hpke-rs-rust-crypto

We publish a GitHub security advisory for any releases whose CHANGELOG includes bug-fixes, and encourage our users to upgrade. The latest releases of the hpke-rs and hpke-rs-rust-crypto crates contain the following bug-fixes: hpke-rs - 127: Fix KemAlgorithm::TryFrom mapping where 0x004D incorrect...

8.2CVSS5.6AI score

Exploits0References12

Github Security Blog•added 2026/02/13 8:5 p.m.•13 views

Bug fixes in hpke-rs, hpke-rs-rust-crypto

5.5AI score

Exploits0References12Affected Software2

Github Security Blog•added 2026/02/12 10:12 p.m.•3 views

Bug-Fixes in `libcrux-ecdh`, `libcrux-ed25519`, `libcrux-psq`

In accordance with our security policy for libcrux, we publish a GitHub security advisory for any releases whose CHANGELOG includes bug-fixes, and encourage our users to upgrade. The latest releases of the libcrux-ecdh, libcrux-ed25519 and libcrux-psq crates contain the following bug-fixes:...

5.5AI score

Exploits0References12Affected Software3

RustSec•added 2026/02/04 12:0 p.m.•0 views

Missing Check for All-Zero X25519 Shared Secret

Computing an X25519 shared secret with x25519dalek::StaticSecret::diffiehellman does not include the check that the key exchange was contributory, i.e. does not ensure on its own that the resulting shared secret is non-zero. Impact RFC 9180 mandates that implementations of HPKE must check for all...

5.8AI score

Exploits0Affected Software1

RustSec•added 2026/01/26 12:0 p.m.•1 views

Incorrect X25519 clamping check rejects all secrets on import

The latest releases of the libcrux-psq crate contains the following bug-fix: 1301: Fix broken clamping check for imported X25519 secret keys...

5.3AI score

Exploits0Affected Software1

OSV•added 2026/01/26 12:0 p.m.•1 views

RUSTSEC-2026-0024 Incorrect X25519 clamping check rejects all secrets on import

The latest releases of the libcrux-psq crate contains the following bug-fix: 1301: Fix broken clamping check for imported X25519 secret keys...

5.5AI score

Exploits0References3

Tenable Nessus•added 2025/12/03 12:0 a.m.•2 views

FreeBSD : wolfssl -- multiple issues (ba02dfb6-ce31-11f0-a327-589cfc01894a)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the ba02dfb6-ce31-11f0-a327-589cfc01894a advisory. wolfSSL blog reports: This release includes multiple fixes across TLS 1.2, TLS 1.3, X25519,...

8.2CVSS6AI score0.00064EPSS

Exploits0References10

RedhatCVE•added 2025/11/22 11:12 p.m.•2 views

CVE-2025-12888

Vulnerability in X25519 constant-time cryptographic implementations due to timing side channels introduced by compiler optimizations and CPU architecture limitations, specifically with the Xtensa-based ESP32 chips. If targeting Xtensa it is recommended to use the low memory implementations of...

7.5CVSS6.7AI score0.00015EPSS

Exploits0References1

Tenable Nessus•added 2025/11/22 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2025-12888

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in X25519 constant-time cryptographic implementations due to timing side channels introduced by compiler optimizations and CPU architecture...

7.5CVSS5.8AI score0.00015EPSS

Exploits0References3

OSV•added 2025/11/21 11:15 p.m.•2 views

CVE-2025-12888

7.5CVSS6.7AI score

Exploits0References1