CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Packet Storm•added 2025/11/26 12:0 a.m.•167 views

📄 Microsoft Sharepoint Authentication Bypass

This is a proof of concept exploit for a Microsoft Sharepoint authentication bypass vulnerability discovered in 2023. ============================================================================================================================================= | Title : SharePoint Authentication...

9.8CVSS7.1AI score0.99618EPSS

Exploits11

Microsoft CVE•added 2025/11/25 1:2 a.m.•7 views

Improper Validation of Signature Algorithm Used in TLS 1.3 CertificateVerify

...

2.7CVSS7AI score0.0015EPSS

Packet Storm News•added 2025/11/25 12:0 a.m.•3 views

A Single-Root, Multi-Curve, Context-Isolated, PQC-Pluggable Cryptographic Identity Primitive with Stateless Secret Rotation

Cryptographic identity anchors modern decentralized systems, yet current standards like BIP-39 and BIP-32 are structurally insufficient for the demands of multi-curve, multi-domain, and post-quantum PQC environments. These legacy schemes rely on a monolithic identity root with no inherent context...

6.9AI score

RedhatCVE•added 2025/11/22 10:31 p.m.•6 views

CVE-2025-11934

Improper input validation in the TLS 1.3 CertificateVerify signature algorithm negotiation in wolfSSL 5.8.2 and earlier on multiple platforms allows for downgrading the signature algorithm used. For example when a client sends ECDSA P521 as the supported signature algorithm the server previously...

2.7CVSS6.8AI score0.0015EPSS

Exploits0References1

EUVD•added 2025/11/22 12:31 a.m.•5 views

EUVD-2025-198527

2.1CVSS6.2AI score0.0015EPSS

CNNVD•added 2025/11/22 12:0 a.m.•4 views

wolfSSL 安全漏洞

wolfSSL CyaSSL is a small, portable embedded SSL programming library for use by embedded systems developers from wolfSSL, Inc. in the United States. A security vulnerability exists in wolfSSL that stems from the fact that any weaker digest algorithm can be used by the client when connecting using...

5.4CVSS6.5AI score0.00127EPSS

OSV•added 2025/11/21 11:15 p.m.•6 views

CVE-2025-11934

2.7CVSS6.7AI score

NVD•added 2025/11/21 11:15 p.m.•6 views

CVE-2025-11934

2.7CVSS0.0015EPSS

OSV•added 2025/11/21 11:15 p.m.•4 views

DEBIAN-CVE-2025-11934

2.7CVSS5.2AI score0.0015EPSS

Exploits0References1

OSV•added 2025/11/21 11:15 p.m.•3 views

UBUNTU-CVE-2025-11934

2.7CVSS5.8AI score0.0015EPSS

Exploits0References4

Cvelist•added 2025/11/21 10:12 p.m.•13 views

CVE-2025-11934 Improper Validation of Signature Algorithm Used in TLS 1.3 CertificateVerify

2.1CVSS0.0015EPSS

CVE•added 2025/11/21 10:12 p.m.•568 views

CVE-2025-11934

CVE-2025-11934 concerns wolfSSL’s TLS 1.3 CertificateVerify signature algorithm negotiation. The vulnerability stems from improper input validation that can downgrade the negotiated signature algorithm (e.g., client supports ECDSA P521 but server accepts and uses ECDSA P256), potentially weakenin...

2.7CVSS6.4AI score0.0015EPSS

Exploits0References2Affected Software1

Debian CVE•added 2025/11/21 10:12 p.m.•8 views

CVE-2025-11934

2.7CVSS5.2AI score0.0015EPSS

OSV•added 2025/11/21 3:59 p.m.•4 views

JLSEC-2025-226 An issue was discovered in Mbed TLS before 2.28.9 and 3.x before 3.6.1, in which the user-selected a...

An issue was discovered in Mbed TLS before 2.28.9 and 3.x before 3.6.1, in which the user-selected algorithm is not used. Unlike previously documented, enabling MBEDTLSPSAHMACDRBGMDTYPE does not cause the PSA subsystem to use HMACDRBG: it uses HMACDRBG only when MBEDTLSPSACRYPTOEXTERNALRNG and...

5.1CVSS6.8AI score0.00236EPSS

OSV•added 2025/11/21 3:59 p.m.•2 views

JLSEC-2025-221 Use of a Broken or Risky Cryptographic Algorithm in the function mbedtls_mpi_exp_mod() in lignum.c i...

Use of a Broken or Risky Cryptographic Algorithm in the function mbedtlsmpiexpmod in lignum.c in Mbed TLS Mbed TLS all versions before 3.0.0, 2.27.0 or 2.16.11 allows attackers with access to precise enough timing and memory access information typically an untrusted operating system attacking a...

4.7CVSS6.5AI score0.00163EPSS

Exploits0References4

OSV•added 2025/11/21 3:59 p.m.•2 views

JLSEC-2025-213 An issue was discovered in Mbed TLS before 2.25.0 (and before 2.16.9 LTS and before 2.7.18 LTS)

An issue was discovered in Mbed TLS before 2.25.0 and before 2.16.9 LTS and before 2.7.18 LTS. A NULL algorithm parameters entry looks identical to an array of REAL size zero and thus the certificate is considered valid. However, if the parameters do not match in any way, then the certificate...

7.5CVSS7.4AI score0.01133EPSS

Exploits1References7

CNNVD•added 2025/11/21 12:0 a.m.•4 views

wolfSSL 安全漏洞

wolfSSL CyaSSL is a small, portable embedded SSL programming library for use by embedded systems developers from wolfSSL, Inc. in the United States. A security vulnerability exists in wolfSSL CyaSSL versions 5.8.2 and earlier, which stems from improper validation of the TLS 1.3 CertificateVerify...

2.7CVSS6.3AI score0.0015EPSS

Exploits0References4

Tenable Nessus•added 2025/11/20 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2025-58188

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Validating certificate chains which contain DSA public keys can cause programs to panic, due to a interface cast that assumes they implement the Equal method...

7.5CVSS7.4AI score0.00344EPSS

EUVD•added 2025/11/19 12:30 p.m.•4 views

EUVD-2025-198149

Inefficient algorithm complexity in mjson in HAProxy allows remote attackers to cause a denial of service via specially crafted JSON requests...

7.5CVSS6.1AI score0.00469EPSS