Lucene search
K

520 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 11:57 a.m.3 views

CVE-2025-0343

Swift ASN.1 can be caused to crash when parsing certain BER/DER constructions. This crash is caused by a confusion in the ASN.1 library itself which assumes that certain objects can only be provided in either constructed or primitive forms, and will trigger a preconditionFailure if that constrain...

7.5CVSS6.8AI score0.00319EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:31 a.m.9 views

CVE-2024-45234

An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a trusted Trust Anchor can serve via rsync or RRDP an ROA or a Manifest containing a signedAttrs encoded in non-canonical form. This bypasses Fort's BER decoder, reaching a point in the code that panics...

7.5CVSS6.8AI score0.00452EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 3:15 p.m.8 views

CVE-2020-23921

An issue was discovered in fastber through v0.4. yy::yylex in asncompiler.hpp has a heap-based buffer over-read...

7.1CVSS7.1AI score0.00913EPSS
Exploits1
NVD
NVD
added 2025/01/15 1:15 a.m.12 views

CVE-2025-0343

Swift ASN.1 can be caused to crash when parsing certain BER/DER constructions. This crash is caused by a confusion in the ASN.1 library itself which assumes that certain objects can only be provided in either constructed or primitive forms, and will trigger a preconditionFailure if that constrain...

7.5CVSS0.00319EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/15 12:48 a.m.4 views

CVE-2025-0343

Swift ASN.1 can be caused to crash when parsing certain BER/DER constructions. This crash is caused by a confusion in the ASN.1 library itself which assumes that certain objects can only be provided in either constructed or primitive forms, and will trigger a preconditionFailure if that constrain...

7.6AI score0.00319EPSS
Exploits0References1
OSV
OSV
added 2025/01/15 12:48 a.m.4 views

CVE-2025-0343

Swift ASN.1 can be caused to crash when parsing certain BER/DER constructions. This crash is caused by a confusion in the ASN.1 library itself which assumes that certain objects can only be provided in either constructed or primitive forms, and will trigger a preconditionFailure if that constrain...

7.5CVSS5.8AI score0.00319EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/01/15 12:48 a.m.17 views

CVE-2025-0343

Swift ASN.1 can be caused to crash when parsing certain BER/DER constructions. This crash is caused by a confusion in the ASN.1 library itself which assumes that certain objects can only be provided in either constructed or primitive forms, and will trigger a preconditionFailure if that constrain...

0.00319EPSS
Exploits0References1
CVE
CVE
added 2025/01/15 12:48 a.m.82 views

CVE-2025-0343

CVE-2025-0343: Swift ASN.1 can crash when parsing certain BER/DER constructions due to a preconditionFailure in the ASN.1 library that mismanages constructed vs primitive object forms. The issue is a runtime crash (graceful) rather than memory safety, exposed as a potential denial-of-service vect...

7.5CVSS6.5AI score0.00319EPSS
Exploits0References1
OSV
OSV
added 2025/01/14 4:32 p.m.7 views

GHSA-W8XV-RWGF-4FWH CVE-2025-0343: Swift ASN.1 can crash when parsing maliciously formed BER/DER

Swift ASN.1 can be caused to crash when parsing certain BER/DER constructions. This crash is caused by a confusion in the ASN.1 library itself which assumes that certain objects can only be provided in either constructed or primitive forms, and will trigger a preconditionFailure if that constrain...

7.5CVSS6.3AI score0.00319EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2025/01/14 4:32 p.m.14 views

CVE-2025-0343: Swift ASN.1 can crash when parsing maliciously formed BER/DER

Swift ASN.1 can be caused to crash when parsing certain BER/DER constructions. This crash is caused by a confusion in the ASN.1 library itself which assumes that certain objects can only be provided in either constructed or primitive forms, and will trigger a preconditionFailure if that constrain...

7.5CVSS6.9AI score0.00319EPSS
Exploits0References4Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2025/01/14 12:0 a.m.14 views

CVE-2025-0343: Swift ASN.1 can crash when parsing maliciously formed BER/DER

Swift ASN.1 can be caused to crash when parsing certain BER/DER constructions. This crash is caused by a confusion in the ASN.1 library itself which assumes that certain objects can only be provided in either constructed or primitive forms, and will trigger a preconditionFailure if that constrain...

7.5CVSS6.8AI score0.00319EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2024/11/27 12:0 a.m.4 views

PT-2024-29280 · Unknown · Contiki-Ng

Name of the Vulnerable Software and Affected Versions: Contiki-NG affected versions not specified Description: An out-of-bounds read of 1 byte can be triggered when sending a packet to a device running the Contiki-NG operating system with SNMP enabled. The issue exists in the...

9.6CVSS7.2AI score0.00286EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/10/28 5:6 p.m.25 views

Important: Red Hat Security Advisory: Multicluster Engine for Kubernetes 2.4.6 security updates and bug fixes

Multicluster Engine for Kubernetes 2.4.6 General Availability release images, which fix bugs and update container images. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

9.1CVSS6.9AI score0.00617EPSS
Exploits2References1
Microsoft CVE
Microsoft CVE
added 2024/09/11 7:0 a.m.4 views

A vulnerability was found in openldap. This security flaw causes a null pointer dereference in ber_memalloc_x() function.

...

7.5CVSS7AI score0.01947EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2024/09/11 7:0 a.m.3 views

In the Elliptic package 6.5.6 for Node.js ECDSA signature malleability occurs because BER-encoded signatures are allowed.

...

9.1CVSS9.3AI score0.00617EPSS
Exploits0
OSV
OSV
added 2024/08/24 11:15 p.m.18 views

CVE-2024-45234

An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a trusted Trust Anchor can serve via rsync or RRDP an ROA or a Manifest containing a signedAttrs encoded in non-canonical form. This bypasses Fort's BER decoder, reaching a point in the code that panics...

7.5CVSS6.8AI score
Exploits0References2
NVD
NVD
added 2024/08/24 11:15 p.m.29 views

CVE-2024-45234

An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a trusted Trust Anchor can serve via rsync or RRDP an ROA or a Manifest containing a signedAttrs encoded in non-canonical form. This bypasses Fort's BER decoder, reaching a point in the code that panics...

7.5CVSS0.00452EPSS
Exploits0References2
OSV
OSV
added 2024/08/24 11:15 p.m.4 views

DEBIAN-CVE-2024-45234

An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a trusted Trust Anchor can serve via rsync or RRDP an ROA or a Manifest containing a signedAttrs encoded in non-canonical form. This bypasses Fort's BER decoder, reaching a point in the code that panics...

7.5CVSS5.4AI score0.00452EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2024/08/24 11:15 p.m.22 views

CVE-2024-45234

An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a trusted Trust Anchor can serve via rsync or RRDP an ROA or a Manifest containing a signedAttrs encoded in non-canonical form. This bypasses Fort's BER decoder, reaching a point in the code that panics...

7.5CVSS5.9AI score0.00452EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/08/24 12:0 a.m.14 views

CVE-2024-45234

An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a trusted Trust Anchor can serve via rsync or RRDP an ROA or a Manifest containing a signedAttrs encoded in non-canonical form. This bypasses Fort's BER decoder, reaching a point in the code that panics...

6.9AI score0.00452EPSS
Exploits0References1
Rows per page
Query Builder