4 matches found
EUVD-2026-39482
Bleichenbacher padding oracle in PKCS7 KTRI decryption. When decrypting PKCS7 EnvelopedData using RSA PKCS1 v1.5 key transport, wolfSSL returned distinguishable error codes depending on whether RSA padding validation failed versus whether the decrypted content was malformed. An attacker able to...
SUSE CVE-2013-1621
Array index error in the SSL module in PolarSSL before 1.2.5 might allow remote attackers to cause a denial of service via vectors involving a crafted padding-length value during validation of CBC padding in a TLS session, a different vulnerability than CVE-2013-0169...
OpenSSH CBC Padding Weak Password Vulnerability
OpenSSH is a set of connection tools maintained by the OpenBSD Project Group for secure access to remote computers. A weak password vulnerability exists in OpenSSH CBC Padding, which allows an attacker to bypass security restrictions and obtain sensitive information...
The vulnerability of the OpenSSL software allows a malicious attacker to compromise the confidentiality of protected information.
The vulnerability exists in the SSL protocol for OpenSSL due to the use of non-deterministic padding for CBC encryption block chaining of the encryption text. Exploiting this vulnerability allows a malicious actor to obtain unencrypted data by using a padding prediction attack, known as POODLE...