5 matches found
libtasn1: Inefficient DER Decoding in libtasn1 Leading to Potential Remote DoS
A flaw in libtasn1 causes inefficient handling of specific certificate data. When processing a large number of elements in a certificate, libtasn1 takes much longer than expected, which can slow down or even crash the system. This flaw allows an attacker to send a specially crafted certificate,...
CVE-2026-30884
mdjnelson/moodle-modcustomcert is a Moodle plugin for creating dynamically generated certificates with complete customization via the web browser. Prior to versions 4.4.9 and 5.0.3, a teacher who holds mod/customcert:manage in any single course can read and silently overwrite certificate elements...
CVE-2026-30884 mdjnelson/moodle-mod_customcert Vulnerable to Authorization Bypass Through User-Controlled Key
mdjnelson/moodle-modcustomcert is a Moodle plugin for creating dynamically generated certificates with complete customization via the web browser. Prior to versions 4.4.9 and 5.0.3, a teacher who holds mod/customcert:manage in any single course can read and silently overwrite certificate elements...
CVE-2026-30884
CVE-2026-30884 affects the Moodle plugin mdjnelson/moodle-mod_customcert . Prior to versions 4.4.9 and 5.0.3, a teacher with the mod/customcert:manage capability in any single course can read and silently overwrite certificate elements for other courses. The vulnerability arises because the core_...
libtasn1 安全漏洞
libtasn1 is a small ASN.1 library open-sourced by gnutls. A security vulnerability exists in libtasn1 that stems from taking much longer than expected to process a large number of elements in a certificate, which could cause the system to slow down or even crash...