Lucene search
K

7 matches found

Github Security Blog
Github Security Blog
added 2026/05/08 11:47 p.m.12 views

epa4all-client has a VAU Signature bypass

Impact In SignedPublicKeysTrustValidatorImpl.isTrusted, the ECDSA signature verification at line 45 discards the boolean return value of Signature.verify. The method performs certificate chain validation, OCSP check, and signature algorithm setup, but never checks whether the signature actually...

8.1CVSS5.8AI score0.00121EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2025/11/04 3:48 p.m.8 views

Protobuf Maven Plugin protocDigest is ignored when using protoc from PATH

Summary The expected protocDigest is ignored when protoc is taken from the PATH. Details The documentation for the protocDigest parameter says: ... Users may wish to specify this if using a PATH-based binary ... However, when specifying PATH the protocDigest is not actually checked because the co...

7.1AI score
Exploits0References3Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-3486

Malware in sbrugna...

7.1CVSS6.9AI score0.00184EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 5:24 p.m.7 views

CVE-2020-11132

u'Buffer over read in boot due to size check ignored before copying GUID attribute from request to response' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in...

7.1CVSS7.1AI score0.00184EPSS
Exploits0References1
NVD
NVD
added 2020/11/12 10:15 a.m.23 views

CVE-2020-11132

u'Buffer over read in boot due to size check ignored before copying GUID attribute from request to response' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in...

7.1CVSS7.2AI score0.00184EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2020/08/12 12:0 a.m.7 views

The vulnerability of the check_ignored() function in the Apport error logging service allows a violator to trigger a service failure.

The vulnerability of the checkignored function in the apport/report.py file of the Apport error reporting service is related to improper handling of exceptional states. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS5.9AI score0.00432EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2020/05/13 12:0 a.m.2 views

UBUNTU-CVE-2020-15701

An unhandled exception in checkignored in apport/report.py can be exploited by a local attacker to cause a denial of service. If the mtime attribute is a string value in apport-ignore.xml, it will trigger an unhandled exception, resulting in a crash. Fixed in 2.20.1-0ubuntu2.24, 2.20.9-0ubuntu7.1...

5.5CVSS6AI score0.00432EPSS
Exploits1References4
Rows per page
Query Builder