Lucene search
+L

187 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.10 views

EUVD-2017-8846

Malware in sbrugna...

5.9CVSS6.1AI score0.04219EPSS
Exploits2References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2013-7227

Malware in sbrugna...

7.5CVSS7.4AI score0.01089EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-18307

Malware in sbrugna...

7.5CVSS7.6AI score0.01444EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2008-5139

Malware in sbrugna...

2.6CVSS6.6AI score0.15395EPSS
Exploits1References44
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-26194

Malicious code in bioql PyPI...

5.9CVSS6.6AI score0.00083EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-28779

Malicious code in bioql PyPI...

5.9CVSS6.6AI score0.00083EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-52140

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00371EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2025/09/15 12:0 a.m.4 views

Erlang/OTP (Erlang OTP) TLS 1.0 Missing CBC Padding Check Vulnerability (GHSA-ffrq-5rxw-xj5m) - Windows

Erlang/OTP Erlang OTP is prone to a TLS 1.0 missing CBC padding check vulnerability in the ssl component. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

6.8AI score
Exploits0References1
Veracode
Veracode
added 2025/09/12 9:51 a.m.4 views

Allocation Of Resources Without Limits

Bouncy Castle is vulnerable to Allocation of Resources Without Limits. The vulnerability is due to excessive allocation due to improper handling in the AESNativeCBC.java implementation...

5.9CVSS6.7AI score0.00149EPSS
Exploits0References3Affected Software2
NVD
NVD
added 2025/08/29 10:15 a.m.5 views

CVE-2025-7071

Padding oracle attack vulnerability in Oberon microsystem AG’s ocrypto library in all versions since 3.1.0 and prior to 3.9.2 allows an attacker to recover plaintexts via timing measurements of AES-CBC PKCS7 decrypt operations...

5.9CVSS0.00083EPSS
Exploits0References1
CVE
CVE
added 2025/08/29 9:18 a.m.20 views

CVE-2025-7071

The CVE concerns Oberon microsystems AG ocrypto library. A padding oracle timing side-channel in AES-CBC decryption with PKCS#7 padding exists for ocrypto versions 3.1.0 through 3.9.1 (i.e., all versions since 3.1.0 up to but not including 3.9.2). Attackers could recover plaintexts by measuring d...

5.9CVSS6.3AI score0.00083EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/29 9:18 a.m.8 views

CVE-2025-7071 Timing side-channel vulnerability in AES-CBC decryption with PKCS#7 padding in ocrypto library

Padding oracle attack vulnerability in Oberon microsystem AG’s ocrypto library in all versions since 3.1.0 and prior to 3.9.2 allows an attacker to recover plaintexts via timing measurements of AES-CBC PKCS7 decrypt operations...

5.9CVSS0.00083EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/29 9:18 a.m.2 views

CVE-2025-7071 Timing side-channel vulnerability in AES-CBC decryption with PKCS#7 padding in ocrypto library

Padding oracle attack vulnerability in Oberon microsystem AG’s ocrypto library in all versions since 3.1.0 and prior to 3.9.2 allows an attacker to recover plaintexts via timing measurements of AES-CBC PKCS7 decrypt operations...

5.9CVSS6.3AI score0.00083EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/08/29 12:0 a.m.6 views

PT-2025-35196

Name of the Vulnerable Software and Affected Versions: Oberon PSA Crypto library versions 1.0.0 through 1.5.0 Description: A padding oracle attack allows an attacker to recover plaintexts via timing measurements of AES-CBC PKCS7 decrypt operations. Recommendations: Update to version 1.5.1 or late...

5.9CVSS6.4AI score0.00083EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/08/29 12:0 a.m.6 views

PT-2025-35195

Name of the Vulnerable Software and Affected Versions: ocrypto versions 3.1.0 through 3.9.1 Description: A padding oracle attack allows an attacker to recover plaintexts via timing measurements of AES-CBC PKCS7 decrypt operations. Recommendations: Update to a version later than 3.9.1...

5.9CVSS6.4AI score0.00083EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/08/25 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2017-3225

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Das U-Boot is a device bootloader that can read its configuration from an AES encrypted file. For devices utilizing this environment encryption mode, U-Boot's u...

4.6CVSS5.3AI score0.00309EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/24 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2013-7469

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Seafile through 6.2.11 always uses the same Initialization Vector IV with Cipher Block Chaining CBC Mode to encrypt private data, making it easier to conduct...

7.5CVSS7AI score0.01089EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2025/08/22 9:30 a.m.10 views

Bouncy Castle for Java has Uncontrolled Resource Consumption Vulnerability

Uncontrolled Resource Consumption vulnerability in Legion of the Bouncy Castle Inc. Bouncy Castle for Java FIPS bc-fips on All API modules allows Excessive Allocation. This vulnerability is associated with program files org/bouncycastle/crypto/fips/AESNativeCBC.Java. This issue affects Bouncy...

5.9CVSS7.2AI score0.00149EPSS
Exploits0References3Affected Software2
Vulnrichment
Vulnrichment
added 2025/08/22 9:9 a.m.6 views

CVE-2025-9341 Garbage collection can delay for AES CBC Native support, resulting in heap exhaustion

Uncontrolled Resource Consumption vulnerability in Legion of the Bouncy Castle Inc. Bouncy Castle for Java FIPS bc-fips on All API modules, Legion of the Bouncy Castle Inc. Bouncy Castle for Java LTS bcprov-lts8on on All API modules allows Excessive Allocation. This vulnerability is associated wi...

5.9CVSS6.2AI score0.00149EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/22 9:9 a.m.27 views

CVE-2025-9341 Garbage collection can delay for AES CBC Native support, resulting in heap exhaustion

Uncontrolled Resource Consumption vulnerability in Legion of the Bouncy Castle Inc. Bouncy Castle for Java FIPS bc-fips on All API modules, Legion of the Bouncy Castle Inc. Bouncy Castle for Java LTS bcprov-lts8on on All API modules allows Excessive Allocation. This vulnerability is associated wi...

5.9CVSS0.00149EPSS
Exploits0References1
Rows per page
Query Builder