Lucene search
+L

65 matches found

OSV
OSV
added 2026/07/01 9:49 a.m.8 views

ROOT-APP-GOBINARY-CVE-2026-39833 CVE-2026-39833 in rootio-golang.org/x/crypto - Patched by Root

Root has patched CVE-2026-39833 in the rootio-golang.org/x/crypto package for Root:Go. Multiple fixed versions available...

9.1CVSS5.8AI score0.0036EPSS
Exploits0
OSV
OSV
added 2026/07/01 9:49 a.m.11 views

ROOT-APP-GOBINARY-CVE-2026-39831 CVE-2026-39831 in rootio-golang.org/x/crypto - Patched by Root

Root has patched CVE-2026-39831 in the rootio-golang.org/x/crypto package for Root:Go. Multiple fixed versions available...

9.1CVSS5.8AI score0.00373EPSS
Exploits0
OSV
OSV
added 2026/07/01 9:49 a.m.9 views

ROOT-APP-GOBINARY-CVE-2026-39827 CVE-2026-39827 in rootio-golang.org/x/crypto - Patched by Root

Root has patched CVE-2026-39827 in the rootio-golang.org/x/crypto package for Root:Go. Multiple fixed versions available...

6.5CVSS5.8AI score0.00196EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/06/15 7:47 p.m.10 views

crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation

A flaw was found in Go's crypto/x509 package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service DoS for...

7.5CVSS5.3AI score0.00349EPSS
Exploits0References8
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/08 7:23 p.m.13 views

Malicious code in typo-crypto (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64edea611ad8e383c09495a7a6f7afd4fb86b88136c331ddf787bf0285259bf3 The package typo-crypto was found to contain malicious code...

5.8AI score
Exploits0
Amazon
Amazon
added 2026/04/30 12:0 a.m.11 views

Medium: credentials-fetcher

Issue Overview: Arithmetic over induction variables in loops were not correctly checked for underflow or overflow in the Go compiler cmd/compile. As a result, the compiler would allow for invalid indexing to occur at runtime, potentially leading to memory corruption in programs compiled with...

9.8CVSS5.7AI score0.00621EPSS
Exploits0
OSV
OSV
added 2026/02/19 11:56 p.m.9 views

MAL-2026-947 Malicious code in ethrpc (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 b1eff108aebd0c94cd1b2c9dd2321060f61236e0dbf655c62f729169dcd5d5b3 The malicious code is in the ethrpc-keys package, which is a clone of legitimate eth-keys, but contains a modification that silently exfiltrates the user's...

5.7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/01/19 12:43 a.m.10 views

Malicious code in cyrpto (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 88df3de403df4549d6cae9b1d508f683da4ed91d472a6020a40a3dbd6d5930fc The package cyrpto was found to contain malicious code. Source: ghsa-malware 1e003c50bdddfa1368c5ed0e356acfab8b21a0d410f1d181471b88221a590cd9 Any...

5.5AI score
Exploits0References3
EUVD
EUVD
added 2026/01/19 12:43 a.m.5 views

EUVD-2026-3276

Malicious code in cyrpto npm...

5.5AI score
Exploits0References1
EUVD
EUVD
added 2025/12/27 8:55 a.m.4 views

EUVD-2025-205473

Malicious code in crpto PyPI...

6.6AI score
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-8666

Malware in sbrugna...

7.8CVSS6.8AI score0.06325EPSS
Exploits0References14
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-21208

Malware in sbrugna...

6.5CVSS6.2AI score0.06975EPSS
Exploits1References59
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-6832

Malicious code in bioql PyPI...

7.5CVSS6.8AI score0.00984EPSS
Exploits0References24
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-1414

Malicious code in bioql PyPI...

7.5CVSS6.8AI score0.0077EPSS
Exploits0References7
OSV
OSV
added 2025/08/14 6:52 p.m.4 views

MAL-2025-38184 Malicious code in veda-crypto (npm)

The package veda-crypto was found to contain malicious code...

7.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/12 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-38173

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - crypto: marvell/cesa - Handle zero-length skcipher requests Do not access random memory for zero-length skcipher requests. Just return 0. CVE-2025-38173 Note th...

5.5CVSS6.4AI score0.00151EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/06/12 1:26 p.m.8 views

CVE-2025-22874

A flaw was found in Go's crypto/x509 package. This vulnerability allows improper certificate validation, bypassing policy constraints via using ExtKeyUsageAny in VerifyOptions.KeyUsages...

7.5CVSS7.7AI score0.00326EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2025/06/10 10:39 a.m.3 views

crypto/internal/nistec: golang: Timing sidechannel for P-256 on ppc64le in crypto/internal/nistec

A flaw was found in the Golang crypto/internal/nistec package. Due to the usage of a variable time instruction in the assembly implementation of an internal function, a small number of bits of secret scalars are leaked on the ppc64le architecture. Considering how this function is used, this leaka...

4CVSS7.1AI score0.00284EPSS
Exploits0References8
IBM Security Bulletins
IBM Security Bulletins
added 2025/04/14 6:13 a.m.11 views

Security Bulletin: IBM Sterling Secure Proxy is vulnerable to multiple issues

Summary Multple vulnerabilities affect IBM Sterling Secure Proxy and are addressed in the latest release and iFix Vulnerability Details CVEID:CVE-2024-29857 DESCRIPTION: The Bouncy Castle Crypto Package For Java is vulnerable to a denial of service, caused by improper input validation. By importi...

7.5CVSS7.7AI score0.011EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/03/28 6:5 p.m.31 views

Security Bulletin: Multiple vulnerabilities disclosed in IBM Eclipse SDK affect IBM SPSS Collaboration and Deployment Services

Summary Multiple vulnerabilities disclosed in IBM Eclipse SDK affect IBM SPSS Collaboration and Deployment Services CVE-2024-8184, CVE-2024-6763, CVE-2024-29857, CVE-2024-30172, CVE-2024-30171, CVE-2021-28170, CVE-2023-48795, CVE-2023-33201, CVE-2023-33202, CVE-2023-4218, CVE-2023-36478,...

7.5CVSS7.8AI score0.93305EPSS
Exploits9Affected Software1
Rows per page
Query Builder