FP-Predictor - False Positive Prediction for Static Analysis Reports

Static Application Security Testing SAST tools play a vital role in modern software development by automatically detecting potential vulnerabilities in source code. However, their effectiveness is often limited by a high rate of false positives, which wastes developer's effort and undermines trus...

EUVD-2023-28925

Malicious code in bioql PyPI...

EUVD-2023-28924

Malicious code in bioql PyPI...

EUVD-2023-39342

Malicious code in bioql PyPI...

EUVD-2021-7146

Malicious code in bioql PyPI...

BIT-GOLANG-2020-0601

A spoofing vulnerability exists in the way Windows CryptoAPI Crypt32.dll validates Elliptic Curve Cryptography ECC certificates.An attacker could exploit the vulnerability by using a spoofed code-signing certificate to sign a malicious executable, making it appear the file was from a trusted,...

CVE-2023-35339

Windows CryptoAPI Denial of Service Vulnerability...

Denial of service

Windows CryptoAPI Denial of Service Vulnerability...

CVE-2023-35339 Windows CryptoAPI Denial of Service Vulnerability

...

CVE-2023-35339

CVE-2023-35339 is a Windows CryptoAPI Denial of Service vulnerability with a CVSS v3.1 base score of 7.5 (NETWORK, LOW attack complexity, NONE privileges, NONE user interaction, HIGH availability impact). The provided records do not specify affected versions, root cause details, exploitation stat...

CVE-2023-35339 Windows CryptoAPI Denial of Service Vulnerability

...

Windows CryptoAPI Denial of Service Vulnerability

...

PT-2023-3852 · Microsoft · Windows Cryptoapi +1

Name of the Vulnerable Software and Affected Versions: Windows CryptoAPI affected versions not specified Description: The issue is related to incorrect clearing or release of resources in the Windows CryptoAPI, which can be exploited by a remote attacker to cause a denial of service...

Microsoft Windows CryptoAPI 安全漏洞

Microsoft Windows CryptoAPI is a cryptographic compiler added to the Windows operating system by Microsoft. CryptoAPI supports synchronous and asynchronous key encryption and the management of digital certificates in the operating system as the basis for data encryption and decryption functions. ...

CVE-2023-30588

A vulnerability has been identified in the Node.js, where an invalid public key is used to create an x509 certificate using the crypto.X509Certificate API a non-expect termination occurs making it susceptible to DoS attacks when the attacker could force interruptions of application processing, as...

CVE-2023-24937

Windows CryptoAPI Denial of Service Vulnerability...

CVE-2023-24937

Windows CryptoAPI Denial of Service Vulnerability...

Denial of service

Windows CryptoAPI Denial of Service Vulnerability...

CVE-2023-24937 Windows CryptoAPI Denial of Service Vulnerability

...

CVE-2023-24937

Technical details about CVE-2023-24937 are not provided in the connected documents. Please monitor for updates from official advisories and vulnerability databases.