Lucene search
+L

115 matches found

Positive Technologies
Positive Technologies
added 2026/04/08 12:0 a.m.5 views

PT-2026-31459

Name of the Vulnerable Software and Affected Versions cryptography versions 45.0.0 through 46.0.6 Description The cryptography package, designed for cryptographic primitives in Python, contains a flaw where non-contiguous buffers passed to APIs accepting Python buffers e.g., Hash.update can lead ...

9.8CVSS6.1AI score0.00652EPSS
Exploits0References126
IBM Security Bulletins
IBM Security Bulletins
added 2026/04/06 10:16 a.m.8 views

Security Bulletin: There is a vulnerability in cryptography-46.0.3-cp311-abi3-manylinux_2_34_x86_64.whl used by IBM Maximo Manage application in IBM Maximo Application Suite (CVE-2026-26007)

Summary There is a vulnerability in cryptography-46.0.3-cp311-abi3-manylinux234x8664.whl used by IBM Maximo Manage application in IBM Maximo Application Suite. Vulnerability Details CVEID:CVE-2026-26007 DESCRIPTION: cryptography is a package designed to expose cryptographic primitives and recipes...

8.2CVSS5.9AI score0.00341EPSS
Exploits0Affected Software1
OSV
OSV
added 2026/03/31 3:15 a.m.9 views

PYSEC-2026-35

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Prior to version 46.0.6, DNS name constraints were only validated against SANs within child certificates, and not the "peer name" presented during each validation. Consequently, cryptography...

5.3CVSS5.7AI score0.00154EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/03/31 3:15 a.m.7 views

CVE-2026-34073

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Prior to version 46.0.6, DNS name constraints were only validated against SANs within child certificates, and not the "peer name" presented during each validation. Consequently, cryptography...

6.3CVSS5.7AI score0.00154EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/31 2:4 a.m.2 views

CVE-2026-34073

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Prior to version 46.0.6, DNS name constraints were only validated against SANs within child certificates, and not the "peer name" presented during each validation. Consequently, cryptography...

6.3CVSS5.8AI score0.00154EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/03/31 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-34073

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Prior to version 46.0.6, DNS name constraints were only...

6.3CVSS5.9AI score0.00154EPSS
Exploits0References4
Fedora
Fedora
added 2026/03/30 12:17 a.m.14 views

[SECURITY] Fedora 44 Update: python-cryptography-46.0.6-1.fc44

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers...

6.3CVSS5.9AI score0.00154EPSS
Exploits0
Fedora
Fedora
added 2026/03/27 1:18 a.m.7 views

[SECURITY] Fedora 43 Update: python-cryptography-46.0.5-1.fc43

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers...

9.8CVSS5.9AI score0.00704EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2026/02/10 10:17 p.m.8 views

CVE-2026-26007

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Prior to 46.0.5, the publickeyfromnumbers or EllipticCurvePublicNumbers.publickey, EllipticCurvePublicNumbers.publickey, loadderpublickey and loadpempublickey functions do not verify that the...

8.2CVSS6.5AI score0.00341EPSS
Exploits0References5
OSV
OSV
added 2026/02/10 10:17 p.m.12 views

DEBIAN-CVE-2026-26007

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Prior to 46.0.5, the publickeyfromnumbers or EllipticCurvePublicNumbers.publickey, EllipticCurvePublicNumbers.publickey, loadderpublickey and loadpempublickey functions do not verify that the...

6.5CVSS7.2AI score0.00341EPSS
Exploits0References1
OSV
OSV
added 2026/02/10 10:17 p.m.8 views

AZL-77454 CVE-2026-26007 affecting package python-cryptography for versions less than 42.0.5-4

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Prior to 46.0.5, the publickeyfromnumbers or EllipticCurvePublicNumbers.publickey, EllipticCurvePublicNumbers.publickey, loadderpublickey and loadpempublickey functions do not verify that the...

8.2CVSS6.9AI score0.00341EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/02/10 9:42 p.m.8 views

CVE-2026-26007

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Prior to 46.0.5, the publickeyfromnumbers or EllipticCurvePublicNumbers.publickey, EllipticCurvePublicNumbers.publickey, loadderpublickey and loadpempublickey functions do not verify that the...

8.2CVSS7.2AI score0.00341EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/02/10 9:42 p.m.3 views

CVE-2026-26007 cryptography Subgroup Attack Due to Missing Subgroup Validation for SECT Curves

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Prior to 46.0.5, the publickeyfromnumbers or EllipticCurvePublicNumbers.publickey, EllipticCurvePublicNumbers.publickey, loadderpublickey and loadpempublickey functions do not verify that the...

8.2CVSS5.6AI score0.00341EPSS
Exploits0References2
OSV
OSV
added 2026/02/10 9:42 p.m.6 views

CVE-2026-26007 cryptography Subgroup Attack Due to Missing Subgroup Validation for SECT Curves

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Prior to 46.0.5, the publickeyfromnumbers or EllipticCurvePublicNumbers.publickey, EllipticCurvePublicNumbers.publickey, loadderpublickey and loadpempublickey functions do not verify that the...

8.2CVSS5.7AI score0.00341EPSS
Exploits0References28
ATTACKERKB
ATTACKERKB
added 2026/02/10 9:42 p.m.9 views

CVE-2026-26007

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Prior to 46.0.5, the publickeyfromnumbers or EllipticCurvePublicNumbers.publickey, EllipticCurvePublicNumbers.publickey, loadderpublickey and loadpempublickey functions do not verify that the...

8.2CVSS5.6AI score0.00341EPSS
Exploits0References3Affected Software1
AlpineLinux
AlpineLinux
added 2026/02/10 9:42 p.m.5 views

CVE-2026-26007

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Prior to 46.0.5, the publickeyfromnumbers or EllipticCurvePublicNumbers.publickey, EllipticCurvePublicNumbers.publickey, loadderpublickey and loadpempublickey functions do not verify that the...

8.2CVSS5.8AI score0.00341EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.3 views

MiracleLinux 8 : python3.11-cryptography-37.0.2-6.el8 (AXSA:2024-8275:02)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-8275:02 advisory. python-cryptography: NULL-dereference when loading PKCS7 certificates CVE-2023-49083 Tenable has extracted the preceding description block directly from the...

7.5CVSS6.7AI score0.00985EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-0058

Malicious code in bioql PyPI...

6.5CVSS6.8AI score0.01301EPSS
Exploits1References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-0060

Malicious code in bioql PyPI...

7.5CVSS6.2AI score0.00985EPSS
Exploits1References9
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-0059

Malicious code in bioql PyPI...

7.5CVSS6.1AI score0.00726EPSS
Exploits1References14
Rows per page
Query Builder