Lucene search
K

115 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-0058

Malicious code in bioql PyPI...

6.5CVSS6.8AI score0.01301EPSS
Exploits1References8
OSV
OSV
added 2025/09/05 5:10 p.m.1 views

MAL-2025-46376 Malicious code in triton-gulp-stop-cryptography (npm)

The package triton-gulp-stop-cryptography was found to contain malicious code...

7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/09/01 12:0 a.m.8 views

Alibaba Cloud Linux 3 : 0146: python-cryptography (ALINUX3-SA-2025:0146)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2025:0146 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2023-49083: cryptography is a package designed ...

7.5CVSS6.3AI score0.00985EPSS
Exploits1References2
OSV
OSV
added 2025/07/18 2:49 p.m.4 views

OESA-2025-1864 python-cryptography security update

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Security Fixes: A flaw was found in the python-cryptography package. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lea...

7.5CVSS6.6AI score0.01118EPSS
Exploits0References2
OSV
OSV
added 2025/07/18 2:49 p.m.4 views

OESA-2025-1863 python-cryptography security update

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Security Fixes: A flaw was found in the python-cryptography package. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lea...

7.5CVSS6.6AI score0.01118EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/07/01 10:2 a.m.10 views

Security Bulletin: Cryptography expose cryptographic primitives and recipes

Summary cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Calling loadpempkcs7certificates or loadderpkcs7certificates could lead to a NULL-pointer dereference and segfault. Exploitation of this vulnerability poses a serious risk of Denial of...

7.5CVSS6.2AI score0.01118EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/06/18 6:8 p.m.9 views

Security Bulletin: Vulnerability in cryptography affects IBM Cloud Pak for Data System 2.0 (CPDS 2.0) [CVE-2023-23931]

Summary The cryptography package is used by IBM Cloud Pak for Data System 2.0 . IBM Cloud Pak for Data System 2.0 has addressed the applicable CVEs CVE-2023-23931 Vulnerability Details CVEID:CVE-2023-23931 DESCRIPTION: cryptography is a package designed to expose cryptographic primitives and...

6.5CVSS7.1AI score0.01301EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.7 views

TencentOS Server 4: python-cryptography (TSSA-2024:0480)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0480 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

7.5CVSS6.3AI score0.00831EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.3 views

TencentOS Server 4: python-cryptography (TSSA-2024:0825)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0825 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

7.5CVSS6.3AI score0.00985EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/06/09 10:44 a.m.9 views

Security Bulletin: Storage Virtualize Ansible Collection is affected by a vulnerability in the cryptography package

Summary Storage Virtualize Ansible Collection uses the cryptography package to provide common cryptographic algorithms. Version 42.0.5 of cryptography package is vulnerable to CVE-2024-12797. Vulnerability Details CVEID:CVE-2024-12797 DESCRIPTION: Issue summary: Clients using RFC7250 Raw Public...

6.3CVSS6.6AI score0.02439EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2025/05/26 12:0 a.m.6 views

openSUSE Security Advisory (SUSE-SU-2025:01662-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.7CVSS4.3AI score0.00486EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2023-49083

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Calling loadpempkcs7certificates or...

7.5CVSS6.1AI score0.00985EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2023-23931

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. In affected versions Cipher.updateinto would accept Pyth...

6.5CVSS6.6AI score0.01301EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2025/02/18 12:0 a.m.13 views

Mageia: Security Advisory (MGASA-2025-0069)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.4AI score0.02454EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2025/02/05 12:0 a.m.12 views

Huawei EulerOS: Security Advisory for python-cryptography (EulerOS-SA-2025-1099)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.5AI score0.01118EPSS
Exploits0References2
Redos
Redos
added 2024/09/09 12:0 a.m.30 views

ROS-20240909-02

Vulnerability in the cryptography package of the Python programming language interpreter is related to errors in the procedure of to authenticate a certificate. Exploitation of the vulnerability could allow an attacker acting remotely to perform a man-in-the-middle attack. remotely to execute a...

7.5CVSS6.8AI score0.00613EPSS
Exploits1
OpenVAS
OpenVAS
added 2024/08/21 12:0 a.m.13 views

Huawei EulerOS: Security Advisory for python-cryptography (EulerOS-SA-2024-2248)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.01118EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2024/07/23 12:0 a.m.4 views

CVE-2021-43565

...

7.5CVSS6.8AI score0.00984EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2024/06/26 6:15 a.m.47 views

Security Bulletin: Storage Virtualize Ansible Collection is affected by a vulnerability in the Python Cryptographic Authority package

Summary The Python cryptography package which provides both high level recipes and low level interfaces to common cryptographic algorithms such as symmetric ciphers, message digests, and key derivation functions, is used by IBM Ansible plug-in. This library is vulnerable to CVE-2024-26130...

7.5CVSS7.2AI score0.00831EPSS
Exploits0Affected Software1
OSV
OSV
added 2024/06/25 1:40 p.m.8 views

MAL-2024-5809 Malicious code in pythoncryptographypackage (PyPI)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0References3
Rows per page
Query Builder