CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

EUVD-2026-34159

OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Prior to version 4.11.0, on many of the ECDH shared secret paths, the public key isn't verified to be a point on the correct curve. By...

4.7CVSS5.8AI score

Exploits0References1

Positive Technologies•added 23 hours ago•2 views

PT-2026-46045

4.7CVSS5.8AI score

Exploits0References2

CVE•added 2026/05/26 9:4 p.m.•7 views

CVE-2026-44900

CVE-2026-44900 affects epa4all-client (Java client for epa4all / ePA 3.0). The root cause is in SignedPublicKeysTrustValidatorImpl.isTrusted(): the ECDSA verification step discards the boolean result from Signature.verify(), performing certificate chain validation, OCSP check, and signature algor...

8.1CVSS5.8AI score0.00006EPSS

Exploits0References2

Tenable Nessus•added 2026/05/22 12:0 a.m.•4 views

Unity Linux 20.1060e / 20.1070e Security Update: nettle (UTSA-2026-016616)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016616 advisory. A flaw was found in Nettle in versions before 3.7.2, where several Nettle signature verification functions GOST DSA, EDDSA & ECDSA result in the Elliptic Curve...

8.1CVSS6.7AI score0.00145EPSS

Exploits0References4

UbuntuCve•added 2026/04/09 8:16 p.m.•0 views

CVE-2026-5194

Missing hash/digest size and OID checks allow digests smaller than allowed when verifying ECDSA certificates, or smaller than is appropriate for the relevant key type, to be accepted by signature verification functions. This could lead to reduced security of ECDSA certificate-based authentication...

9.3CVSS5.8AI score0.00019EPSS

Exploits1References2