3 matches found
CVE-2015-3298
Yubico ykneo-openpgp before 1.0.10 has a typo in which an invalid PIN can be used. When first powered up, a signature will be issued even though the PIN has not been validated...
CVE-2015-3298
Yubico ykneo-openpgp before 1.0.10 has a typo in which an invalid PIN can be used. When first powered up, a signature will be issued even though the PIN has not been validated...
CVE-2015-3298
The CVE 2015-3298 entry covers Yubico ykneo-openpgp before 1.0.10, where a typo in PIN verification allows a signature to be issued on first power-up without validating the PIN. This is described across multiple connected sources (NVD/NVD-derived Red Hat advisory, CNVD, and Yubico Security Adviso...