Lucene search
K

26 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/07/15 3:44 p.m.21 views

Security Bulletin: Vulnerabilities exists in IBM Netezza Analytics - NPS Product

Summary Vulnerabilities exist in IBM Netezza Analytics - NPS product are addressed in version 11.2.29 Vulnerability Details CVEID:CVE-2024-6345 DESCRIPTION: pypa/setuptools could allow a remote attacker to execute arbitrary code on the system, caused by an error in the packageindex module. By...

9.8CVSS10AI score0.9378EPSS
Exploits19Affected Software1
Amazon
Amazon
added 2025/07/10 12:0 a.m.4 views

Medium: python-crypto

Issue Overview: lib/Crypto/PublicKey/ElGamal.py in PyCrypto through 2.6.1 generates weak ElGamal key parameters, which allows attackers to obtain sensitive information by reading ciphertext data i.e., it does not have semantic security in face of a ciphertext-only attack. The Decisional...

7.5CVSS6.6AI score0.0211EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/07/10 12:0 a.m.5 views

Amazon Linux 2023 : python3-crypto (ALAS2023-2025-1051)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1051 advisory. lib/Crypto/PublicKey/ElGamal.py in PyCrypto through 2.6.1 generates weak ElGamal key parameters, which allows attackers to obtain sensitive information by reading ciphertext data i.e., it does not have...

7.5CVSS7.4AI score0.0211EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/07/23 12:0 a.m.12 views

Photon OS 2.0: Pycrypto PHSA-2018-2.0-0037

An update of the pycrypto package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2018-2.0-0037. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

7.5CVSS7.9AI score0.0211EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2023/10/17 11:23 a.m.44 views

Security Bulletin: Vulnerability in pycrypto-2.6.1.tar.gz affects IBM Integrated Analytics System [CVE-2013-7459, CVE-2018-6594]

Summary The pycrypto-2.6.1.tar.gz package is used by IBM Integrated Analytics System. IBM Integrated Analytics System has addressed the applicable vulnerability CVE-2013-7459, CVE-2018-6594. Vulnerability Details CVEID:CVE-2013-7459 DESCRIPTION: PyCrypto is vulnerable to a heap-based buffer...

9.8CVSS9.6AI score0.09501EPSS
Exploits2Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 4:30 a.m.4 views

SUSE CVE-2018-6594

lib/Crypto/PublicKey/ElGamal.py in PyCrypto through 2.6.1 generates weak ElGamal key parameters, which allows attackers to obtain sensitive information by reading ciphertext data i.e., it does not have semantic security in face of a ciphertext-only attack. The Decisional Diffie-Hellman DDH...

7.5CVSS7.5AI score0.0211EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2021/07/07 12:0 a.m.18 views

Huawei EulerOS: Security Advisory for python-crypto (EulerOS-SA-2021-2160)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.0211EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/07/07 12:0 a.m.12 views

Huawei EulerOS: Security Advisory for python-crypto (EulerOS-SA-2021-2118)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.0211EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2021/07/06 12:0 a.m.31 views

EulerOS Virtualization 3.0.2.2 : python-crypto (EulerOS-SA-2021-2160)

According to the version of the python-crypto package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - lib/Crypto/PublicKey/ElGamal.py in PyCrypto through 2.6.1 generates weak ElGamal key parameters, which allows attackers to...

7.5CVSS7.3AI score0.0211EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2021/07/02 12:0 a.m.19 views

EulerOS Virtualization for ARM 64 3.0.2.0 : python-crypto (EulerOS-SA-2021-2118)

According to the version of the python-crypto package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - lib/Crypto/PublicKey/ElGamal.py in PyCrypto through 2.6.1 generates weak ElGamal key parameters, which allows...

7.5CVSS7.3AI score0.0211EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/05/03 12:0 a.m.22 views

Huawei EulerOS: Security Advisory for python-crypto (EulerOS-SA-2021-1836)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.0211EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/03/05 12:0 a.m.12 views

Huawei EulerOS: Security Advisory for python-crypto (EulerOS-SA-2021-1513)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.0211EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2021/03/04 12:0 a.m.21 views

EulerOS Virtualization 3.0.6.6 : python-crypto (EulerOS-SA-2021-1513)

According to the version of the python-crypto package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - lib/Crypto/PublicKey/ElGamal.py in PyCrypto through 2.6.1 generates weak ElGamal key parameters, which allows attackers to...

7.5CVSS7.3AI score0.0211EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/02/22 12:0 a.m.21 views

Huawei EulerOS: Security Advisory for python-crypto (EulerOS-SA-2021-1351)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.0211EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2021/02/22 12:0 a.m.19 views

EulerOS 2.0 SP2 : python-crypto (EulerOS-SA-2021-1351)

According to the version of the python-crypto package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - lib/Crypto/PublicKey/ElGamal.py in PyCrypto through 2.6.1 generates weak ElGamal key parameters, which allows attackers to obtain sensitive...

7.5CVSS7.5AI score0.0211EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/09/29 12:0 a.m.47 views

EulerOS Virtualization for ARM 64 3.0.6.0 : python-crypto (EulerOS-SA-2020-1996)

According to the versions of the python-crypto package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - Heap-based buffer overflow in the ALGnew function in blocktemplace.c in Python Cryptography Toolkit aka pycrypto...

9.8CVSS8.5AI score0.09501EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2020/08/03 12:0 a.m.24 views

GLSA-202007-62 : PyCrypto: Weak key generation

The remote host is affected by the vulnerability described in GLSA-202007-62 PyCrypto: Weak key generation It was discovered that PyCrypto incorrectly generated ElGamal key parameters. Impact : Attackers may be able to obtain sensitive information by reading ciphertext data. Workaround : There is...

7.5CVSS7.4AI score0.0211EPSS
Exploits1References2
Debian
Debian
added 2018/04/09 7:11 a.m.21 views

[SECURITY] [DLA 1283-2] python-crypto security update

Package : python-crypto Version : 2.6-4+deb7u8 This is an update to DLA-1283-1. In DLA-1283-1 it is claimed that the issue described in CVE-2018-6594 is fixed. It turns out that the fix is partial and upstream has decided not to fix the issue as it would break compatibility and that ElGamal...

7.5CVSS7.4AI score0.0211EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2018/03/27 12:0 a.m.43 views

Amazon Linux AMI : python-crypto (ALAS-2018-977)

Weak ElGamal key parameters in PublicKey/ElGamal.py allow attackers to obtain sensitive information by reading ciphertext : lib/Crypto/PublicKey/ElGamal.py in PyCrypto through 2.6.1 generates weak ElGamal key parameters, which allows attackers to obtain sensitive information by reading ciphertext...

7.5CVSS7.4AI score0.0211EPSS
Exploits1References2
Amazon
Amazon
added 2018/03/21 12:0 a.m.28 views

Medium: python-crypto

Issue Overview: Weak ElGamal key parameters in PublicKey/ElGamal.py allow attackers to obtain sensitive information by reading ciphertext: lib/Crypto/PublicKey/ElGamal.py in PyCrypto through 2.6.1 generates weak ElGamal key parameters, which allows attackers to obtain sensitive information by...

7.5CVSS7.8AI score0.0211EPSS
Exploits1
Rows per page
Query Builder