2 matches found
CVE-2019-9153
CVE-2019-9153 affects OpenPGP.js: improper verification of cryptographic signatures in OpenPGP.js up to version 4.1.2 allows forging signed messages by substituting a standalone or timestamp signature. The issue is documented across multiple sources (NVD entry for CVE-2019-9153 and related adviso...
CVE-2019-9153
Improper Verification of a Cryptographic Signature in OpenPGP.js =4.1.2 allows an attacker to forge signed messages by replacing its signatures with a "standalone" or "timestamp" signature...