Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 9:35 p.m.8 views

CVE-2021-43572

The verify function in the Stark Bank Python ECDSA library aka starkbank-escada or ecdsa-python before 2.0.1 fails to check that the signature is non-zero, which allows attackers to forge signatures on arbitrary messages...

9.8CVSS6.9AI score0.01198EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2021/11/10 8:41 p.m.5 views

c7n-mailer (>=0.6.4 <=0.6.12), jesse (>=2.2.0 <=2.3.4) +7 more potentially affected by CVE-2021-43572 via starkbank-ecdsa (>=1.0.0 <=1.1.1)

starkbank-ecdsa PYPI version =1.0.0, =0.6.4, =2.2.0, =1.0.1, =1.0.1, =1.3.0, =6.8.3, =6.9.0 - starkbank =0.1.0 Source cves: CVE-2021-43572 Source advisory: OSV:GHSA-92VM-MXJF-JQF3...

9.8CVSS7.2AI score0.01198EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2021/11/09 10:15 p.m.7 views

c7n-mailer (>=0.6.4 <=0.6.12), jesse (>=2.2.0 <=2.3.4) +7 more potentially affected by CVE-2021-43572 via starkbank-ecdsa (>=1.0.0 <=1.1.1)

starkbank-ecdsa PYPI version =1.0.0, =0.6.4, =2.2.0, =1.0.1, =1.0.1, =1.3.0, =6.8.3, =6.9.0 - starkbank =0.1.0 Source cves: CVE-2021-43572 Source advisory: OSV:PYSEC-2021-426...

9.8CVSS7.2AI score0.01198EPSS
Exploits1
ATTACKERKB
ATTACKERKB
added 2021/11/09 10:15 p.m.3 views

CVE-2021-43572

The verify function in the Stark Bank Python ECDSA library aka starkbank-escada or ecdsa-python before 2.0.1 fails to check that the signature is non-zero, which allows attackers to forge signatures on arbitrary messages...

9.8CVSS7.4AI score0.01198EPSS
Exploits1References4
CVE
CVE
added 2021/11/09 9:5 p.m.92 views

CVE-2021-43572

The CVE-2021-43572 entry documents a vulnerability in the Stark Bank Python ECDSA library (starkbank-escada/ecdsa-python) where the verify function before version 2.0.1 fails to ensure signatures are non-zero, allowing an attacker to forge signatures on arbitrary messages. Affected software: Star...

9.8CVSS9.3AI score0.01198EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder