4 matches found
SUSE CVE-2023-26154
Versions of the package pubnub before 7.4.0; all versions of the package com.pubnub:pubnub; versions of the package pubnub before 6.19.0; all versions of the package github.com/pubnub/go; versions of the package github.com/pubnub/go/v7 before 7.2.0; versions of the package pubnub before 7.3.0;...
CVE-2023-26154
Versions of the package pubnub before 7.4.0; all versions of the package com.pubnub:pubnub; versions of the package pubnub before 6.19.0; all versions of the package github.com/pubnub/go; versions of the package github.com/pubnub/go/v7 before 7.2.0; versions of the package pubnub before 7.3.0;...
CVE-2023-26154
CVE-2023-26154 corresponds to an Insufficient Entropy vulnerability in PubNub crypto, caused by the AES-256-CBC implementation’s insecure entropy/ key handling. Affected packages include PubNub core libraries across multiple languages (pubnub, com.pubnub:pubnub, github.com/pubnub/go and variants)...
com.github.camel-labs:camel-pubnub (=0.1.0), io.relayr:android-sdk (>=0.0.1 <=0.0.7) +3 more potentially affected by CVE-2023-26154 via com.pubnub:pubnub (>=3.6.3 <=3.7.4)
com.pubnub:pubnub MAVEN version =3.6.3, =0.0.1, =0.1.1, =0.1.1, =0.1.1, =0.1.4 Source cves: CVE-2023-26154 Source advisory: SNYK:JAVA-COMPUBNUB-6098371...