Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-30456

Malicious code in bioql PyPI...

9.8CVSS7.4AI score0.17563EPSS
Exploits0References31
Amazon
Amazon
added 2023/03/22 12:0 a.m.9 views

Critical: nss

Issue Overview: NSS Network Security Services up to and including 3.73 is vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS 7, or PKCS 12 are likely to be impacted. Applications using...

9.8CVSS8.2AI score0.17563EPSS
Exploits0
OSV
OSV
added 2023/02/16 10:15 p.m.7 views

CVE-2021-43529

Thunderbird versions prior to 91.3.0 are vulnerable to the heap overflow described in CVE-2021-43527 when processing S/MIME messages. Thunderbird versions 91.3.0 and later will not call the vulnerable code when processing S/MIME messages that contain certificates with DER-encoded DSA or RSA-PSS...

9.8CVSS9.7AI score0.00469EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/04/20 12:0 a.m.34 views

EulerOS 2.0 SP10 : nss (EulerOS-SA-2022-1468)

According to the versions of the nss packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - NSS Network Security Services versions prior to 3.73 or 3.68.1 ESR are vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS...

9.8CVSS7.3AI score0.17563EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2021/11/04 4:47 p.m.8 views

thunderbird: Memory corruption when processing S/MIME messages

A flaw was found in Thunderbird, which is vulnerable to the heap overflow described in CVE-2021-43527 when processing S/MIME messages. Thunderbird versions 91.3.0 and later will not call the vulnerable code when processing S/MIME messages that contain certificates with DER-encoded DSA or RSA-PSS...

9.8CVSS7.2AI score0.17563EPSS
Exploits0References7
PyPA
PyPA
added 2020/01/02 3:15 p.m.10 views

PYSEC-2020-163

A flaw was found in all python-ecdsa versions before 0.13.3, where it did not correctly verify whether signatures used DER encoding. Without this verification, a malformed signature could be accepted, making the signature malleable. Without proper verification, an attacker could use a malleable...

9.1CVSS6.5AI score0.01596EPSS
Exploits1References5Affected Software1
OpenVAS
OpenVAS
added 2019/10/31 12:0 a.m.27 views

Debian: Security Advisory (DLA-1978-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS8.5AI score0.02505EPSS
Exploits1References3
Rows per page
Query Builder