Lucene search
K

960 matches found

Tenable Nessus
Tenable Nessus
added 2026/04/18 12:0 a.m.6 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : python-ecdsa (SUSE-SU-2026:1436-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2026:1436-1 advisory. - CVE-2026-33936: issue in the low-level DER parsing functions can cause unexpected exceptions to be rais...

5.3CVSS5.8AI score0.00476EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2026/04/17 11:25 p.m.10 views

SUSE CVE-2026-40253

openCryptoki is a PKCS11 library and provides tooling for Linux and AIX. In versions 3.26.0 and below, the BER/DER decoding functions in the shared common library asn1.c accept a raw pointer but no buffer length parameter, and trust attacker-controlled BER length fields without validating them...

6.8CVSS6AI score0.0016EPSS
Exploits1References19
SUSE Linux
SUSE Linux
added 2026/04/17 12:51 p.m.4 views

Security update for python-ecdsa

This update for python-ecdsa fixes the following issues: CVE-2026-33936: issue in the low-level DER parsing functions can cause unexpected exceptions to be raised from the public API functions bsc1261009. Patch Instructions: To install this SUSE update use the SUSE recommended installation method...

6.3CVSS5.7AI score0.00476EPSS
Exploits1References4
OSV
OSV
added 2026/04/17 12:51 p.m.4 views

SUSE-SU-2026:1436-1 Security update for python-ecdsa

This update for python-ecdsa fixes the following issues: - CVE-2026-33936: issue in the low-level DER parsing functions can cause unexpected exceptions to be raised from the public API functions bsc1261009...

5.3CVSS5.7AI score0.00476EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/04/17 9:29 a.m.5 views

CVE-2026-40253

A flaw was found in openCryptoki, a PKCS11 Cryptographic Token Interface Standard library. The BER/DER Basic Encoding Rules/Distinguished Encoding Rules decoding functions in the shared common library do not properly validate attacker-controlled length fields against actual buffer boundaries. Thi...

6.8CVSS5.9AI score0.0016EPSS
Exploits1References5
OSV
OSV
added 2026/04/16 11:16 p.m.2 views

DEBIAN-CVE-2026-40253

openCryptoki is a PKCS11 library and provides tooling for Linux and AIX. In versions 3.26.0 and below, the BER/DER decoding functions in the shared common library asn1.c accept a raw pointer but no buffer length parameter, and trust attacker-controlled BER length fields without validating them...

6.1CVSS5.8AI score0.0016EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/04/16 10:4 p.m.4 views

CVE-2026-40253

openCryptoki is a PKCS11 library and provides tooling for Linux and AIX. In versions 3.26.0 and below, the BER/DER decoding functions in the shared common library asn1.c accept a raw pointer but no buffer length parameter, and trust attacker-controlled BER length fields without validating them...

6.8CVSS6.1AI score0.0016EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/16 10:4 p.m.7 views

CVE-2026-40253 openCryptoki: Memory safety vulnerabilities in BER/DER decoders in asn1.c

openCryptoki is a PKCS11 library and provides tooling for Linux and AIX. In versions 3.26.0 and below, the BER/DER decoding functions in the shared common library asn1.c accept a raw pointer but no buffer length parameter, and trust attacker-controlled BER length fields without validating them...

6.8CVSS6AI score0.0016EPSS
Exploits1References2
OSV
OSV
added 2026/04/11 2:3 p.m.3 views

OESA-2026-1839 python-ecdsa security update

This is an easy-to-use implementation of ECDSA cryptography Elliptic Curve Digital Signature Algorithm, implemented purely in Python, released under the MIT license. With this library, you can quickly create keypairs signing key and verifying key, sign messages, and verify the signatures. The key...

5.3CVSS5.8AI score0.00476EPSS
Exploits1References2
OSV
OSV
added 2026/04/11 2:3 p.m.3 views

OESA-2026-1838 python-ecdsa security update

This is an easy-to-use implementation of ECDSA cryptography Elliptic Curve Digital Signature Algorithm, implemented purely in Python, released under the MIT license. With this library, you can quickly create keypairs signing key and verifying key, sign messages, and verify the signatures. The key...

5.3CVSS5.7AI score0.00476EPSS
Exploits1References2
OSV
OSV
added 2026/04/11 2:3 p.m.5 views

OESA-2026-1837 python-ecdsa security update

This is an easy-to-use implementation of ECDSA cryptography Elliptic Curve Digital Signature Algorithm, implemented purely in Python, released under the MIT license. With this library, you can quickly create keypairs signing key and verifying key, sign messages, and verify the signatures. The key...

5.3CVSS5.8AI score0.00476EPSS
Exploits1References2
OSV
OSV
added 2026/04/11 2:3 p.m.7 views

OESA-2026-1836 python-ecdsa security update

This is an easy-to-use implementation of ECDSA cryptography Elliptic Curve Digital Signature Algorithm, implemented purely in Python, released under the MIT license. With this library, you can quickly create keypairs signing key and verifying key, sign messages, and verify the signatures. The key...

5.3CVSS5.8AI score0.00476EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2026/03/30 11:27 p.m.6 views

SUSE CVE-2026-33936

The ecdsa PyPI package is a pure Python implementation of ECC Elliptic Curve Cryptography with support for ECDSA Elliptic Curve Digital Signature Algorithm, EdDSA Edwards-curve Digital Signature Algorithm and ECDH Elliptic Curve Diffie-Hellman. Prior to version 0.19.2, an issue in the low-level D...

5.3CVSS5.8AI score0.00476EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2026/03/30 10:48 a.m.6 views

CVE-2026-33936

A flaw was found in the ecdsa Python package, which is used for cryptographic operations. A remote attacker can exploit this vulnerability by sending a specially crafted data input, known as Distinguished Encoding Rules DER. This malformed input can cause applications that process untrusted...

5.3CVSS5.9AI score0.00476EPSS
Exploits1References6
Fedora
Fedora
added 2026/03/30 12:16 a.m.6 views

[SECURITY] Fedora 44 Update: libtasn1-4.21.0-1.fc44

A library that provides Abstract Syntax Notation One ASN.1, as specified by the X.680 ITU-T recommendation parsing and structures management, and Distinguished Encoding Rules DER, as per X.690 encoding and decoding functi ons...

7.5CVSS6.3AI score0.01109EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/03/29 8:1 a.m.6 views

python-ecdsa: Denial of Service via improper DER length validation in crafted private keys

...

5.3CVSS5.9AI score0.00476EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/03/28 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2026-33936

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ecdsa PyPI package is a pure Python implementation of ECC Elliptic Curve Cryptography with support for ECDSA Elliptic Curve Digital Signature Algorithm, EdD...

5.3CVSS5.8AI score0.00476EPSS
Exploits1References3
NVD
NVD
added 2026/03/27 11:17 p.m.4 views

CVE-2026-33936

The ecdsa PyPI package is a pure Python implementation of ECC Elliptic Curve Cryptography with support for ECDSA Elliptic Curve Digital Signature Algorithm, EdDSA Edwards-curve Digital Signature Algorithm and ECDH Elliptic Curve Diffie-Hellman. Prior to version 0.19.2, an issue in the low-level D...

5.3CVSS0.00476EPSS
Exploits1References3
OSV
OSV
added 2026/03/27 11:17 p.m.3 views

DEBIAN-CVE-2026-33936

The ecdsa PyPI package is a pure Python implementation of ECC Elliptic Curve Cryptography with support for ECDSA Elliptic Curve Digital Signature Algorithm, EdDSA Edwards-curve Digital Signature Algorithm and ECDH Elliptic Curve Diffie-Hellman. Prior to version 0.19.2, an issue in the low-level D...

5.3CVSS5.2AI score0.00476EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2026/03/27 11:17 p.m.5 views

CVE-2026-33936

The ecdsa PyPI package is a pure Python implementation of ECC Elliptic Curve Cryptography with support for ECDSA Elliptic Curve Digital Signature Algorithm, EdDSA Edwards-curve Digital Signature Algorithm and ECDH Elliptic Curve Diffie-Hellman. Prior to version 0.19.2, an issue in the low-level D...

5.3CVSS5.8AI score0.00476EPSS
Exploits1References5
Rows per page
Query Builder