Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2026/05/06 5:57 p.m.3 views

EUVD-2024-0936

phpseclib: guardrails needed on isPrime and randomPrime...

7.5CVSS5.8AI score0.00204EPSS
Exploits0References10
OSV
OSVadded 2026/05/06 5:57 p.m.1 views

GHSA-2528-JW5Q-WW88 phpseclib: guardrails needed on isPrime and randomPrime

Impact Anyone trying to generate a prime and testing the primality of a number. Patches https://github.com/phpseclib/phpseclib/commit/ad5dbdf2129f5e0fb644637770b7f33de8ca8575 Workarounds Using the GMP extension would probably help, assuming that one has its own guardrails. Resources...

8.7CVSS5.8AI score0.00204EPSS
Exploits0References11
Github Security Blog
Github Security Blogadded 2026/05/06 5:57 p.m.7 views

phpseclib: guardrails needed on isPrime and randomPrime

Impact Anyone trying to generate a prime and testing the primality of a number. Patches https://github.com/phpseclib/phpseclib/commit/ad5dbdf2129f5e0fb644637770b7f33de8ca8575 Workarounds Using the GMP extension would probably help, assuming that one has its own guardrails. Resources...

7.5CVSS7.1AI score0.00204EPSS
Exploits0References11Affected Software1
Veracode
Veracodeadded 2024/03/03 3:11 p.m.9 views

Denial Of Service (DoS)

phpseclib/phpseclib is vulnerable to a Denial Of Service DoS. The vulnerability is due to a flaw in handling malformed certificates in the phpseclib/Math/BigInteger.php file by using the method isPrime. It allows an attacker to trigger excessive CPU consumption during the isPrime primality check...

7.5CVSS6.9AI score0.00204EPSS
Exploits0References5Affected Software1
Friends Of PHP
Friends Of PHPadded 2024/03/02 12:31 a.m.25 views

phpseclib a large prime can cause a denial of service

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-2528-jw5q-ww88. This link is maintained to preserve external references. Original Description An issue was discovered in phpseclib 1.x before 1.0.23, 2.x before 2.0.47, and 3.x before 3.0.36. An attacker can...

7.5CVSS7AI score0.00269EPSS
Exploits0Affected Software1
OSV
OSVadded 2024/03/01 11:15 p.m.1 views

DEBIAN-CVE-2024-27354

An issue was discovered in phpseclib 1.x before 1.0.23, 2.x before 2.0.47, and 3.x before 3.0.36. An attacker can construct a malformed certificate containing an extremely large prime to cause a denial of service CPU consumption for an isPrime primality check. NOTE: this issue was introduced when...

7.5CVSS7.2AI score0.00204EPSS
Exploits0References1
Prion
Prionadded 2024/03/01 11:15 p.m.11 views

Design/Logic Flaw

An issue was discovered in phpseclib 1.x before 1.0.23, 2.x before 2.0.47, and 3.x before 3.0.36. An attacker can construct a malformed certificate containing an extremely large prime to cause a denial of service CPU consumption for an isPrime primality check. NOTE: this issue was introduced when...

7.3AI score0.00269EPSS
Exploits0References2
CVE
CVEadded 2024/03/01 12:0 a.m.3507 views

CVE-2024-27354

CVE-2024-27354 affects phpseclib 1.x < 1.0.23, 2.x < 2.0.47, and 3.x

7.5CVSS7.1AI score0.00204EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder