Lucene search
K

67 matches found

NVD
NVD
added 2025/07/04 9:15 a.m.5 views

CVE-2025-5351

A flaw was found in the key export functionality of libssh. The issue occurs in the internal function responsible for converting cryptographic keys into serialized formats. During error handling, a memory structure is freed but not cleared, leading to a potential double free issue if an additiona...

6.5CVSS0.00494EPSS
Exploits0References3
CVE
CVE
added 2025/07/04 8:16 a.m.62 views

CVE-2025-5351

CVE-2025-5351 concerns libssh. The root cause is a double-free in the key export path: during error handling, a memory structure is freed but not cleared, which may lead to heap corruption and application instability, especially in low-memory scenarios. The issue is tied to libssh’s key serializa...

6.5CVSS6.5AI score0.00494EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2025/07/04 8:16 a.m.4 views

CVE-2025-5351 Libssh: double free vulnerability in libssh key export functions

A flaw was found in the key export functionality of libssh. The issue occurs in the internal function responsible for converting cryptographic keys into serialized formats. During error handling, a memory structure is freed but not cleared, leading to a potential double free issue if an additiona...

6.5CVSS6.2AI score0.00494EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2025/07/04 8:16 a.m.3 views

CVE-2025-5351 Libssh: double free vulnerability in libssh key export functions

A flaw was found in the key export functionality of libssh. The issue occurs in the internal function responsible for converting cryptographic keys into serialized formats. During error handling, a memory structure is freed but not cleared, leading to a potential double free issue if an additiona...

6.5CVSS7.3AI score0.00494EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/07/04 8:16 a.m.17 views

CVE-2025-5351 Libssh: double free vulnerability in libssh key export functions

A flaw was found in the key export functionality of libssh. The issue occurs in the internal function responsible for converting cryptographic keys into serialized formats. During error handling, a memory structure is freed but not cleared, leading to a potential double free issue if an additiona...

6.5CVSS0.00494EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2025/07/04 8:16 a.m.7 views

CVE-2025-5351

A flaw was found in the key export functionality of libssh. The issue occurs in the internal function responsible for converting cryptographic keys into serialized formats. During error handling, a memory structure is freed but not cleared, leading to a potential double free issue if an additiona...

6.5CVSS6.9AI score0.00494EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2025/07/04 8:16 a.m.12 views

CVE-2025-5351

A flaw was found in the key export functionality of libssh. The issue occurs in the internal function responsible for converting cryptographic keys into serialized formats. During error handling, a memory structure is freed but not cleared, leading to a potential double free issue if an additiona...

6.5CVSS6.6AI score0.00494EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/07/04 8:16 a.m.6 views

CVE-2025-5351

A flaw was found in the key export functionality of libssh. The issue occurs in the internal function responsible for converting cryptographic keys into serialized formats. During error handling, a memory structure is freed but not cleared, leading to a potential double free issue if an additiona...

6.5CVSS6.2AI score0.00494EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/07/04 12:0 a.m.2 views

libssh 资源管理错误漏洞

libssh is a C development package from the libssh organization for accessing SSH services, which is capable of executing remote commands, file transfers, as well as providing a secure transport channel for remote programs. A resource management error vulnerability exists in libssh 0.10.0 and prio...

6.5CVSS7.4AI score0.00494EPSS
Exploits0References3
OSV
OSV
added 2025/06/25 12:0 a.m.4 views

UBUNTU-CVE-2025-5351

A flaw was found in the key export functionality of libssh. The issue occurs in the internal function responsible for converting cryptographic keys into serialized formats. During error handling, a memory structure is freed but not cleared, leading to a potential double free issue if an additiona...

6.5CVSS5.8AI score0.00494EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/06/24 11:25 p.m.3 views

SUSE CVE-2025-5351

A flaw was found in the key export functionality of libssh. The issue occurs in the internal function responsible for converting cryptographic keys into serialized formats. During error handling, a memory structure is freed but not cleared, leading to a potential double free issue if an additiona...

6.4CVSS6.8AI score0.00494EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/05/23 3:37 a.m.5 views

CVE-2023-28546

Memory Corruption in SPS Application while exporting public key in sorter TA...

7.8CVSS7AI score0.0011EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/06 1:56 a.m.11 views

CVE-2022-25713

Memory corruption in Automotive due to Improper Restriction of Operations within the Bounds of a Memory Buffer while exporting a shared key...

7.8CVSS7AI score0.00116EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/12/04 12:0 a.m.4 views

PT-2023-21794 · Unknown · Sps Application

Name of the Vulnerable Software and Affected Versions: SPS Application affected versions not specified Description: The issue is related to memory corruption in the SPS Application when exporting a public key in the sorter TA. This can potentially lead to code execution. Recommendations: At the...

7.8CVSS7.5AI score0.0011EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2023/05/02 12:0 a.m.6 views

PT-2023-12797 · Unknown · Automotive

Name of the Vulnerable Software and Affected Versions: Automotive affected versions not specified Description: The issue is related to memory corruption in Automotive due to improper restriction of operations within the bounds of a memory buffer. This occurs while exporting a shared key...

7.8CVSS7AI score0.00116EPSS
Exploits0References3
CNVD
CNVD
added 2020/04/29 12:0 a.m.2 views

Open Ticket Request System Information Disclosure Vulnerability (CNVD-2020-32426)

Open Ticket Request System OTRS is an open source defect tracking and management system software from the German OTRS Group. The software categorizes service requests submitted through various channels such as phone calls, emails, etc. into different queues and service levels, and the service...

4.9CVSS7.3AI score0.00912EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2020/04/28 12:0 a.m.13 views

PT-2020-15051 · Otrs +1 · Otrs +2

Name of the Vulnerable Software and Affected Versions: OTRS Community Edition versions prior to 5.0.42 OTRS Community Edition versions prior to 6.0.27 OTRS versions prior to 7.0.16 Description: The issue arises when a user downloads PGP or S/MIME keys/certificates, and the exported file has the...

9.8CVSS7.2AI score0.99019EPSS
Exploits18References80
NVD
NVD
added 2020/01/06 6:15 p.m.21 views

CVE-2019-9468

In exportkeyder of exportkey.cpp, there is possible memory corruption due to a double free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-10 Android ID: A-1396834...

7.8CVSS8.4AI score0.00164EPSS
Exploits0References1
OSV
OSV
added 2019/10/09 8:15 p.m.4 views

CVE-2019-0073

The PKI keys exported using the command "run request security pki key-pair export" on Junos OS may have insecure file permissions. This may allow another user on the Junos OS device with shell access to read them. This issue affects: Juniper Networks Junos OS 15.1X49 versions prior to 15.1X49-D18...

7.1CVSS5.8AI score0.00287EPSS
Exploits0References1
OSV
OSV
added 2017/10/19 8:29 a.m.3 views

CVE-2017-15610

An issue was discovered in Octopus before 3.17.7. When the special Guest user account is granted the CertificateExportPrivateKey permission, and Guest Access is enabled for the Octopus Server, an attacker can sign in as the Guest account and export Certificates managed by Octopus, including the...

6.5CVSS5.8AI score0.006EPSS
Exploits0References1
Rows per page
Query Builder