67 matches found
CVE-2025-5351
A flaw was found in the key export functionality of libssh. The issue occurs in the internal function responsible for converting cryptographic keys into serialized formats. During error handling, a memory structure is freed but not cleared, leading to a potential double free issue if an additiona...
CVE-2025-5351
CVE-2025-5351 concerns libssh. The root cause is a double-free in the key export path: during error handling, a memory structure is freed but not cleared, which may lead to heap corruption and application instability, especially in low-memory scenarios. The issue is tied to libssh’s key serializa...
CVE-2025-5351 Libssh: double free vulnerability in libssh key export functions
A flaw was found in the key export functionality of libssh. The issue occurs in the internal function responsible for converting cryptographic keys into serialized formats. During error handling, a memory structure is freed but not cleared, leading to a potential double free issue if an additiona...
CVE-2025-5351 Libssh: double free vulnerability in libssh key export functions
A flaw was found in the key export functionality of libssh. The issue occurs in the internal function responsible for converting cryptographic keys into serialized formats. During error handling, a memory structure is freed but not cleared, leading to a potential double free issue if an additiona...
CVE-2025-5351 Libssh: double free vulnerability in libssh key export functions
A flaw was found in the key export functionality of libssh. The issue occurs in the internal function responsible for converting cryptographic keys into serialized formats. During error handling, a memory structure is freed but not cleared, leading to a potential double free issue if an additiona...
CVE-2025-5351
A flaw was found in the key export functionality of libssh. The issue occurs in the internal function responsible for converting cryptographic keys into serialized formats. During error handling, a memory structure is freed but not cleared, leading to a potential double free issue if an additiona...
CVE-2025-5351
A flaw was found in the key export functionality of libssh. The issue occurs in the internal function responsible for converting cryptographic keys into serialized formats. During error handling, a memory structure is freed but not cleared, leading to a potential double free issue if an additiona...
CVE-2025-5351
A flaw was found in the key export functionality of libssh. The issue occurs in the internal function responsible for converting cryptographic keys into serialized formats. During error handling, a memory structure is freed but not cleared, leading to a potential double free issue if an additiona...
libssh 资源管理错误漏洞
libssh is a C development package from the libssh organization for accessing SSH services, which is capable of executing remote commands, file transfers, as well as providing a secure transport channel for remote programs. A resource management error vulnerability exists in libssh 0.10.0 and prio...
UBUNTU-CVE-2025-5351
A flaw was found in the key export functionality of libssh. The issue occurs in the internal function responsible for converting cryptographic keys into serialized formats. During error handling, a memory structure is freed but not cleared, leading to a potential double free issue if an additiona...
SUSE CVE-2025-5351
A flaw was found in the key export functionality of libssh. The issue occurs in the internal function responsible for converting cryptographic keys into serialized formats. During error handling, a memory structure is freed but not cleared, leading to a potential double free issue if an additiona...
CVE-2023-28546
Memory Corruption in SPS Application while exporting public key in sorter TA...
CVE-2022-25713
Memory corruption in Automotive due to Improper Restriction of Operations within the Bounds of a Memory Buffer while exporting a shared key...
PT-2023-21794 · Unknown · Sps Application
Name of the Vulnerable Software and Affected Versions: SPS Application affected versions not specified Description: The issue is related to memory corruption in the SPS Application when exporting a public key in the sorter TA. This can potentially lead to code execution. Recommendations: At the...
PT-2023-12797 · Unknown · Automotive
Name of the Vulnerable Software and Affected Versions: Automotive affected versions not specified Description: The issue is related to memory corruption in Automotive due to improper restriction of operations within the bounds of a memory buffer. This occurs while exporting a shared key...
Open Ticket Request System Information Disclosure Vulnerability (CNVD-2020-32426)
Open Ticket Request System OTRS is an open source defect tracking and management system software from the German OTRS Group. The software categorizes service requests submitted through various channels such as phone calls, emails, etc. into different queues and service levels, and the service...
PT-2020-15051 · Otrs +1 · Otrs +2
Name of the Vulnerable Software and Affected Versions: OTRS Community Edition versions prior to 5.0.42 OTRS Community Edition versions prior to 6.0.27 OTRS versions prior to 7.0.16 Description: The issue arises when a user downloads PGP or S/MIME keys/certificates, and the exported file has the...
CVE-2019-9468
In exportkeyder of exportkey.cpp, there is possible memory corruption due to a double free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-10 Android ID: A-1396834...
CVE-2019-0073
The PKI keys exported using the command "run request security pki key-pair export" on Junos OS may have insecure file permissions. This may allow another user on the Junos OS device with shell access to read them. This issue affects: Juniper Networks Junos OS 15.1X49 versions prior to 15.1X49-D18...
CVE-2017-15610
An issue was discovered in Octopus before 3.17.7. When the special Guest user account is granted the CertificateExportPrivateKey permission, and Guest Access is enabled for the Octopus Server, an attacker can sign in as the Guest account and export Certificates managed by Octopus, including the...