openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap

A flaw was found in the OpenSSL CMS implementation RFC 3211 KEK Unwrap. This vulnerability allows memory corruption, an application level denial of service, or potential execution of attacker-supplied code via crafted CMS messages using password-based encryption PWRI...

EUVD-2023-47928

Malicious code in bioql PyPI...

EUVD-2023-37226

Malicious code in bioql PyPI...

CVE-2025-9230 Out-of-bounds read & write in RFC 3211 KEK Unwrap

Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read and write. Impact summary: This out-of-bounds read may trigger a crash which leads to Denial of Service for an application. The out-of-bounds write can cause a...

CVE-2023-33037

Cryptographic issue in Automotive while unwrapping the key secs2d and verifying with RPMB data...

CVE-2023-43522

Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL...

CVE-2023-43522

CVE-2023-43522 is linked to Siemens SCALANCE W700: a NULL pointer dereference in the key unwrapping routine when the encrypted key is empty or NULL, causing a transient denial of service (crash). Details in connected plugin/NVD entries show a HIGH severity (CVSS v3.1: 7.5) with network attack vec...

CVE-2023-43522 NULL Pointer Dereference in WLAN Firmware

Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL...

CVE-2023-43522 NULL Pointer Dereference in WLAN Firmware

Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL...

PT-2024-13095 · Qualcomm · Snapdragon +259

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue occurs during the key unwrapping process when an empty or NULL encrypted key is provided, resulting in a transient Denial of Service DOS...

Qualcomm Chipsets Security Vulnerability

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that originates from a denial of service issue during key unwrapping when the given encryption key is empty or NULL...

CVE-2023-33037

Cryptographic issue in Automotive while unwrapping the key secs2d and verifying with RPMB data...

Design/Logic Flaw

Cryptographic issue in Automotive while unwrapping the key secs2d and verifying with RPMB data...

CVE-2023-33037

CVE-2023-33037 affects Qualcomm closed‑source components in automotive cryptography, described as a cryptographic issue when unwrapping the key secs2d and verifying RPMB data. Public metrics indicate high impact to confidentiality and/or integrity in some records, with a local attack vector and l...

CVE-2023-33037 Cryptographic Issues in Automotive

Cryptographic issue in Automotive while unwrapping the key secs2d and verifying with RPMB data...

PT-2024-12380 · Qualcomm · Snapdragon +74

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue concerns a cryptographic problem in the automotive sector, specifically when unwrapping the key secs2d and verifying it with RPMB data. No...