Lucene search
K

16 matches found

RedHat Linux
RedHat Linux
added 2026/01/20 4:12 p.m.3 views

openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap

A flaw was found in the OpenSSL CMS implementation RFC 3211 KEK Unwrap. This vulnerability allows memory corruption, an application level denial of service, or potential execution of attacker-supplied code via crafted CMS messages using password-based encryption PWRI...

7.5CVSS6AI score0.01744EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-47928

Malicious code in bioql PyPI...

7.5CVSS7.4AI score0.00324EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2023-37226

Malicious code in bioql PyPI...

7.1CVSS5.7AI score0.00087EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/30 1:17 p.m.16 views

CVE-2025-9230 Out-of-bounds read & write in RFC 3211 KEK Unwrap

Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read and write. Impact summary: This out-of-bounds read may trigger a crash which leads to Denial of Service for an application. The out-of-bounds write can cause a...

0.01744EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2025/05/23 4:56 a.m.9 views

CVE-2023-33037

Cryptographic issue in Automotive while unwrapping the key secs2d and verifying with RPMB data...

7.1CVSS7AI score0.00087EPSS
Exploits0References1
NVD
NVD
added 2024/02/06 6:16 a.m.25 views

CVE-2023-43522

Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL...

7.5CVSS7.6AI score0.00324EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/02/06 5:47 a.m.21 views

CVE-2023-43522 NULL Pointer Dereference in WLAN Firmware

Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL...

7.5CVSS7AI score0.00324EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/02/06 5:47 a.m.30 views

CVE-2023-43522 NULL Pointer Dereference in WLAN Firmware

Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL...

7.5CVSS7.8AI score0.00324EPSS
Exploits0References1
CVE
CVE
added 2024/02/06 5:47 a.m.70 views

CVE-2023-43522

CVE-2023-43522 is linked to Siemens SCALANCE W700: a NULL pointer dereference in the key unwrapping routine when the encrypted key is empty or NULL, causing a transient denial of service (crash). Details in connected plugin/NVD entries show a HIGH severity (CVSS v3.1: 7.5) with network attack vec...

7.5CVSS7.5AI score0.00324EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/02/06 12:0 a.m.6 views

PT-2024-13095 · Qualcomm · Snapdragon +259

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue occurs during the key unwrapping process when an empty or NULL encrypted key is provided, resulting in a transient Denial of Service DOS...

7.5CVSS6.6AI score0.00324EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/02/06 12:0 a.m.5 views

Qualcomm Chipsets Security Vulnerability

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that originates from a denial of service issue during key unwrapping when the given encryption key is empty or NULL...

7.5CVSS6.7AI score0.00324EPSS
Exploits0References3
NVD
NVD
added 2024/01/02 6:15 a.m.30 views

CVE-2023-33037

Cryptographic issue in Automotive while unwrapping the key secs2d and verifying with RPMB data...

7.1CVSS6.9AI score0.00087EPSS
Exploits0References1
Prion
Prion
added 2024/01/02 6:15 a.m.24 views

Design/Logic Flaw

Cryptographic issue in Automotive while unwrapping the key secs2d and verifying with RPMB data...

1.7CVSS7.2AI score0.00087EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/01/02 5:38 a.m.28 views

CVE-2023-33037 Cryptographic Issues in Automotive

Cryptographic issue in Automotive while unwrapping the key secs2d and verifying with RPMB data...

7.1CVSS7.1AI score0.00087EPSS
Exploits0References1
CVE
CVE
added 2024/01/02 5:38 a.m.83 views

CVE-2023-33037

CVE-2023-33037 affects Qualcomm closed‑source components in automotive cryptography, described as a cryptographic issue when unwrapping the key secs2d and verifying RPMB data. Public metrics indicate high impact to confidentiality and/or integrity in some records, with a local attack vector and l...

7.1CVSS5.5AI score0.00087EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/01/01 12:0 a.m.5 views

PT-2024-12380 · Qualcomm · Snapdragon +74

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue concerns a cryptographic problem in the automotive sector, specifically when unwrapping the key secs2d and verifying it with RPMB data. No...

7.1CVSS7AI score0.00087EPSS
Exploits0References5
Rows per page
Query Builder