CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Packet Storm News•added 2026/05/06 12:0 a.m.•2 views

Fundamental Limitations of Post-Quantum Cryptographic Architectures

Modern lattice-based cryptography, particularly the learning with errors paradigm, relies on injecting artificial noise to secure data against quantum adversaries. This study systematically examines the theoretical and physical boundaries of this noise-reliant model across four interconnected...

Packet Storm News•added 2026/04/04 12:0 a.m.•0 views

Improving ML Attacks on LWE with Data Repetition and Stepwise Regression

The Learning with Errors LWE problem is a hard math problem in lattice-based cryptography. In the simplest case of binary secrets, it is the subset sum problem, with error. Effective ML attacks on LWE were demonstrated in the case of binary, ternary, and small secrets, succeeding on fairly sparse...

Packet Storm News•added 2026/04/04 12:0 a.m.•2 views

Explainable PQC: A Layered Interpretive Framework for Post-Quantum Cryptographic Security Assumptions

This paper studies how post-quantum cryptographic PQC security assumptions can be represented and communicated through a structured, layered framework that is useful for technical interpretation but does not replace formal cryptographic proofs. We propose "Explainable PQC,'' an interdisciplinary...

Packet Storm News•added 2026/03/06 12:0 a.m.•1 views

Securing Cryptography in the Age of Quantum Computing and AI: Threats, Implementations, and Strategic Response

This review examines how quantum computing and artificial intelligence challenge current cryptographic systems. We analyze the literature to assess the resilience of algorithms against quantum attacks Shor's and Grover's algorithms and AI-enhanced cryptanalysis. RSA and elliptic curve cryptograph...

RedhatCVE•added 2026/01/29 3:26 a.m.•4 views

CVE-2026-24850

The ML-DSA crate is a Rust implementation of the Module-Lattice-Based Digital Signature Standard ML-DSA. Starting in version 0.0.4 and prior to version 0.1.0-rc.4, the ML-DSA signature verification implementation in the RustCrypto ml-dsa crate incorrectly accepts signatures with repeated duplicat...

NVD•added 2026/01/28 1:16 a.m.•2 views

CVE-2026-24850

5.3CVSS0.00017EPSS

EUVD•added 2026/01/28 12:24 a.m.•1 views

EUVD-2026-4910

OSV•added 2026/01/28 12:24 a.m.•3 views

CVE-2026-24850 ML-DSA Signature Verification Accepts Signatures with Repeated Hint Indices

CVE•added 2026/01/28 12:24 a.m.•9 views

Exploits0References13

CVE-2026-24850

The CVE-2026-24850 issue affects the RustCrypto ml-dsa crate. A regression in the signature verification path allowed repeated hint indices by using a non-strict monotonic check (<=) instead of a strict

ATTACKERKB•added 2026/01/28 12:24 a.m.•2 views

CVE-2026-24850

Exploits0References12Affected Software1

Vulnrichment•added 2026/01/28 12:24 a.m.•1 views

CVE-2026-24850 ML-DSA Signature Verification Accepts Signatures with Repeated Hint Indices

Cvelist•added 2026/01/28 12:24 a.m.•26 views

CVE-2026-24850 ML-DSA Signature Verification Accepts Signatures with Repeated Hint Indices

5.3CVSS0.00017EPSS

Positive Technologies•added 2026/01/28 12:0 a.m.•7 views

PT-2026-5048

Packet Storm News•added 2026/01/26 12:0 a.m.•2 views

Exploits0References12

Fundamentals, Recent Advances, and Challenges Regarding Cryptographic Algorithms for the Quantum Computing Era

This book arises from the need to provide a clear and up-to-date overview of the impacts of quantum computing on cryptography. The goal is to provide a reference in Portuguese for undergraduate, master's, and doctoral students in the field of data security and cryptography. Throughout the chapter...

5.9AI score

EUVD•added 2026/01/21 8:18 a.m.•1 views

EUVD-2026-3707

Malicious code in anduril-lattice-sdk-grpc-python PyPI...

5.5AI score

OSSF Malicious Packages•added 2026/01/21 8:18 a.m.•9 views

Malicious code in anduril-lattice-sdk-grpc-python (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 1baa043d99a594c81f1a153d2da1d69bc4a2e67181cdf491c2f06f65120089aa Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Packet Storm News•added 2026/01/21 12:0 a.m.•2 views

On Implementing Hybrid Post-Quantum End-To-End Encryption

The emergence of quantum computing poses a fundamental threat to current public key cryptographic systems. This threat is necessitating a transition to quantum resistant cryptographic alternatives in all the applications. In this work, we present the implementation of a practical hybrid end-to-en...

5.5AI score

Packet Storm News•added 2026/01/01 12:0 a.m.•2 views

Post-Quantum Cryptography Key Expansion Method and Anonymous Certificate Scheme Based on NTRU

NTRU is one of the important lattice-based post-quantum cryptography methods, offering resistance against quantum computing attacks. However, a drawback of NTRU lies in its relatively low efficiency in generating key pairs. Therefore, this study proposes an NTRU-based key expansion method that...

6.8AI score

Packet Storm News•added 2025/12/25 12:0 a.m.•2 views

A Statistical Side-Channel Risk Model for Timing Variability in Lattice-Based Post-Quantum Cryptography

Timing side-channels are an important threat to cryptography that still needs to be addressed in implementations, and the advent of post-quantum cryptography raises this issue because the lattice-based schemes may produce secret-dependent timing variability with the help of complex arithmetic and...

6.9AI score