Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2020-0168

Malware in sbrugna...

7.5CVSS7.6AI score0.00098EPSS
Exploits1References17
Veracode
Veracodeadded 2025/05/09 3:54 a.m.7 views

Address Spoofing

base-x is vulnerable to Address spoofing. The vulnerability is due to improper handling of leading zero bytes during encoding, which allows an attacker to create visually similar addresses and mislead users into sending funds to unintended recipients...

8.7CVSS6.6AI score0.00377EPSS
Exploits0References4Affected Software1
SUSE CVE
SUSE CVEadded 2024/10/16 2:50 a.m.2 views

SUSE CVE-2024-48948

The Elliptic package 6.5.7 for Node.js, in its for ECDSA implementation, does not correctly verify valid signatures if the hash contains at least four leading 0 bytes and when the order of the elliptic curve's base point is smaller than the hash, because of an truncateToN anomaly. This leads to...

4.8CVSS9.4AI score0.00162EPSS
Exploits1References7
SUSE CVE
SUSE CVEadded 2023/02/15 3:58 a.m.2 views

SUSE CVE-2020-13757

Python-RSA before 4.1 ignores leading '\0' bytes during decryption of ciphertext. This could conceivably have a security-relevant impact, e.g., by helping an attacker to infer that an application uses Python-RSA, or if the length of accepted ciphertext affects application behavior such as by...

7.5CVSS6.9AI score0.00098EPSS
Exploits1References16
RedHat Linux
RedHat Linuxadded 2020/09/29 10:31 p.m.1 views

nss: Out-of-bounds read when importing curve25519 private key

When importing a curve25519 private key in PKCS8format with leading 0x00 bytes, it is possible to trigger an out-of-bounds read in the Network Security Services NSS library. This could lead to information disclosure. This vulnerability affects Firefox ESR 60.8, Firefox 68, and Thunderbird 60.8...

7.5CVSS7.2AI score0.00438EPSS
Exploits2References5
Amazon
Amazonadded 2020/08/31 12:0 a.m.38 views

Medium: python-rsa

Issue Overview: Python-RSA before 4.1 ignores leading '\0' bytes during decryption of ciphertext. This could conceivably have a security-relevant impact, e.g., by helping an attacker to infer that an application uses Python-RSA, or if the length of accepted ciphertext affects application behavior...

7.5CVSS7.6AI score0.00098EPSS
Exploits1
PyPA
PyPAadded 2020/06/01 7:15 p.m.4 views

PYSEC-2020-99

Python-RSA before 4.1 ignores leading '\0' bytes during decryption of ciphertext. This could conceivably have a security-relevant impact, e.g., by helping an attacker to infer that an application uses Python-RSA, or if the length of accepted ciphertext affects application behavior such as by...

7.5CVSS6.9AI score0.00098EPSS
Exploits1References6Affected Software1
Positive Technologies
Positive Technologiesadded 2020/05/27 12:0 a.m.2 views

PT-2020-13658 · Python +5 · Python-Rsa +5

Name of the Vulnerable Software and Affected Versions: Python-RSA versions prior to 4.1 Description: The issue concerns the decryption of ciphertext, where leading '0' bytes are ignored. This could potentially have security implications, such as helping an attacker infer that an application uses...

7.8CVSS5.2AI score0.00144EPSS
Exploits2References55
Rows per page
Query Builder