2 matches found
CVE-2026-3236
CVE-2026-3236 affects Octopus Server: a vulnerability that allows creating a new API key from an existing access token, resulting in the new key having a longer lifetime than the original. The vulnerability involves API-key minting (noted in the /api/v1/api-keys flow in PT Security’s detailed wri...
CVE-2021-43398
Crypto++ aka Cryptopp 8.6.0 and earlier contains a timing leakage in MakePublicKey. There is a clear correlation between execution time and private key length, which may cause disclosure of the length information of the private key. This might allow attackers to conduct timing attacks. NOTE: this...