6 matches found
Insecure Direct Object Reference (IDOR) / Weak Encryption
nzo/url-encryptor-bundle is vulnerable to a Insecure Direct Object Reference IDOR. This vulnerability is due to a lack of mandatory key and initialization vector IV requirements, which makes the aes-256-ctr algorithm susceptible to malleability attacks. It allows attackers to decrypt and modify...
Mageia: Security Advisory (MGASA-2020-0002)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated python-ecdsa packages fix security vulnerabilities
Updated python-ecdsa packages fix security vulnerabilities: It was discovered that python-ecdsa incorrectly handled certain signatures. A remote attacker could possibly use this issue to cause python-ecdsa to generate unexpected exceptions, resulting in a denial of service CVE-2019-14853. It was...
MGASA-2020-0002 Updated python-ecdsa packages fix security vulnerabilities
Updated python-ecdsa packages fix security vulnerabilities: It was discovered that python-ecdsa incorrectly handled certain signatures. A remote attacker could possibly use this issue to cause python-ecdsa to generate unexpected exceptions, resulting in a denial of service CVE-2019-14853. It was...
Ubuntu 16.04 LTS / 18.04 LTS : python-ecdsa vulnerabilities (USN-4196-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4196-1 advisory. It was discovered that python-ecdsa incorrectly handled certain signatures. A remote attacker could possibly use this issue to cause...
USN-4196-1: python-ecdsa vulnerabilities
It was discovered that python-ecdsa incorrectly handled certain signatures. A remote attacker could possibly use this issue to cause python-ecdsa to generate unexpected exceptions, resulting in a denial of service. CVE-2019-14853 It was discovered that python-ecdsa incorrectly verified DER encodi...