AlmaLinux 10 : opencryptoki (ALSA-2026:4717)

The remote AlmaLinux 10 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2026:4717 advisory. openCryptoki: openCryptoki: Privilege Escalation or Data Exposure via Symlink Following CVE-2026-23893 Tenable has extracted the preceding description block...

EUVD-2012-4386

Malware in sbrugna...

EUVD-2012-4385

Malware in sbrugna...

TencentOS Server 4: opencryptoki (TSSA-2024:0927)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0927 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

Advisory ROSA-SA-2025-2728

Software: opencryptoki 3.21.0 OS: ROSA Virtualization 3.0 packageevrstring: opencryptoki-3.21.0-10.rv30 CVE-ID: CVE-2024-0914 BDU-ID: 2024-02839 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the opencryptoki package is related to the processing of RSA PKCS1 augmented ciphertexts. Exploitation of...

The vulnerability of the opencryptoki package, related to information disclosure due to inconsistencies, allows attackers to gain unauthorized access to protected information.

The vulnerability of the opencryptoki package relates to the processing of extended encrypted texts in RSA PKCS1 format. Exploiting this vulnerability could allow an attacker operating remotely to gain unauthorized access to protected information...

CVE-2012-4454

openCryptoki before 2.4.1, when using spinlocks, allows local users to create or set world-writable permissions on arbitrary files via a symlink attack on the 1 .pkapixpk or 2 .pkcs11spinloc file in /tmp...

Code injection

openCryptoki 2.4.1 allows local users to create or set world-writable permissions on arbitrary files via a symlink attack on the 1 LCK..opencryptoki or 2 LCK..opencryptokistdll file in /var/lock/...