185 matches found
Astra Linux - уязвимость в firefox, thunderbird
When importing an SPKI RSA public key as an ECDSA P-256 key, the key is handled incorrectly, causing the tab to crash. This vulnerability affects Firefox 110, Thunderbird 102.8, and Firefox ESR 102.8...
Exploit for Incorrect Implementation of Authentication Algorithm in Google Android
🔓 CVE-2026-0073 - Android ADB Wireless Debugging Auth Bypass...
CVE-2026-5527
A weakness has been identified in Tenda 4G03 Pro 1.0/1.0re/01.bin/04.03.01.53. Affected by this issue is some unknown functionality of the file /etc/www/pem/server.key of the component ECDSA P-256 Private Key Handler. This manipulation causes use of hard-coded cryptographic key . It is possible t...
EUVD-2026-19003
A weakness has been identified in Tenda 4G03 Pro 1.0/1.0re/01.bin/04.03.01.53. Affected by this issue is some unknown functionality of the file /etc/www/pem/server.key of the component ECDSA P-256 Private Key Handler. This manipulation causes use of hard-coded cryptographic key . It is possible t...
ens-contracts-bug-62248-pr-509
DNS SEC upgrade repo Summary This repo contains the solut...
MiracleLinux 7 : golang-1.8.3-1.el7 (AXSA:2017-2315:02)
The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2017-2315:02 advisory. A carry propagation flaw was found in the implementation of the P-256 elliptic curve in golang. An attacker could possibly use this flaw to extract private...
CVE-2022-23002
When compressing or decompressing a point on the NIST P-256 elliptic curve with an X coordinate of zero, the resulting output is not properly reduced modulo the P-256 field prime and is invalid. The resulting output will cause an error when used in other operations. This may be leveraged by an...
CVE-2022-23003
When computing a shared secret or point multiplication on the NIST P-256 curve that results in an X coordinate of zero, the resulting output is not properly reduced modulo the P-256 field prime and is invalid. The resulting output may cause an error when used in other operations. This may be...
EUVD-2017-17872
Malware in sbrugna...
EUVD-2015-8674
Malware in sbrugna...
EUVD-2011-4285
Malware in sbrugna...
EUVD-2025-3034
Malicious code in bioql PyPI...
EUVD-2022-32779
Malicious code in bioql PyPI...
EUVD-2022-28115
Malicious code in bioql PyPI...
EUVD-2023-0995
Malicious code in bioql PyPI...
EUVD-2022-28114
Malicious code in bioql PyPI...
EUVD-2022-28113
Malicious code in bioql PyPI...
EUVD-2023-29649
Malicious code in bioql PyPI...
Security Bulletin: Timing Side-Channel in PPC64LE Assembly Leaks Bits of Secret Scalars in P-256 Operations, which affects IBM watsonx.data
Summary Due to the usage of a variable time instruction in the assembly implementation of an internal function, a small number of bits of secret scalars are leaked on the ppc64le architecture. Due to the way this function is used, we do not believe this leakage is enough to allow recovery of the...
Linux Distros Unpatched Vulnerability : CVE-2023-25742
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When importing a SPKI RSA public key as ECDSA P-256, the key would be handled incorrectly causing the tab to crash. This vulnerability affects Firefox 110,...