Lucene search
K

8 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/10/23 8:23 p.m.4 views

Security Bulletin: multiple vulerability in IBM Spectrum Symphony with Bouncy Castle Java TLS API

Summary multiple vulerability in IBM Spectrum Symphony with Bouncy Castle Java TLS API Vulnerability Details CVEID:CVE-2024-30172 DESCRIPTION: An issue was discovered in Bouncy Castle Java Cryptography APIs before 1.78. An Ed25519 verification code infinite loop can occur via a crafted signature...

7.5CVSS6.7AI score0.011EPSS
Exploits0Affected Software1
OSV
OSV
added 2025/07/17 8:15 p.m.5 views

UBUNTU-CVE-2024-39835

A code injection vulnerability has been identified in the Robot Operating System ROS 'roslaunch' command-line tool, affecting ROS distributions Noetic Ninjemys and earlier. The vulnerability arises from the use of the eval method to process user-supplied, unsanitized parameter values within the...

7.8CVSS6AI score0.00175EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/08/15 8:11 p.m.4 views

org.bouncycastle: Importing an EC certificate with crafted F2m parameters may lead to Denial of Service

A vulnerability was found in Bouncy Castle. An issue was discovered in ECCurve.java and ECCurve.cs in Bouncy Castle Java BC Java. Importing an EC certificate with crafted F2m parameters can lead to excessive CPU consumption during the evaluation of the curve parameters...

7.5CVSS7.3AI score0.011EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/08/15 8:7 p.m.2 views

org.bouncycastle: Importing an EC certificate with crafted F2m parameters may lead to Denial of Service

A vulnerability was found in Bouncy Castle. An issue was discovered in ECCurve.java and ECCurve.cs in Bouncy Castle Java BC Java. Importing an EC certificate with crafted F2m parameters can lead to excessive CPU consumption during the evaluation of the curve parameters...

7.5CVSS7.3AI score0.011EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/08/08 5:22 p.m.3 views

org.bouncycastle: Importing an EC certificate with crafted F2m parameters may lead to Denial of Service

A vulnerability was found in Bouncy Castle. An issue was discovered in ECCurve.java and ECCurve.cs in Bouncy Castle Java BC Java. Importing an EC certificate with crafted F2m parameters can lead to excessive CPU consumption during the evaluation of the curve parameters...

7.5CVSS7.3AI score0.011EPSS
Exploits0References4
OSV
OSV
added 2024/05/14 3:17 p.m.3 views

DEBIAN-CVE-2024-29857

An issue was discovered in ECCurve.java and ECCurve.cs in Bouncy Castle Java BC Java before 1.78, BC Java LTS before 2.73.6, BC-FJA before 1.0.2.5, and BC C .Net before 2.3.1. Importing an EC certificate with crafted F2m parameters can lead to excessive CPU consumption during the evaluation of th...

7.5CVSS6.6AI score0.011EPSS
Exploits0References1
GitLab Advisory Database
GitLab Advisory Database
added 2024/05/14 12:0 a.m.26 views

Bouncy Castle certificate parsing issues cause high CPU usage during parameter evaluation.

An issue was discovered in ECCurve.java and ECCurve.cs in Bouncy Castle Java BC Java before 1.78, BC Java LTS before 2.73.6, BC-FJA before 1.0.2.5, and BC C .Net before 2.3.1. Importing an EC certificate with crafted F2m parameters can lead to excessive CPU consumption during the evaluation of th...

7.5CVSS6.2AI score0.011EPSS
Exploits0References9
CNNVD
CNNVD
added 2023/09/04 12:0 a.m.5 views

Vyper Security Vulnerability

Vyper is the Pythonic smart contract language for EVM. A security vulnerability exists in Vyper version 0.3.9 and earlier versions, which stems from the fact that the order in which the parameters of the built-in functions "uint256addmod", "uint256mulmod", "ecadd" and "ecmul" are evaluated does n...

5.3CVSS7AI score0.00455EPSS
Exploits1References3
Rows per page
Query Builder