Lucene search
K

9 matches found

ATTACKERKB
ATTACKERKB
added 2026/06/22 8:0 p.m.4 views

CVE-2026-55599

phpseclib is a PHP secure communications library. From 0.1.1 until 1.0.30, 2.0.55, and 3.0.54, when an application validates an untrusted X.509 certificate with phpseclib, X509::validateSignature reads a URL out of that certificate's Authority Information Access AIA extension and connects to it...

5.8CVSS5.9AI score0.00133EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2026/05/08 11:6 p.m.6 views

EUVD-2023-2993

Phpseclib needs guardrails on large binaryfield integers...

7.5CVSS7.1AI score0.00756EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/03/28 12:0 a.m.6 views

Fedora 43 : php-phpseclib (2026-d1feefa819)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-d1feefa819 advisory. Update to v2.0.52 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this...

8.2CVSS6AI score0.00374EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/09 12:36 p.m.7 views

CVE-2023-49316

In Math/BinaryField.php in phpseclib 3 before 3.0.34, excessively large degrees can lead to a denial of service...

7.5CVSS6.7AI score0.00756EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2024-27355

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in phpseclib 1.x before 1.0.23, 2.x before 2.0.47, and 3.x before 3.0.36. When processing the ASN.1 object identifier of a certificate, ...

7.5CVSS7.4AI score0.00569EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/05/02 12:0 a.m.6 views

The vulnerability of the phpseclib cryptographic protocol library, related to incorrect input validation, allows attackers to trigger a service failure.

The vulnerability of the phpseclib cryptographic protocol library is related to insufficient checks on the data entered by users. Exploiting this vulnerability could allow a malicious actor to cause service failures...

7.8CVSS7.2AI score0.00569EPSS
Exploits0References5Affected Software2
OpenVAS
OpenVAS
added 2025/04/03 12:0 a.m.5 views

Ubuntu: Security Advisory (USN-7404-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.01085EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/06/27 12:0 a.m.4 views

PT-2024-14775 · Phpseclib +4 · Phpseclib +4

Name of the Vulnerable Software and Affected Versions: phpseclib versions 1.0.0 through 1.0.21 phpseclib versions 2.0.0 through 2.0.45 phpseclib versions 3.0.0 through 3.0.32 Description: The issue arises from the incorrect handling of certain characters in Subject Alternative Name fields within...

8.7CVSS7.4AI score0.01085EPSS
Exploits1References31
Positive Technologies
Positive Technologies
added 2023/08/25 12:0 a.m.3 views

PT-2024-21844

Name of the Vulnerable Software and Affected Versions phpseclib versions 1.x through 1.0.22 phpseclib versions 2.x through 2.0.46 phpseclib versions 3.x through 3.0.35 Description An issue was discovered in phpseclib when processing the ASN.1 object identifier of a certificate. A sub identifier m...

7.8CVSS7AI score0.00601EPSS
Exploits0References36
Rows per page
Query Builder