Lucene search
K

296 matches found

Positive Technologies
Positive Technologies
added 2026/04/02 12:0 a.m.3 views

PT-2026-29863

Name of the Vulnerable Software and Affected Versions leancrypto versions prior to 1.7.1 Description The leancrypto library, a cryptographic library focused on post-quantum cryptography, has an issue in the lc x509 extract name segment function. A cast from size t to uint8 t when handling the...

5.9CVSS5.8AI score0.00162EPSS
Exploits0References8
HackRead
HackRead
added 2026/04/01 10:0 a.m.5 views

Defending Encryption in the Post Quantum Era

Post-quantum cryptography explained, risks of quantum attacks, and steps to secure data, systems, and infrastructure for a quantum-resilient…...

5.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/04/01 12:0 a.m.7 views

Amazon Linux 2023 : openssl, openssl-devel, openssl-fips-provider-latest (ALAS2023-2026-1522)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1522 advisory. Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group configuration includes the default by using the 'DEFAULT' keyword...

6.5CVSS7.3AI score0.00435EPSS
Exploits0References4
Packet Storm News
Packet Storm News
added 2026/04/01 12:0 a.m.4 views

Quantum-Safe Code Auditing: LLM-Assisted Static Analysis and Quantum-Aware Risk Scoring for Post-Quantum Cryptography Migration

The impending arrival of cryptographically relevant quantum computers CRQCs threatens the security foundations of modern software: Shor's algorithm breaks RSA, ECDSA, ECDH, and Diffie-Hellman, while Grover's algorithm reduces the effective security of symmetric and hash-based schemes. Despite NIS...

6AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/03/30 12:0 a.m.3 views

Empowering Mobile Networks Security Resilience by Using Post-Quantum Cryptography

The transition to a cloud-native 5G Service-Based Architecture SBA improves scalability but exposes control-plane signaling to emerging quantum threats, including Harvest-Now, Decrypt-Later HNDL attacks. While NIST has standardized post-quantum cryptography PQC, practical, deployable integration ...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/03/30 12:0 a.m.26 views

Securing Elliptic Curve Cryptocurrencies against Quantum Vulnerabilities: Resource Estimates and Mitigations

This whitepaper seeks to elucidate implications that the capabilities of developing quantum architectures have on blockchain vulnerabilities and mitigation strategies. First, we provide new resource estimates for breaking the 256-bit Elliptic Curve Discrete Logarithm Problem, the core of modern...

6AI score
Exploits0
HackRead
HackRead
added 2026/03/27 6:2 p.m.7 views

Google Sets 2029 Deadline as Quantum Computers Threaten Encryption

Google fast-tracks post-quantum cryptography with a 2029 deadline as researchers warn quantum computers could break current encryption sooner than expected...

5.8AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/03/26 3:12 p.m.6 views

CVE-2026-3503

Protection mechanism failure in wolfCrypt post-quantum implementations ML-KEM and ML-DSA in wolfSSL on ARM Cortex-M microcontrollers allows a physical attacker to compromise key material and/or cryptographic outcomes via induced transient faults that corrupt or redirect seed/pointer values during...

4.2CVSS5.8AI score0.00153EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2026/03/26 11:45 a.m.8 views

ThreatsDay Bulletin: PQC Push, AI Vuln Hunting, Pirated Traps, Phishing Kits & 20 More Stories

Some weeks in security feel loud. This one feels sneaky. Less big dramatic fireworks, more of that slow creeping sense that too many people are getting way too comfortable abusing things they probably shouldn’t even be touching. There’s a little bit of everything in this one, too. Weird delivery...

6.2AI score
Exploits0
NVD
NVD
added 2026/03/19 7:16 p.m.7 views

CVE-2026-3503

Protection mechanism failure in wolfCrypt post-quantum implementations ML-KEM and ML-DSA in wolfSSL on ARM Cortex-M microcontrollers allows a physical attacker to compromise key material and/or cryptographic outcomes via induced transient faults that corrupt or redirect seed/pointer values during...

5.2CVSS0.00153EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/03/19 7:16 p.m.5 views

CVE-2026-3503

Protection mechanism failure in wolfCrypt post-quantum implementations ML-KEM and ML-DSA in wolfSSL on ARM Cortex-M microcontrollers allows a physical attacker to compromise key material and/or cryptographic outcomes via induced transient faults that corrupt or redirect seed/pointer values during...

5.2CVSS5.9AI score0.00153EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/19 6:12 p.m.31 views

CVE-2026-3503 Fault injection attack with ML-DSA and ML-KEM on ARM

Protection mechanism failure in wolfCrypt post-quantum implementations ML-KEM and ML-DSA in wolfSSL on ARM Cortex-M microcontrollers allows a physical attacker to compromise key material and/or cryptographic outcomes via induced transient faults that corrupt or redirect seed/pointer values during...

4.2CVSS0.00153EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/19 6:12 p.m.4 views

CVE-2026-3503

Protection mechanism failure in wolfCrypt post-quantum implementations ML-KEM and ML-DSA in wolfSSL on ARM Cortex-M microcontrollers allows a physical attacker to compromise key material and/or cryptographic outcomes via induced transient faults that corrupt or redirect seed/pointer values during...

4.2CVSS5.8AI score0.00153EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/03/19 6:12 p.m.23 views

CVE-2026-3503

CVE-2026-3503 involves a protection mechanism failure in wolfSSL’s wolfCrypt post-quantum implementations (ML-KEM and ML-DSA) on ARM Cortex-M devices. The root cause is exposed as transient fault injections that can corrupt or redirect seed/pointer values during Keccak-based expansion, potentiall...

5.2CVSS5.8AI score0.00153EPSS
Exploits0References1Affected Software1
Debian CVE
Debian CVE
added 2026/03/19 6:12 p.m.2 views

CVE-2026-3503

Protection mechanism failure in wolfCrypt post-quantum implementations ML-KEM and ML-DSA in wolfSSL on ARM Cortex-M microcontrollers allows a physical attacker to compromise key material and/or cryptographic outcomes via induced transient faults that corrupt or redirect seed/pointer values during...

5.2CVSS5.2AI score0.00153EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/19 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-3503

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Protection mechanism failure in wolfCrypt post-quantum implementations ML-KEM and ML-DSA in wolfSSL on ARM Cortex-M microcontrollers allows a physical attacker ...

5.2CVSS5.8AI score0.00153EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/03/19 12:0 a.m.10 views

wolfSSL 安全漏洞

wolfSSL CyaSSL is a small, portable embedded SSL programming library developed by the American company wolfSSL, designed for developers working with embedded systems. There is a security vulnerability in wolfSSL. This vulnerability stems from a protection mechanism that fails in the post-quantum...

5.2CVSS5.8AI score0.00153EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2026/03/19 12:0 a.m.18 views

Benchmarking Post-Quantum Cryptography on Resource-Constrained IoT Devices: ML-KEM and ML-DSA on ARM Cortex-M0+

The migration to post-quantum cryptography is urgent for Internet of Things devices with 10-20 year lifespans, yet no systematic benchmarks exist for the finalised NIST standards on the most constrained 32-bit processor class. This paper presents the first isolated algorithm-level benchmarks of...

5.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/16 12:0 a.m.10 views

OpenSSL 3.6.0 < 3.6.2 Multiple Vulnerabilities

The version of OpenSSL installed on the remote host is prior to 3.6.2. It is, therefore, affected by multiple vulnerabilities as referenced in the 3.6.2 advisory. - Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group...

9.8CVSS7.5AI score0.01059EPSS
Exploits0References27
Tenable Nessus
Tenable Nessus
added 2026/03/16 12:0 a.m.18 views

OpenSSL 3.5.0 < 3.5.6 Multiple Vulnerabilities

The version of OpenSSL installed on the remote host is prior to 3.5.6. It is, therefore, affected by multiple vulnerabilities as referenced in the 3.5.6 advisory. - Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group...

9.8CVSS7.9AI score0.01059EPSS
Exploits0References24
Rows per page
Query Builder