Lucene search
K

2077 matches found

Packet Storm News
Packet Storm News
added 2026/03/22 12:0 a.m.5 views

When the Abyss Looks Back: Unveiling Evolving Dark Patterns in Cookie Consent Banners

To comply with data protection regulations such as the EU General Data Protection Regulation GDPR and the California Consumer Privacy Act CCPA, websites widely deploy cookie consent banners to collect users' privacy preferences. In practice, however, these interfaces often embed dark patterns tha...

5.8AI score
Exploits0
Cvelist
Cvelist
added 2026/03/20 11:8 p.m.23 views

CVE-2026-33424 PM access granted through invites after access revocation

Discourse is an open-source discussion platform. Prior to versions 2026.3.0-latest.1, 2026.2.1, and 2026.1.2, an attacker can grant access to a private message topic through invites even after they lose access to that PM. Versions 2026.3.0-latest.1, 2026.2.1, and 2026.1.2 contain a patch. No know...

5.9CVSS0.00217EPSS
Exploits0References1
OSV
OSV
added 2026/03/20 11:8 p.m.2 views

CVE-2026-33424 PM access granted through invites after access revocation

Discourse is an open-source discussion platform. Prior to versions 2026.3.0-latest.1, 2026.2.1, and 2026.1.2, an attacker can grant access to a private message topic through invites even after they lose access to that PM. Versions 2026.3.0-latest.1, 2026.2.1, and 2026.1.2 contain a patch. No know...

5.9CVSS5.9AI score0.00217EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/03/20 9:51 p.m.7 views

webpki: CRLs not considered authoritative by Distribution Point due to faulty matching logic

If a certificate had more than one distributionPoint, then only the first distributionPoint would be considered against each CRL's IssuingDistributionPoint distributionPoint, and then the certificate's subsequent distributionPoints would be ignored. The impact was that correct provided CRLs would...

5.8AI score
Exploits0References3Affected Software1
OSV
OSV
added 2026/03/20 9:51 p.m.6 views

GHSA-PWJX-QHCG-RVJ4 webpki: CRLs not considered authoritative by Distribution Point due to faulty matching logic

If a certificate had more than one distributionPoint, then only the first distributionPoint would be considered against each CRL's IssuingDistributionPoint distributionPoint, and then the certificate's subsequent distributionPoints would be ignored. The impact was that correct provided CRLs would...

4.4CVSS5.8AI score
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/03/20 8:35 p.m.10 views

CRL Distribution Point Scope Check Logic Error in AWS-LC

Summary AWS-LC is an open-source, general-purpose cryptographic library. Impact A logic error in CRL distribution point matching in AWS-LC allows a revoked certificate to bypass revocation checks during certificate validation, when the application enables CRL checking and uses partitioned CRLs wi...

5.9AI score
Exploits0References5Affected Software2
OSV
OSV
added 2026/03/20 8:35 p.m.4 views

GHSA-9F94-5G5W-GF6R CRL Distribution Point Scope Check Logic Error in AWS-LC

Summary AWS-LC is an open-source, general-purpose cryptographic library. Impact A logic error in CRL distribution point matching in AWS-LC allows a revoked certificate to bypass revocation checks during certificate validation, when the application enables CRL checking and uses partitioned CRLs wi...

7.4CVSS5.9AI score0.00252EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/03/20 2:45 p.m.5 views

CVE-2026-4428

A flaw was found in AWS-LC, a cryptographic library. A logic error in how the library validates Certificate Revocation List CRL distribution points can cause legitimate partitioned CRLs to be incorrectly rejected. This allows a revoked certificate to bypass certificate revocation checks,...

9.1CVSS5.6AI score0.00252EPSS
Exploits0References5
RustSec
RustSec
added 2026/03/20 12:0 p.m.9 views

CRLs not considered authoritative by Distribution Point due to faulty matching logic

If a certificate had more than one distributionPoint, then only the first distributionPoint would be considered against each CRL's IssuingDistributionPoint distributionPoint, and then the certificate's subsequent distributionPoints would be ignored. The impact was that correctly provided CRLs wou...

5.8AI score
Exploits0Affected Software1
OSV
OSV
added 2026/03/20 12:0 p.m.6 views

RUSTSEC-2026-0049 CRLs not considered authoritative by Distribution Point due to faulty matching logic

If a certificate had more than one distributionPoint, then only the first distributionPoint would be considered against each CRL's IssuingDistributionPoint distributionPoint, and then the certificate's subsequent distributionPoints would be ignored. The impact was that correctly provided CRLs wou...

5.8AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/03/20 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-4428

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A logic error in CRL distribution point validation in AWS-LC before 1.71.0 causes partitioned CRLs to be incorrectly rejected as out of scope, which allows a...

9.1CVSS5.8AI score0.00252EPSS
Exploits0References2
NVD
NVD
added 2026/03/19 9:17 p.m.7 views

CVE-2026-4428

A logic error in CRL distribution point validation in AWS-LC before 1.71.0 causes partitioned CRLs to be incorrectly rejected as out of scope, which allows a revoked certificate to bypass certificate revocation checks. To remediate this issue, users should upgrade to AWS-LC 1.71.0 or...

9.1CVSS0.00252EPSS
Exploits0References2
OSV
OSV
added 2026/03/19 9:17 p.m.7 views

CVE-2026-4428

A logic error in CRL distribution point validation in AWS-LC before 1.71.0 causes partitioned CRLs to be incorrectly rejected as out of scope, which allows a revoked certificate to bypass certificate revocation checks. To remediate this issue, users should upgrade to AWS-LC 1.71.0 or...

9.1CVSS5.8AI score
Exploits0References2
Snyk
Snyk
added 2026/03/19 8:46 p.m.4 views

Out-of-bounds Write

Overview Affected versions of this package are vulnerable to Out-of-bounds Write via the CRL number parsing process. An attacker can cause memory corruption or execute arbitrary code by providing a specially crafted CRL with a maliciously sized CRL number. This is only exploitable if CRL support ...

9.8CVSS6.2AI score0.00471EPSS
Exploits1References2
EUVD
EUVD
added 2026/03/19 8:37 p.m.12 views

EUVD-2026-13237

A logic error in CRL distribution point validation in AWS-LC before 1.71.0 causes partitioned CRLs to be incorrectly rejected as out of scope, which allows a revoked certificate to bypass certificate revocation checks. To remediate this issue, users should upgrade to AWS-LC 1.71.0 or...

9.1CVSS5.7AI score0.00252EPSS
Exploits0References2
CVE
CVE
added 2026/03/19 8:37 p.m.13 views

CVE-2026-4428

The CVE relates to AWS-LC CRL distribution point validation logic before 1.71.0. A logic error caused partitioned CRLs to be incorrectly rejected as out of scope, enabling a revoked certificate to bypass revocation checks. Affected software is AWS-LC prior to 1.71.0; the issue is fixed in AWS-LC ...

9.1CVSS5.7AI score0.00252EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/19 5:45 p.m.5 views

CVE-2026-3548

Two buffer overflow vulnerabilities existed in the wolfSSL CRL parser when parsing CRL numbers: a heap-based buffer overflow could occur when improperly storing the CRL number as a hexadecimal string, and a stack-based overflow for sufficiently sized CRL numbers. With appropriately crafted CRLs,...

9.2CVSS6.2AI score0.00471EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/03/19 5:45 p.m.21 views

CVE-2026-3548 Buffer overflow in CRL number parsing in wolfSSL

Two buffer overflow vulnerabilities existed in the wolfSSL CRL parser when parsing CRL numbers: a heap-based buffer overflow could occur when improperly storing the CRL number as a hexadecimal string, and a stack-based overflow for sufficiently sized CRL numbers. With appropriately crafted CRLs,...

9.2CVSS0.00471EPSS
Exploits1References2
AlpineLinux
AlpineLinux
added 2026/03/19 5:45 p.m.5 views

CVE-2026-3548

Two buffer overflow vulnerabilities existed in the wolfSSL CRL parser when parsing CRL numbers: a heap-based buffer overflow could occur when improperly storing the CRL number as a hexadecimal string, and a stack-based overflow for sufficiently sized CRL numbers. With appropriately crafted CRLs,...

9.8CVSS5.8AI score0.00471EPSS
Exploits1
RustSec
RustSec
added 2026/03/19 12:0 p.m.8 views

CRL Distribution Point Scope Check Logic Error in AWS-LC

A logic error in CRL distribution point matching in AWS-LC allows a revoked certificate to bypass revocation checks during certificate validation, when the application enables CRL checking and uses partitioned CRLs with Issuing Distribution Point IDP extensions. Customers of AWS services do not...

9.1CVSS5.8AI score0.00252EPSS
Exploits0Affected Software1
Rows per page
Query Builder