Lucene search
K

11 matches found

OSV
OSV
added 2026/02/13 8:54 p.m.3 views

GHSA-7587-4WV6-M68M rPGP vulnerable to parser crash on crafted RSA secret key packets through CVE-2026-21895

Summary It was possible to trigger an unhandled edge case in the Rust Crypto rsa crate through rPGP packet parsing functionality, and crash the process that runs rPGP. This problem has been patched in a new rsa version. The new release of rPGP ensures a patched version of the rsa crate is in use,...

8.7CVSS5.5AI score
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-3456

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.00448EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/02/04 10:23 p.m.8 views

CVE-2024-53856

rPGP is a pure Rust implementation of OpenPGP. Prior to 0.14.1, rPGP allows an attacker to trigger rpgp crashes by providing crafted data. This vulnerability is fixed in 0.14.1...

7.5CVSS6.5AI score0.00448EPSS
Exploits0References1
OSV
OSV
added 2024/12/05 4:15 p.m.2 views

DEBIAN-CVE-2024-53857

rPGP is a pure Rust implementation of OpenPGP. Prior to 0.14.1, rPGP allows attackers to trigger resource exhaustion vulnerabilities in rpgp by providing crafted messages. This affects general message parsing and decryption with symmetric keys...

7.5CVSS5.3AI score0.00448EPSS
Exploits0References1
NVD
NVD
added 2024/12/05 4:15 p.m.30 views

CVE-2024-53856

rPGP is a pure Rust implementation of OpenPGP. Prior to 0.14.1, rPGP allows an attacker to trigger rpgp crashes by providing crafted data. This vulnerability is fixed in 0.14.1...

7.5CVSS0.00448EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2024/12/05 3:24 p.m.17 views

CVE-2024-53856

rPGP is a pure Rust implementation of OpenPGP. Prior to 0.14.1, rPGP allows an attacker to trigger rpgp crashes by providing crafted data. This vulnerability is fixed in 0.14.1...

7.5CVSS5.3AI score0.00448EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2024/12/05 3:24 p.m.9 views

CVE-2024-53856 rPGP Panics on Malformed Untrusted Input

rPGP is a pure Rust implementation of OpenPGP. Prior to 0.14.1, rPGP allows an attacker to trigger rpgp crashes by providing crafted data. This vulnerability is fixed in 0.14.1...

7.5CVSS6.5AI score0.00448EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/05 3:24 p.m.39 views

CVE-2024-53856 rPGP Panics on Malformed Untrusted Input

rPGP is a pure Rust implementation of OpenPGP. Prior to 0.14.1, rPGP allows an attacker to trigger rpgp crashes by providing crafted data. This vulnerability is fixed in 0.14.1...

7.5CVSS0.00448EPSS
Exploits0References1
OSV
OSV
added 2024/12/05 3:24 p.m.18 views

CVE-2024-53856 rPGP Panics on Malformed Untrusted Input

rPGP is a pure Rust implementation of OpenPGP. Prior to 0.14.1, rPGP allows an attacker to trigger rpgp crashes by providing crafted data. This vulnerability is fixed in 0.14.1...

7.5CVSS6.4AI score0.00448EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/12/05 3:22 p.m.20 views

CVE-2024-53857 rPGP Potential Resource Exhaustion when handling Untrusted Messages

rPGP is a pure Rust implementation of OpenPGP. Prior to 0.14.1, rPGP allows attackers to trigger resource exhaustion vulnerabilities in rpgp by providing crafted messages. This affects general message parsing and decryption with symmetric keys...

7.5CVSS7AI score0.00448EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/05 12:0 a.m.3 views

rPGP 安全漏洞

rPGP is a pure Rust implementation of OpenPGP open sourced by rPGP. A security vulnerability exists in rPGP versions prior to 0.14.1. An attacker exploiting this vulnerability could trigger an rpgp crash by supplying specially crafted data...

7.5CVSS6.3AI score0.00448EPSS
Exploits0References1
Rows per page
Query Builder