Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2024-27192

Malicious code in bioql PyPI...

5.9CVSS7.2AI score0.00684EPSS
Exploits0References7
Tenable Nessus
Tenable Nessusadded 2025/06/16 12:0 a.m.3 views

TencentOS Server 3: opencryptoki (TSSA-2024:0098)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0098 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

5.9CVSS5.8AI score0.00422EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/06/16 12:0 a.m.4 views

TencentOS Server 4: opencryptoki (TSSA-2024:0927)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0927 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

5.9CVSS5.8AI score0.00422EPSS
Exploits0References2
Redos
Redosadded 2024/12/11 12:0 a.m.9 views

ROS-20241211-10

Vulnerability of GnuTLS transport layer cryptographic library is related to difference of response time when processing RSA ciphertext in ClientKeyExchange message with correct and incorrect addition of PKCS1. PKCS1 padding. Exploitation of the vulnerability may allow a remote intruder to gain...

7.5CVSS7.1AI score0.01028EPSS
Exploits1
Redos
Redosadded 2024/04/04 12:0 a.m.23 views

ROS-20240404-08

Vulnerability of GnuTLS transport layer cryptographic library is related to difference of response time when processing RSA ciphertext in ClientKeyExchange message with correct and incorrect addition of PKCS1. PKCS1 padding. Exploitation of the vulnerability could allow an attacker acting remotel...

7.4CVSS6.8AI score0.03615EPSS
Exploits1
OSV
OSVadded 2024/01/31 5:15 a.m.2 views

DEBIAN-CVE-2024-0914

A timing side-channel vulnerability has been discovered in the opencryptoki package while processing RSA PKCS1 v1.5 padded ciphertexts. This flaw could potentially enable unauthorized RSA ciphertext decryption or signing, even without access to the corresponding private key...

5.9CVSS5.8AI score0.00422EPSS
Exploits0References1
RedHat Linux
RedHat Linuxadded 2023/03/07 2:3 p.m.2 views

gnutls: timing side-channel in the TLS RSA key exchange code

A timing side-channel vulnerability was found in RSA ClientKeyExchange messages in GnuTLS. This side-channel may be sufficient to recover the key encrypted in the RSA ciphertext across a network in a Bleichenbacher style attack. To achieve a successful decryption, the attacker would need to send ...

7.4CVSS6.8AI score0.03615EPSS
Exploits1References4
RedHat Linux
RedHat Linuxadded 2021/06/03 10:26 a.m.1 views

python-cryptography: Bleichenbacher timing oracle attack against RSA decryption

A flaw was found in python-cryptography, where it is vulnerable to Bleichenbacher timing attacks. This flaw allows an attacker, via the RSA decryption API, to decrypt parts of the ciphertext encrypted with RSA. The highest threat from this vulnerability is to confidentiality...

5.9CVSS7.1AI score0.0076EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2016/07/27 3:28 p.m.3 views

SSL/TLS: Cross-protocol attack on TLS using SSLv2 (DROWN)

A padding oracle flaw was found in the Secure Sockets Layer version 2.0 SSLv2 protocol. An attacker could potentially use this flaw to decrypt RSA-encrypted cipher text from a connection using a newer SSL/TLS protocol version, allowing them to decrypt such connections. This cross-protocol attack ...

5.9CVSS6.8AI score0.90348EPSS
Exploits3References7
Rows per page
Query Builder