14 matches found
EUVD-2006-4328
Malware in sbrugna...
EUVD-2006-5186
Malware in sbrugna...
EUVD-2023-2242
Malicious code in bioql PyPI...
EUVD-2022-30881
Malicious code in bioql PyPI...
EUVD-2025-21304
Malicious code in bioql PyPI...
CVE-2025-29606
py-libp2p before 0.2.3 allows a peer to cause a denial of service resource consumption via a large RSA key...
CVE-2025-22865
Using ParsePKCS1PrivateKey to parse a RSA key that is missing the CRT values would panic when verifying that the key is well formed...
MediaWiki < 1.35.2 Oauth Overlength Rsa Key
According to its self-reported version number, the instance of MediaWiki hosted on the remote web server is prior to 1.35.2. It is, therefore, affected by a vulnerability in the Oauth MWOAuthConsumerSubmitContro.php page which does not ensure that the length of supplied RSA key will fit in a MySQ...
CVE-2021-41117 Insecure random number generation
keypair is a a RSA PEM key generator written in javascript. keypair implements a lot of cryptographic primitives on its own or by borrowing from other libraries where possible, including node-forge. An issue was discovered where this library was generating identical RSA keys used in SSH. This wou...
SUSE: Security Advisory (SUSE-SU-2018:2492-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2018-11069
RSA BSAFE SSL-J versions prior to 6.2.4 contain a Covert Timing Channel vulnerability during RSA decryption, also known as a Bleichenbacher attack on RSA decryption. A remote attacker may be able to recover a RSA key...
SUSE-SU-2018:2545-1 Security update for openssl1
This update for openssl1 fixes the following security issues: - CVE-2018-0737: The RSA Key generation algorithm has been shown to be vulnerable to a cache timing side channel attack. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could have...
CVE-2017-1000412
Linaro's open source TEE solution called OP-TEE, version 2.4.0 and older is vulnerable to the bellcore attack in the LibTomCrypt code resulting in compromised private RSA key...
Code injection
GE Multilink ML800, ML1200, ML1600, and ML2400 switches with firmware 4.2.1 and earlier and Multilink ML810, ML3000, and ML3100 switches with firmware 5.2.0 and earlier use the same RSA private key across different customers' installations, which makes it easier for remote attackers to obtain the...