Lucene search
K

4 matches found

CVE
CVE
added yesterday7 views

CVE-2026-50721

CVE-2026-50721 concerns Libreswan where the function RSA_authenticate_hash_signature_raw_rsa() does not properly verify the authentication hash length when the SIG payload of an IKEv1 packet is encoded using PKCS#1 RSA Encryption per RFC 2313. This enables a remote attacker to leverage a Bleichen...

8.1CVSS6.3AI score
Exploits0References4
Veracode
Veracode
added 2022/03/21 11:0 a.m.26 views

Improper Verification Of Signature

node-forge is vulnerable to improper verification of the cryptographic signature. The vulnerability exists due to improper signature verification of tailing garbage bytes in the rsa.js file allowing an attacker to execute a signature forge attack...

7.5CVSS4.2AI score0.01015EPSS
Exploits0References3Affected Software3
OSV
OSV
added 2021/11/10 8:58 p.m.30 views

GHSA-J3JW-J2J8-2WV9 Improper Verification of Cryptographic Signature in starkbank-ecdsa

The verify function in the Stark Bank .NET ECDSA library ecdsa-dotnet 1.3.1 fails to check that the signature is non-zero, which allows attackers to forge signatures on arbitrary messages...

9.8CVSS9.4AI score0.01022EPSS
Exploits1References4
CNVD
CNVD
added 2018/06/20 12:0 a.m.2 views

Simple Password Store Code Execution Vulnerability

Simple Password Store is a password storage and management tool. A security vulnerability exists in the password-store.sh file for pass in Simple Password Store, which stems from a routine that verifies signatures using an incomplete regular expression to parse an export of GnuPG. A remote attack...

9.8CVSS9.7AI score0.04648EPSS
Exploits0References1
Rows per page
Query Builder