4 matches found
CVE-2026-50721
CVE-2026-50721 concerns Libreswan where the function RSA_authenticate_hash_signature_raw_rsa() does not properly verify the authentication hash length when the SIG payload of an IKEv1 packet is encoded using PKCS#1 RSA Encryption per RFC 2313. This enables a remote attacker to leverage a Bleichen...
Improper Verification Of Signature
node-forge is vulnerable to improper verification of the cryptographic signature. The vulnerability exists due to improper signature verification of tailing garbage bytes in the rsa.js file allowing an attacker to execute a signature forge attack...
GHSA-J3JW-J2J8-2WV9 Improper Verification of Cryptographic Signature in starkbank-ecdsa
The verify function in the Stark Bank .NET ECDSA library ecdsa-dotnet 1.3.1 fails to check that the signature is non-zero, which allows attackers to forge signatures on arbitrary messages...
Simple Password Store Code Execution Vulnerability
Simple Password Store is a password storage and management tool. A security vulnerability exists in the password-store.sh file for pass in Simple Password Store, which stems from a routine that verifies signatures using an incomplete regular expression to parse an export of GnuPG. A remote attack...