Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OSV
OSVadded 2022/05/05 11:50 p.m.17 views

CVE-2022-24884 Trivial signature forgery in ecdsautils

ecdsautils is a tiny collection of programs used for ECDSA keygen, sign, verify. ecdsaverifypreparelegacy does not check whether the signature values r and s are non-zero. A signature consisting only of zeroes is always considered valid, making it trivial to forge signatures. Requiring multiple...

10CVSS8.3AI score0.00124EPSS
Exploits0References10
CNVD
CNVDadded 2021/11/11 12:0 a.m.17 views

Stark Bank Data Forgery Issue Vulnerability (CNVD-2021-95644)

Stark Bank is a banking API for individual developers in Brazil that performs all banking operations through the API, simplifying and automating payments, facilitating reconciliations, and scaling operations. a data forgery issue vulnerability exists in Stark Bank python-ecdsa, which stems from t...

9.8CVSS2.1AI score0.00241EPSS
Exploits1References1
OpenVAS
OpenVASadded 2021/08/13 12:0 a.m.13 views

OpenSSL: RSA Signature Forgery (CVE-2006-4339) - Windows

OpenSSL is prone to RSA signature forgery. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribu...

4.3CVSS6.5AI score0.04479EPSS
Exploits1References1
Tenable Nessus
Tenable Nessusadded 2006/09/27 12:0 a.m.28 views

GLSA-200609-15 : GnuTLS: RSA Signature Forgery

The remote host is affected by the vulnerability described in GLSA-200609-15 GnuTLS: RSA Signature Forgery verify.c fails to properly handle excess data in digestAlgorithm.parameters field while generating a hash when using an RSA key with exponent 3. RSA keys that use exponent 3 are commonplace...

5CVSS6.3AI score0.05171EPSS
Exploits1References2
Gentoo Linux
Gentoo Linuxadded 2006/09/26 12:0 a.m.29 views

GnuTLS: RSA Signature Forgery

Background GnuTLS is an implementation of SSL 3.0 and TLS 1.0. Description verify.c fails to properly handle excess data in digestAlgorithm.parameters field while generating a hash when using an RSA key with exponent 3. RSA keys that use exponent 3 are commonplace. Impact Remote attackers could...

5CVSS6.7AI score0.05171EPSS
Exploits1
NVD
NVDadded 2006/09/15 6:7 p.m.21 views

CVE-2006-4340

Mozilla Network Security Service NSS library before 3.11.3, as used in Mozilla Firefox before 1.5.0.7, Thunderbird before 1.5.0.7, and SeaMonkey before 1.0.5, when using an RSA key with exponent 3, does not properly handle extra data in a signature, which allows remote attackers to forge signatur...

4CVSS6AI score0.027EPSS
Exploits1References73
Debian
Debianadded 2006/09/10 12:25 p.m.67 views

[SECURITY] [DSA 1173-1] New openssl packages fix RSA signature forgery cryptographic weakness

-------------------------------------------------------------------------- Debian Security Advisory DSA 1173-1 [email protected] http://www.debian.org/security/ Noah Meyerhans September 10th, 2006 http://www.debian.org/security/faq -...

4.3CVSS9.4AI score0.04479EPSS
Exploits1
Rows per page
Query Builder