Lucene search
K

9 matches found

Microsoft CVE
Microsoft CVE
added 2025/09/03 10:43 p.m.4 views

The verify function in the RSA package for Python (Python-RSA) before 3.3 allows attackers to spoof signatures with a small public exponent via crafted signature padding, aka a BERserk attack.

...

5.3CVSS9.5AI score0.07054EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2023/02/15 4:24 a.m.6 views

SUSE CVE-2018-15836

In verifysignedhash in lib/liboswkeys/signatures.c in Openswan before 2.6.50.1, the RSA implementation does not verify the value of padding string during PKCS1 v1.5 signature verification. Consequently, a remote attacker can forge signatures when small public exponents are being used. IKEv2...

7.5CVSS7.7AI score0.01493EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2018/09/26 9:0 p.m.4 views

CVE-2018-16151

In verifyemsapkcs1signature in gmprsapublickey.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data after the encoded algorithm OID during PKCS1 v1.5 signature verification. Similar to the flaw in the same version of strongSwa...

6.4AI score0.01888EPSS
Exploits0References8
ArchLinux
ArchLinux
added 2016/01/25 12:0 a.m.253 views

python-rsa: signature forgery

The verify function in the RSA package for Python Python-RSA before 3.3 allows attackers to spoof signatures with a small public exponent via crafted signature padding, aka a BERserk attack...

5CVSS5.2AI score0.07054EPSS
Exploits1References3
ArchLinux
ArchLinux
added 2016/01/25 12:0 a.m.38 views

python2-rsa: signature forgery

The verify function in the RSA package for Python Python-RSA before 3.3 allows attackers to spoof signatures with a small public exponent via crafted signature padding, aka a BERserk attack...

5CVSS5.2AI score0.07054EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2016/01/13 3:59 p.m.29 views

CVE-2016-1494

The verify function in the RSA package for Python Python-RSA before 3.3 allows attackers to spoof signatures with a small public exponent via crafted signature padding, aka a BERserk attack...

5.3CVSS6.4AI score0.07054EPSS
Exploits1References2
PyPA
PyPA
added 2016/01/13 3:59 p.m.6 views

PYSEC-2016-10

The verify function in the RSA package for Python Python-RSA before 3.3 allows attackers to spoof signatures with a small public exponent via crafted signature padding, aka a BERserk attack...

5.3CVSS6.8AI score0.07054EPSS
Exploits1References9Affected Software1
Cvelist
Cvelist
added 2016/01/13 3:0 p.m.26 views

CVE-2016-1494

The verify function in the RSA package for Python Python-RSA before 3.3 allows attackers to spoof signatures with a small public exponent via crafted signature padding, aka a BERserk attack...

5.3AI score0.07054EPSS
Exploits1References8
Debian CVE
Debian CVE
added 2016/01/13 3:0 p.m.45 views

CVE-2016-1494

The verify function in the RSA package for Python Python-RSA before 3.3 allows attackers to spoof signatures with a small public exponent via crafted signature padding, aka a BERserk attack...

5.3CVSS5.7AI score0.07054EPSS
Exploits1
Rows per page
Query Builder