CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

20 matches found

EUVD-2026-35487

Issue summary: When EVPPKEYderivesetpeer is called with a DHX X9.42 peer key, the peer key is not properly checked for the subgroup membership. Impact summary: A malicious peer which presents an X9.42 key carrying the victim's p and g parameters, a forged q = r a small prime factor of the cofacto...

3.7CVSS5.4AI score

Exploits0References7

CVE•added yesterday•6 views

CVE-2026-42770

CVE-2026-42770 affects OpenSSL FIPS modules (4.0, 3.6, 3.5, 3.4, 3.0) and related deployments using EVP_PKEY_derive_set_peer() with DHX/X9.42 keys. The vulnerability arises when the subgroup check Y^q ≡ 1 (mod p) uses the peer’s q instead of the local key’s q, allowing a malicious X9.42 peer to c...

3.7CVSS5.4AI score

Exploits0References6

Positive Technologies•added yesterday•8 views

PT-2026-47840

Issue summary: When EVP PKEY derive set peer is called with a DHX X9.42 peer key, the peer key is not properly checked for the subgroup membership. Impact summary: A malicious peer which presents an X9.42 key carrying the victim's p and g parameters, a forged q = r a small prime factor of the...

5.4AI score

Exploits0References7

OSV•added 2026/02/10 9:27 p.m.•2 views

GHSA-R6PH-V2QM-Q3C2 cryptography Vulnerable to a Subgroup Attack Due to Missing Subgroup Validation for SECT Curves

Vulnerability Summary The publickeyfromnumbers or EllipticCurvePublicNumbers.publickey, EllipticCurvePublicNumbers.publickey, loadderpublickey and loadpempublickey functions do not verify that the point belongs to the expected prime-order subgroup of the curve. This missing validation allows an...

8.2CVSS5.9AI score0.00009EPSS

Exploits0References6

EUVD•added 2025/10/07 12:30 a.m.•5 views

EUVD-2016-9478

Malware in sbrugna...

5.9CVSS6.9AI score0.00415EPSS

Exploits0References10

EUVD•added 2025/10/07 12:30 a.m.•6 views

EUVD-2013-0454

Malware in sbrugna...

4CVSS7.4AI score0.00395EPSS

Exploits0References41

SUSE CVE•added 2023/02/15 5:42 a.m.•4 views

SUSE CVE-2013-0443

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.240 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality and integrity via vectors related to JSSE. NOT...

4CVSS7AI score0.00395EPSS

Exploits0References9

OSV•added 2018/08/01 1:29 p.m.•6 views

CVE-2016-8635

It was found that Diffie Hellman Client key exchange handling in NSS 3.21.x was vulnerable to small subgroup confinement attack. An attacker could use this flaw to recover private keys by confining the client DH key to small subgroup of the desired group...

5.9CVSS8.8AI score0.00415EPSS

Exploits0References4

Amazon•added 2016/12/15 12:0 a.m.•45 views

Medium: nss-util, nss, nss-softokn

Issue Overview: CVE-2016-2834 nss: Multiple security flaws MFSA 2016-61 Multiple buffer handling flaws were found in the way NSS handled cryptographic data from the network. A remote attacker could use these flaws to crash an application using NSS or, possibly, execute arbitrary code with the...

9.3CVSS8.9AI score0.01626EPSS

Exploits0

UbuntuCve•added 2016/11/17 12:0 a.m.•26 views

CVE-2016-8635

5.9CVSS6.8AI score0.00415EPSS

Exploits0References2

RedHat Linux•added 2016/11/16 5:58 a.m.•3 views

nss: small-subgroups attack flaw

It was found that Diffie Hellman Client key exchange handling in NSS was vulnerable to small subgroup confinement attack. An attacker could use this flaw to recover private keys by confining the client DH key to small subgroup of the desired group...

5.9CVSS7.3AI score0.00415EPSS

Exploits0References4

Into the symmetry•added 2015/12/22 1:29 p.m.•206 views

Small subgroup attack in Mozilla NSS

tl;dr While the TLS servers attacks has been pretty much studied and fixed see e.g. https://www.secure-resumption.com/ and https://weakdh.org/ the situation with the TLS clients is was not ideal and can be improved. Here I report a Small subgroup attack for TLS clients that I performed against...

5CVSS8.6AI score0.00528EPSS

Exploits1

RedHat Linux•added 2013/10/23 4:26 p.m.•2 views

OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)

4CVSS6.8AI score0.00395EPSS

Exploits0References5

RedHat Linux•added 2013/03/11 6:48 p.m.•2 views

OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)

4CVSS6.8AI score0.00395EPSS

Exploits0References5

Tenable Nessus•added 2013/02/10 12:0 a.m.•24 views

Scientific Linux Security Update : java-1.6.0-openjdk on SL5.x i386/x86_64 (20130208)

Multiple improper permission check issues were discovered in the AWT, CORBA, JMX, and Libraries components in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions. CVE-2013-0442, CVE-2013-0445, CVE-2013-0441, CVE-2013-1475, CVE-2013-1476,...

10CVSS7.9AI score0.0155EPSS

Exploits2References21

RedHat Linux•added 2013/02/08 7:20 p.m.•4 views

OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)

4CVSS6.8AI score0.00395EPSS

Exploits0References5

RedHat Linux•added 2013/02/04 11:51 p.m.•4 views

OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)

4CVSS6.8AI score0.00395EPSS

Exploits0References5

RedHat Linux•added 2013/02/04 11:50 p.m.•1 views

OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)