CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

21 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-6940

Malicious code in bioql PyPI...

5.3CVSS5.6AI score0.00305EPSS

Exploits0References4

Tenable Nessus•added 2025/03/04 12:0 a.m.•8 views

Linux Distros Unpatched Vulnerability : CVE-2019-13050

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Interaction between the sks-keyserver code through 1.2.0 of the SKS keyserver network, and GnuPG through 2.2.16, makes it risky to have a GnuPG keyserver...

7.5CVSS6.8AI score0.00554EPSS

Exploits1References3

Tenable Nessus•added 2024/05/11 12:0 a.m.•15 views

RHEL 6 : gnupg (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - GnuPG: Unenforced configuration allows for apparently valid certifications actually signed by signing...

6.7AI score0.00554EPSS

Exploits1References3

Tenable Nessus•added 2023/11/06 12:0 a.m.•25 views

Rocky Linux 8 : gnupg2 (RLSA-2020:4490)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2020:4490 advisory. - GnuPG version 2.1.12 - 2.2.11 contains a Cross ite Request Forgery CSRF vulnerability in dirmngr that can result in Attacker controlled CSRF,...

8.8CVSS7AI score0.00554EPSS

Exploits2References4

F5 Networks•added 2023/02/21 6:45 p.m.•25 views

K08654551: GnuPG vulnerability CVE-2019-13050

Security Advisory Description Interaction between the sks-keyserver code through 1.2.0 of the SKS keyserver network, and GnuPG through 2.2.16, makes it risky to have a GnuPG keyserver configuration line referring to a host on the SKS keyserver network. Retrieving data from this network may cause ...

7.5CVSS7.2AI score0.00554EPSS

Exploits1

Tenable Nessus•added 2022/02/09 12:0 a.m.•33 views

AlmaLinux 8 : gnupg2 (ALSA-2020:4490)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2020:4490 advisory. - GnuPG version 2.1.12 - 2.2.11 contains a Cross ite Request Forgery CSRF vulnerability in dirmngr that can result in Attacker controlled CSRF, Informatio...

8.8CVSS6.9AI score0.00554EPSS

Exploits2References3

Github Security Blog•added 2021/10/13 6:53 p.m.•43 views

Validity check missing in Frontier

Impact In the newly introduced signed Frontier-specific extrinsic for pallet-ethereum, a large part of transaction validation logic was only called in transaction pool validation, but not in block execution. Malicious validators can take advantage of this to put invalid transactions into a block...

5.3CVSS1.2AI score0.00575EPSS

Exploits0References6Affected Software1

Prion•added 2021/10/13 4:15 p.m.•9 views

Input validation

Frontier is Substrate's Ethereum compatibility layer. In the newly introduced signed Frontier-specific extrinsic for pallet-ethereum, a large part of transaction validation logic was only called in transaction pool validation, but not in block execution. Malicious validators can take advantage of...

5CVSS5.2AI score0.00575EPSS

Exploits0References3Affected Software1

Tenable Nessus•added 2021/03/10 12:0 a.m.•21 views

NewStart CGSL MAIN 6.02 : gnupg2 Vulnerability (NS-SA-2021-0076)

The remote NewStart CGSL host, running version MAIN 6.02, has gnupg2 packages installed that are affected by a vulnerability: - Interaction between the sks-keyserver code through 1.2.0 of the SKS keyserver network, and GnuPG through 2.2.16, makes it risky to have a GnuPG keyserver configuration...

7.5CVSS7AI score0.00554EPSS

Exploits1References2

Tenable Nessus•added 2021/02/01 12:0 a.m.•27 views

CentOS 8 : gnupg2 (CESA-2020:4490)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2020:4490 advisory. - GnuPG: interaction between the sks-keyserver code and GnuPG allows for a Certificate Spamming Attack which leads to persistent DoS CVE-2019-13050 Note that...

7.5CVSS6.8AI score0.00554EPSS

Exploits1References2

Veracode•added 2020/11/05 3:19 a.m.•25 views

Denial Of Service (DoS)

gnupg2 is vulnerable to denial of service DoS. This is because the interaction between the sks-keyserver code and GnuPG allows for a Certificate Spamming Attack causing an application crash...

7.5CVSS3.9AI score0.00554EPSS

Exploits1References20Affected Software2

RedHat Linux•added 2020/11/04 2:10 a.m.•59 views

Moderate: Red Hat Security Advisory: gnupg2 security, bug fix, and enhancement update

An update for gnupg2 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

8.8CVSS6.7AI score0.00554EPSS

Exploits2References3

RedHat Linux•added 2020/11/04 2:10 a.m.•3 views

GnuPG: interaction between the sks-keyserver code and GnuPG allows for a Certificate Spamming Attack which leads to persistent DoS

Interaction between the sks-keyserver code through 1.2.0 of the SKS keyserver network, and GnuPG through 2.2.16, makes it risky to have a GnuPG keyserver configuration line referring to a host on the SKS keyserver network. Retrieving data from this network may cause a persistent denial of service...

7.5CVSS7AI score0.00554EPSS

Exploits1References6

Tenable Nessus•added 2020/11/04 12:0 a.m.•52 views

RHEL 8 : gnupg2 (RHSA-2020:4490)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4490 advisory. The GNU Privacy Guard GnuPG or GPG is a tool for encrypting data and creating digital signatures, compliant with OpenPGP and S/MIME standard...

8.8CVSS7AI score0.00554EPSS

Exploits2References7

RedhatCVE•added 2020/04/02 8:5 p.m.•29 views

CVE-2019-13050

7.5CVSS0.6AI score0.00554EPSS

Exploits1References5

Tenable Nessus•added 2020/04/02 12:0 a.m.•20 views

EulerOS Virtualization for ARM 64 3.0.6.0 : gnupg2 (EulerOS-SA-2020-1358)

According to the version of the gnupg2 package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - Interaction between the sks-keyserver code through 1.2.0 of the SKS keyserver network, and GnuPG through 2.2.16, makes it...

7.5CVSS6.9AI score0.00554EPSS

Exploits1References2

Tenable Nessus•added 2020/02/25 12:0 a.m.•37 views

EulerOS 2.0 SP8 : gnupg2 (EulerOS-SA-2020-1153)

According to the version of the gnupg2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Interaction between the sks-keyserver code through 1.2.0 of the SKS keyserver network, and GnuPG through 2.2.16, makes it risky to have a GnuPG...

7.5CVSS7AI score0.00554EPSS

Exploits1References2

Tenable Nessus•added 2019/07/19 12:0 a.m.•22 views

Fedora 30 : gnupg2 (2019-2f259a6c0a)

Minor update to version 2.2.17 from upstream with a security issue Certificate Spamming Attack mitigation. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as...

7.5CVSS6.8AI score0.00554EPSS

Exploits1References2