CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

19 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-1219

Malicious code in bioql PyPI...

9.8CVSS7.6AI score0.014EPSS

Exploits1References30

Packet Storm News•added 2025/06/21 12:0 a.m.•2 views

A TRNG Implemented Using a Soft-Data Based Sponge Function within a Unified Strong PUF Architecture

Hardware security primitives including True Random Number Generators TRNG and Physical Unclonable Functions PUFs are central components to establishing a root of trust in microelectronic systems. In this paper, we propose a unified PUF-TRNG architecture that leverages a combination of the static...

7AI score

Exploits0

OSV•added 2025/01/16 7:22 a.m.•29 views

BIT-PYTHON-MIN-2022-37454

The Keccak XKCP SHA-3 reference implementation before fdc6fef has an integer overflow and resultant buffer overflow that allows attackers to execute arbitrary code or eliminate expected cryptographic properties. This occurs in the sponge function interface...

9.8CVSS9.4AI score0.014EPSS

Exploits1References15

OSV•added 2025/01/14 7:21 p.m.•24 views

BIT-PHP-MIN-2022-37454

9.8CVSS9.4AI score0.014EPSS

Exploits1References15

OSV•added 2024/03/06 11:5 a.m.•74 views

BIT-PYTHON-2022-37454

9.8CVSS9.4AI score0.014EPSS

Exploits1References15

OSV•added 2024/03/06 11:3 a.m.•71 views

BIT-PHP-2022-37454

9.8CVSS9.4AI score0.014EPSS

Exploits1References15

Github Security Blog•added 2023/04/26 5:39 p.m.•61 views

Buffer overflow in sponge queue functions

Impact The Keccak sponge function interface accepts partial inputs to be absorbed and partial outputs to be squeezed. A buffer can overflow when partial data with some specific sizes are queued, where at least one of them has a length of 2^32 - 200 bytes or more. Patches Yes, see commit fdc6fef0...

9.8CVSS9.4AI score0.014EPSS

Exploits1References23Affected Software2

Amazon•added 2022/12/06 12:0 a.m.•46 views

Important: python3

Issue Overview: The Keccak XKCP SHA-3 reference implementation before fdc6fef has an integer overflow and resultant buffer overflow that allows attackers to execute arbitrary code or eliminate expected cryptographic properties. This occurs in the sponge function interface. CVE-2022-37454 Affected...

9.8CVSS9.1AI score0.014EPSS

Exploits1

Amazon•added 2022/12/06 12:0 a.m.•65 views

Important: python38

9.8CVSS9AI score0.014EPSS

Exploits1

Veracode•added 2022/10/28 10:11 a.m.•58 views

Denial Of Service (DoS)

php, Python, sha3 and pysha3 are vulnerable to Denial Of Service DoS. The vulnerability exists through the integer overflow and resultant buffer overflow in the sponge function interface due to the improper implementation of Keccak XKCP SHA-3 reference, allowing an attacker to crash the applicati...

9.8CVSS9.7AI score0.014EPSS

Exploits1References18Affected Software15

OSV•added 2022/10/21 6:15 a.m.•43 views

CVE-2022-37454

9.8CVSS6.2AI score

Exploits0References14

NVD•added 2022/10/21 6:15 a.m.•34 views

CVE-2022-37454

9.8CVSS0.014EPSS

Exploits1References14

Prion•added 2022/10/21 6:15 a.m.•231 views

Integer overflow

7.5CVSS10AI score0.014EPSS

Exploits1References13Affected Software6

UbuntuCve•added 2022/10/21 6:15 a.m.•65 views

CVE-2022-37454

9.8CVSS7.2AI score0.014EPSS

Exploits1References20

CVE•added 2022/10/21 12:0 a.m.•2297 views

CVE-2022-37454

CVE-2022-37454 affects the Keccak XKCP SHA-3 reference implementation prior to fdc6fef, where an integer overflow leads to a buffer overflow in the sponge function interface. This can enable attackers to execute arbitrary code or compromise cryptographic properties. Public advisories note this vu...

9.8CVSS10AI score0.014EPSS

Exploits1References14Affected Software1