PT-2024-35954 · Rpgp · Rpgp

Name of the Vulnerable Software and Affected Versions: rPGP versions prior to 0.14.1 Description: The issue allows attackers to trigger resource exhaustion vulnerabilities in rPGP by providing crafted messages, affecting general message parsing and decryption with symmetric keys. This can cause...

Openpgp.js 's2k.js' Security Bypass Vulnerability

Openpgp.js is a library that implements the OpenPGP encryption algorithm in JavaScript. A security bypass vulnerability exists in Openpgp.js. An attacker can exploit this vulnerability to gain access to sensitive information and perform unauthorized operations...