Lucene search
K

21 matches found

NVD
NVD
added 2026/06/25 8:17 p.m.7 views

CVE-2026-12340

Out-of-bounds heap read during SM2/SM3 certificate signature verification. When parsing a certificate with an SM3wSM2 signature, the Subject Key Identifier computation reads the trailing 65 bytes of the public key without checking that the key is at least that long. A public key shorter than 65...

7.5CVSS0.00226EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/25 7:36 p.m.24 views

CVE-2026-12340 Out-of-bounds heap read in SM2/SM3 certificate Subject Key Identifier computation

Out-of-bounds heap read during SM2/SM3 certificate signature verification. When parsing a certificate with an SM3wSM2 signature, the Subject Key Identifier computation reads the trailing 65 bytes of the public key without checking that the key is at least that long. A public key shorter than 65...

6.3CVSS0.00226EPSS
Exploits0References2
CVE
CVE
added 2026/06/25 7:36 p.m.16 views

CVE-2026-12340

The CVE-2026-12340 issue is a concrete out-of-bounds heap read during SM2/SM3 certificate verification. Specifically, when parsing a certificate with an SM3wSM2 signature, the Subject Key Identifier is computed by reading the trailing 65 bytes of the public key without verifying the key length fi...

7.5CVSS5.8AI score0.00226EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.12 views

PT-2026-52564

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description An out-of-bounds heap read occurs during SM2/SM3 certificate signature verification. When parsing a certificate with an SM3wSM2 signature, the Subject Key...

7.5CVSS5.7AI score0.00226EPSS
Exploits0References6
OSV
OSV
added 2026/04/27 6:33 p.m.9 views

JLSEC-2026-276 Issue summary: Converting an excessively large OCTET STRING value to a hexadecimal string leads...

Issue summary: Converting an excessively large OCTET STRING value to a hexadecimal string leads to a heap buffer overflow on 32 bit platforms. Impact summary: A heap buffer overflow may lead to a crash or possibly an attacker controlled code execution or other undefined behavior. If an attacker c...

9.8CVSS6.5AI score0.00225EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2026/04/08 11:26 p.m.11 views

SUSE CVE-2026-31789

Issue summary: Converting an excessively large OCTET STRING value to a hexadecimal string leads to a heap buffer overflow on 32 bit platforms. Impact summary: A heap buffer overflow may lead to a crash or possibly an attacker controlled code execution or other undefined behavior. If an attacker c...

7.3CVSS6.5AI score0.00225EPSS
Exploits0References20
RedhatCVE
RedhatCVE
added 2026/04/08 9:31 a.m.4 views

CVE-2026-34580

A flaw was found in Botan, a C++ cryptography library. Due to a misleading function name and an assumption in path validation logic, an end entity certificate could be incorrectly accepted as a trusted root. This occurs when the end entity certificate's Distinguished Name DN and Subject Key...

9.3CVSS5.8AI score0.00249EPSS
Exploits0References4
EUVD
EUVD
added 2026/04/08 12:30 a.m.5 views

EUVD-2026-19968

Issue summary: Converting an excessively large OCTET STRING value to a hexadecimal string leads to a heap buffer overflow on 32 bit platforms. Impact summary: A heap buffer overflow may lead to a crash or possibly an attacker controlled code execution or other undefined behavior. If an attacker c...

6.5AI score0.00225EPSS
Exploits0References7
OSV
OSV
added 2026/04/07 10:16 p.m.3 views

DEBIAN-CVE-2026-31789

Issue summary: Converting an excessively large OCTET STRING value to a hexadecimal string leads to a heap buffer overflow on 32 bit platforms. Impact summary: A heap buffer overflow may lead to a crash or possibly an attacker controlled code execution or other undefined behavior. If an attacker c...

9.8CVSS6.5AI score0.00225EPSS
Exploits0References1
OSV
OSV
added 2026/04/07 10:16 p.m.6 views

ALPINE-CVE-2026-31789

Issue summary: Converting an excessively large OCTET STRING value to a hexadecimal string leads to a heap buffer overflow on 32 bit platforms. Impact summary: A heap buffer overflow may lead to a crash or possibly an attacker controlled code execution or other undefined behavior. If an attacker c...

9.8CVSS6.4AI score0.00225EPSS
Exploits0References1
Snyk
Snyk
added 2026/04/07 10:11 p.m.4 views

Improper Certificate Validation

Overview Affected versions of this package are vulnerable to Improper Certificate Validation due to improper validation in the certificateknown function. An attacker can bypass certificate trust verification by presenting an end entity certificate with a distinguished name and subject key...

9.8CVSS5.7AI score0.00249EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/04/07 10:0 p.m.1 views

CVE-2026-31789 Heap Buffer Overflow in Hexadecimal Conversion

Issue summary: Converting an excessively large OCTET STRING value to a hexadecimal string leads to a heap buffer overflow on 32 bit platforms. Impact summary: A heap buffer overflow may lead to a crash or possibly an attacker controlled code execution or other undefined behavior. If an attacker c...

6.4AI score0.00225EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/04/07 10:0 p.m.33 views

CVE-2026-31789 Heap Buffer Overflow in Hexadecimal Conversion

Issue summary: Converting an excessively large OCTET STRING value to a hexadecimal string leads to a heap buffer overflow on 32 bit platforms. Impact summary: A heap buffer overflow may lead to a crash or possibly an attacker controlled code execution or other undefined behavior. If an attacker c...

0.00225EPSS
Exploits0References6
CVE
CVE
added 2026/04/07 10:0 p.m.156 views

CVE-2026-31789

OpenSSL vulnerability CVE-2026-31789: on 32-bit platforms, converting a large OCTET STRING (e.g., SKID/AKID in X.509 certificates) to hex can overflow the buffer, causing a heap overflow that may crash or enable attacker-controlled behavior. Affected are OpenSSL versions with the vulnerable conve...

9.8CVSS6.5AI score0.00225EPSS
Exploits0References7Affected Software1
AlpineLinux
AlpineLinux
added 2026/04/07 10:0 p.m.4 views

CVE-2026-31789

Issue summary: Converting an excessively large OCTET STRING value to a hexadecimal string leads to a heap buffer overflow on 32 bit platforms. Impact summary: A heap buffer overflow may lead to a crash or possibly an attacker controlled code execution or other undefined behavior. If an attacker c...

9.8CVSS6.5AI score0.00225EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/04/07 9:12 p.m.2 views

CVE-2026-34580

Botan is a C++ cryptography library. In 3.11.0, the function CertificateStore::certificateknown had a misleading name; it would return true if any certificate in the store had a DN and subject key identifier, if set matching that of the argument. It did not check that the cert it found and the ce...

9.3CVSS5.9AI score0.00249EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/04/07 9:12 p.m.25 views

CVE-2026-34580

CVE-2026-34580 affects Botan 3.11.0, where Certificate_Store::certificate_known could misidentify certificates during path validation. The function returned true when the DN (and subject key identifier, if set) matched the argument, without verifying the certificates were identical. A later path-...

9.3CVSS5.9AI score0.00249EPSS
Exploits0References4Affected Software1
AlpineLinux
AlpineLinux
added 2026/04/07 9:12 p.m.4 views

CVE-2026-34580

Botan is a C++ cryptography library. In 3.11.0, the function CertificateStore::certificateknown had a misleading name; it would return true if any certificate in the store had a DN and subject key identifier, if set matching that of the argument. It did not check that the cert it found and the ce...

9.3CVSS5.4AI score0.00249EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/04/07 12:0 a.m.7 views

PT-2026-31027

Name of the Vulnerable Software and Affected Versions Botan versions prior to 3.11.1 Description The Botan cryptography library contains a flaw in the Certificate Store::certificate known function. This function incorrectly identifies certificates, returning true if any certificate in the store h...

9.3CVSS5.9AI score0.00249EPSS
Exploits0References5
OSV
OSV
added 2026/04/07 12:0 a.m.4 views

UBUNTU-CVE-2026-31789

Issue summary: Converting an excessively large OCTET STRING value to a hexadecimal string leads to a heap buffer overflow on 32 bit platforms. Impact summary: A heap buffer overflow may lead to a crash or possibly an attacker controlled code execution or other undefined behavior. If an attacker c...

9.8CVSS6.5AI score0.00225EPSS
Exploits0References4
Rows per page
Query Builder