CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

51 matches found

RedhatCVE•added 2026/04/07 11:1 p.m.•2 views

CVE-2026-35199

SymCrypt is the core cryptographic function library currently used by Windows. From 103.5.0 to before 103.11.0, The SymCryptXmssSign function passes a 64-bit leaf count value to a helper function that accepts a 32-bit parameter. For XMSS^MT parameter sets with total tree height = 32 which include...

6.1CVSS6.1AI score0.00055EPSS

Exploits0References1

NVD•added 2026/04/06 8:16 p.m.•1 views

CVE-2026-35199

6.1CVSS0.00055EPSS

Exploits0References1

Vulnrichment•added 2026/04/06 7:44 p.m.•2 views

CVE-2026-35199 SymCrypt SymCryptXmssSign function - Heap overflow via 64->32-bit leaf-count truncation

6.1CVSS6.1AI score0.00055EPSS

Exploits0References1

CVE•added 2026/04/06 7:44 p.m.•6 views

CVE-2026-35199

Summary: CVE-2026-35199 affects the SymCrypt XMSS^MT signing path in Windows. A 64-bit leaf-count is passed to a 32-bit parameter helper, causing silent truncation to zero for XMSS^MT parameter sets with total tree height ≥ 32. This leads to an undersized scratch buffer and a heap buffer overflow...

6.1CVSS6.1AI score0.00055EPSS

Exploits0References1Affected Software1

Cvelist•added 2026/04/06 7:44 p.m.•17 views

CVE-2026-35199 SymCrypt SymCryptXmssSign function - Heap overflow via 64->32-bit leaf-count truncation

6.1CVSS0.00055EPSS

Exploits0References1

EUVD•added 2026/04/06 7:44 p.m.•4 views

EUVD-2026-19472

6.1CVSS6.1AI score0.00055EPSS

Exploits0References1

Positive Technologies•added 2026/04/06 12:0 a.m.•1 views

PT-2026-30723

6.1CVSS6.1AI score0.00055EPSS

Exploits0References2

CNNVD•added 2026/04/06 12:0 a.m.•2 views

Microsoft Windows SymCrypt 安全漏洞

Microsoft Windows SymCrypt is the core encryption function library currently used in Windows by Microsoft. Versions of Microsoft Windows SymCrypt from 103.5.0 to 103.11.0 contained security vulnerabilities. These vulnerabilities stemmed from issues with the SymCryptXmssSign function, where...

6.1CVSS5.9AI score0.00055EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2019-9742

Malware in sbrugna...

5.6CVSS6.8AI score0.00475EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2019-1614

Malware in sbrugna...

7.5CVSS8AI score0.0859EPSS

Exploits0References2

RedhatCVE•added 2025/05/22 4:12 a.m.•4 views

CVE-2019-0865

A denial of service vulnerability exists when SymCrypt improperly handles a specially crafted digital signature.An attacker could exploit the vulnerability by creating a specially crafted connection or message.The security update addresses the vulnerability by correcting the way SymCrypt handles...

7.5CVSS6.7AI score0.0859EPSS

Exploits0References1

The Hacker News•added 2024/09/17 12:22 p.m.•40 views

Google Chrome Switches to ML-KEM for Post-Quantum Cryptography Defense

Google has announced that it will be switching from KYBER to ML-KEM in its Chrome web browser as part of its ongoing efforts to defend against the risk posed by cryptographically relevant quantum computers CRQCs. "Chrome will offer a key share prediction for hybrid ML-KEM codepoint 0x11EC," David...

4.2CVSS7AI score0.00245EPSS

Exploits0

Schneier on Security•added 2024/09/12 3:42 p.m.•12 views

Microsoft Is Adding New Cryptography Algorithms

Microsoft is updating SymCrypt, its core cryptographic library, with new quantum-secure algorithms. Microsofts details are here. From a news article: The first new algorithm Microsoft added to SymCrypt is called ML-KEM. Previously known as CRYSTALS-Kyber, ML-KEM is one of three post-quantum...

7.3AI score

Exploits0

Kitploit•added 2022/07/15 12:30 p.m.•34 views

Dumpscan - Tool To Extract And Dump Secrets From Kernel And Windows Minidump Formats

Dumpscan is a command-line tool designed to extract and dump secrets from kernel and Windows Minidump formats. Kernel-dump parsing is provided by volatility3. Features x509 Public and Private key PKCS 8/PKCS 1 parsing SymCrypt parsing Supported structures SYMCRYPTRSAKEY - Determines if the key...

7.4AI score

Exploits0References13

NVD•added 2021/12/15 3:15 p.m.•20 views

CVE-2021-43228

SymCrypt Denial of Service Vulnerability...

7.8CVSS0.13056EPSS

Exploits0References1

OSV•added 2021/12/15 3:15 p.m.•0 views

CVE-2021-43228

SymCrypt Denial of Service Vulnerability...

7.5CVSS5.8AI score0.13056EPSS

Exploits0References1

Prion•added 2021/12/15 3:15 p.m.•28 views

Denial of service

SymCrypt Denial of Service Vulnerability...

7.8CVSS7.5AI score0.13056EPSS

Exploits0References1Affected Software3

EUVD•added 2021/12/15 2:15 p.m.•1 views

EUVD-2021-30172

SymCrypt Denial of Service Vulnerability...

7.8CVSS7.9AI score0.13056EPSS

Exploits0References1

CVE•added 2021/12/15 2:15 p.m.•94 views

CVE-2021-43228

CVE-2021-43228 is a SymCrypt Denial of Service vulnerability with a CVSS v3.1 base score of 7.5 (HIGH), vector AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H. The issue is described in multiple sources as a Denial of Service vulnerability and is associated with Microsoft’s SymCrypt component. The connected ...

7.8CVSS8.4AI score0.13056EPSS

Exploits0References1Affected Software5

Cvelist•added 2021/12/15 2:15 p.m.•29 views

CVE-2021-43228 SymCrypt Denial of Service Vulnerability

...

7.5CVSS8.8AI score0.13056EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by