EUVD-2023-0302

Malicious code in bioql PyPI...

CVE-2023-48051

An issue in /upydev/keygen.py in upydev v0.4.3 allows attackers to decrypt sensitive information via weak encryption padding...

GHSA-QC4J-HRJ6-CPPF upydev has weak encryption padding

An issue in /upydev/keygen.py in upydev v0.4.3 allows attackers to decrypt sensitive information via weak encryption padding...

upydev has weak encryption padding

An issue in /upydev/keygen.py in upydev v0.4.3 allows attackers to decrypt sensitive information via weak encryption padding...

upydevice (>=0.0.1 <=0.2.3) potentially affected by CVE-2023-48051 via upydev (>=0.1.7 <=0.3.3)

upydev PYPI version =0.1.7, =0.0.1, =0.2.3 Source cves: CVE-2023-48051 Source advisory: OSV:GHSA-QC4J-HRJ6-CPPF...

CVE-2023-48051

An issue in /upydev/keygen.py in upydev v0.4.3 allows attackers to decrypt sensitive information via weak encryption padding...

PYSEC-2023-302

An issue in /upydev/keygen.py in upydev v0.4.3 allows attackers to decrypt sensitive information via weak encryption padding...

upydevice (>=0.0.1 <=0.2.3) potentially affected by CVE-2023-48051 via upydev (>=0.1.7 <=0.3.3)

upydev PYPI version =0.1.7, =0.0.1, =0.2.3 Source cves: CVE-2023-48051 Source advisory: OSV:PYSEC-2023-302...

CVE-2023-48051

An issue in /upydev/keygen.py in upydev v0.4.3 allows attackers to decrypt sensitive information via weak encryption padding...

uPydev Security Vulnerabilities

uPydev is a command line tool by the individual developer Carglglz. A security vulnerability exists in uPydev version v0.4.3. An attacker exploited the vulnerability to decrypt sensitive information via weak cryptographic padding...

CVE-2023-48051

CVE-2023-48051 affects upydev v0.4.3 in /upydev/keygen.py. The issue is weak encryption padding (PKCS1v1.5) that could allow an attacker to decrypt sensitive information, with Bleichenbacher-style implications. CVSS v3.1 base score 7.5 (HIGH); attack vector network, no privileges required, no use...