Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2024/01/16 9:44 p.m.5 views

CVE-2024-22192 Ursa CL-Signatures Revocation allows verifiers to generate unique identifiers for holders

Ursa is a cryptographic library for use with blockchains. The revocation scheme that is part of the Ursa CL-Signatures implementations has a flaw that could impact the privacy guarantees defined by the AnonCreds verifiable credential model. Notably, a malicious verifier may be able to generate a...

6.5CVSS7AI score0.00317EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/01/16 9:44 p.m.33 views

CVE-2024-22192 Ursa CL-Signatures Revocation allows verifiers to generate unique identifiers for holders

Ursa is a cryptographic library for use with blockchains. The revocation scheme that is part of the Ursa CL-Signatures implementations has a flaw that could impact the privacy guarantees defined by the AnonCreds verifiable credential model. Notably, a malicious verifier may be able to generate a...

6.5CVSS6.6AI score0.00317EPSS
Exploits0References1
OSV
OSV
added 2024/01/16 9:44 p.m.29 views

CVE-2024-21670 CL-Signatures Revocation Scheme in Ursa has flaws that allow a holder to demonstrate non-revocation of a revoked credential

Ursa is a cryptographic library for use with blockchains. The revocation schema that is part of the Ursa CL-Signatures implementations has a flaw that could impact the privacy guarantees defined by the AnonCreds verifiable credential model, allowing a malicious holder of a revoked credential to...

6.5CVSS7.8AI score0.00276EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/01/16 9:44 p.m.20 views

CVE-2024-21670 CL-Signatures Revocation Scheme in Ursa has flaws that allow a holder to demonstrate non-revocation of a revoked credential

Ursa is a cryptographic library for use with blockchains. The revocation schema that is part of the Ursa CL-Signatures implementations has a flaw that could impact the privacy guarantees defined by the AnonCreds verifiable credential model, allowing a malicious holder of a revoked credential to...

6.5CVSS6.7AI score0.00276EPSS
Exploits0References1
Rows per page
Query Builder