Lucene search
K

22 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/20 12:0 a.m.10 views

Amazon Linux 2023 : runfinch-finch (ALAS2023-2026-1671)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1671 advisory. SSH clients receiving SSHAGENTSUCCESS when expecting a typed response will panic and cause early termination of the client process. CVE-2025-47913 Arithmetic over induction variables in loops...

9.8CVSS7.4AI score0.00621EPSS
Exploits1References22
Tenable Nessus
Tenable Nessus
added 2026/04/30 12:0 a.m.10 views

Amazon Linux 2 : containerd, --advisory ALAS2DOCKER-2026-112 (ALASDOCKER-2026-112)

The version of containerd installed on the remote host is prior to 2.1.7-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2DOCKER-2026-112 advisory. Arithmetic over induction variables in loops were not correctly checked for underflow or overflow in the Go compil...

9.8CVSS6.8AI score0.00651EPSS
Exploits0References22
OSV
OSV
added 2026/03/27 11:57 a.m.19 views

CLSA-2026-1774612633 gnupg2: Fix of CVE-2025-30258

CVE-2025-30258: fix verification DoS due to a malicious subkey in the keyring...

4.7CVSS5.8AI score0.00179EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2026/01/31 12:0 a.m.3 views

EulerOS Virtualization 2.10.0 : gnupg2 (EulerOS-SA-2026-1168)

According to the versions of the gnupg2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : In GnuPG before 2.5.5, if a user chooses to import a certificate with certain crafted subkey data that lacks a valid backsig or that...

4.7CVSS6AI score0.00179EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/12/09 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: gnupg2 (UTSA-2025-991107)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991107 advisory. In GnuPG before 2.5.5, if a user chooses to import a certificate with certain crafted subkey data that lacks a valid backsig or that has incorrect usage flags, the...

4.7CVSS5.9AI score0.00179EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-6762

Malicious code in bioql PyPI...

2.7CVSS4.1AI score0.00179EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/09/16 12:0 a.m.4 views

EulerOS Virtualization 2.13.1 : gnupg2 (EulerOS-SA-2025-2162)

According to the versions of the gnupg2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : In GnuPG before 2.5.5, if a user chooses to import a certificate with certain crafted subkey data that lacks a valid backsig or that...

4.7CVSS6AI score0.00179EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.6 views

EulerOS 2.0 SP10 : gnupg2 (EulerOS-SA-2025-2095)

According to the versions of the gnupg2 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In GnuPG before 2.5.5, if a user chooses to import a certificate with certain crafted subkey data that lacks a valid backsig or that has incorrect...

4.7CVSS6AI score0.00179EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2025/09/10 12:0 a.m.3 views

Huawei EulerOS: Security Advisory for gnupg2 (EulerOS-SA-2025-2095)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.7CVSS4.3AI score0.00179EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.4 views

EulerOS 2.0 SP12 : gnupg2 (EulerOS-SA-2025-2006)

According to the versions of the gnupg2 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In GnuPG before 2.5.5, if a user chooses to import a certificate with certain crafted subkey data that lacks a valid backsig or that has incorrect...

4.7CVSS6AI score0.00179EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-30258

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In GnuPG before 2.5.5, if a user chooses to import a certificate with certain crafted subkey data that lacks a valid backsig or that has incorrect usage flags,...

4.7CVSS4.9AI score0.00179EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2025/04/14 12:0 a.m.5 views

Mageia: Security Advisory (MGASA-2025-0133)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.7CVSS4.4AI score0.00179EPSS
Exploits1References4
OSV
OSV
added 2025/04/12 4:23 a.m.9 views

MGASA-2025-0133 Updated gnupg2 packages fix security vulnerability

In GnuPG before 2.5.5, if a user chooses to import a certificate with certain crafted subkey data that lacks a valid backsig or that has incorrect usage flags, the user loses the ability to verify signatures made from certain other signing keys, aka a "verification DoS". CVE-2025-30258...

4.7CVSS6.2AI score0.00179EPSS
Exploits1References3
Mageia
Mageia
added 2025/04/12 4:23 a.m.41 views

Updated gnupg2 packages fix security vulnerability

In GnuPG before 2.5.5, if a user chooses to import a certificate with certain crafted subkey data that lacks a valid backsig or that has incorrect usage flags, the user loses the ability to verify signatures made from certain other signing keys, aka a "verification DoS". CVE-2025-30258...

4.7CVSS6.1AI score0.00179EPSS
Exploits1References2
OSV
OSV
added 2025/03/19 8:15 p.m.10 views

CVE-2025-30258

In GnuPG before 2.5.5, if a user chooses to import a certificate with certain crafted subkey data that lacks a valid backsig or that has incorrect usage flags, the user loses the ability to verify signatures made from certain other signing keys, aka a "verification DoS."...

4.7CVSS6.7AI score
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/03/19 12:0 a.m.6 views

CVE-2025-30258

In GnuPG before 2.5.5, if a user chooses to import a certificate with certain crafted subkey data that lacks a valid backsig or that has incorrect usage flags, the user loses the ability to verify signatures made from certain other signing keys, aka a "verification DoS."...

2.7CVSS3.9AI score0.00179EPSS
Exploits1References3
AlpineLinux
AlpineLinux
added 2025/03/19 12:0 a.m.8 views

CVE-2025-30258

In GnuPG before 2.5.5, if a user chooses to import a certificate with certain crafted subkey data that lacks a valid backsig or that has incorrect usage flags, the user loses the ability to verify signatures made from certain other signing keys, aka a "verification DoS."...

4.7CVSS7.2AI score0.00179EPSS
Exploits1References3
CVE
CVE
added 2025/03/19 12:0 a.m.135 views

CVE-2025-30258

In GNUPG before 2.5.5, importing a certificate with crafted subkey data that lacks a valid backsig or has incorrect usage flags can cause a verification DoS, disabling signature verification for certain other signing keys. This CVE affects GnuPG’s subkey import handling; impact is limited to sign...

4.7CVSS3.9AI score0.00179EPSS
Exploits1References3Affected Software1
Debian CVE
Debian CVE
added 2025/03/19 12:0 a.m.5 views

CVE-2025-30258

In GnuPG before 2.5.5, if a user chooses to import a certificate with certain crafted subkey data that lacks a valid backsig or that has incorrect usage flags, the user loses the ability to verify signatures made from certain other signing keys, aka a "verification DoS."...

4.7CVSS4.6AI score0.00179EPSS
Exploits1
Cvelist
Cvelist
added 2025/03/19 12:0 a.m.14 views

CVE-2025-30258

In GnuPG before 2.5.5, if a user chooses to import a certificate with certain crafted subkey data that lacks a valid backsig or that has incorrect usage flags, the user loses the ability to verify signatures made from certain other signing keys, aka a "verification DoS."...

2.7CVSS0.00179EPSS
Exploits1References3
Rows per page
Query Builder