Lucene search
K

4 matches found

OSV
OSV
added 2022/08/19 11:4 a.m.5 views

OESA-2022-1847 gnupg2 security update

GnuPG is a complete and free implementation of the OpenPGP standard as defined by RFC4880 also known as PGP. GnuPG enables encryption and signing of data and communication, and features a versatile key management system as well as access modules for public key directories. Security Fixes: GnuPG...

6.5CVSS7.2AI score0.02551EPSS
Exploits1References2
Microsoft CVE
Microsoft CVE
added 2022/07/14 7:0 a.m.7 views

GnuPG through 2.3.6 in unusual situations where an attacker possesses any secret-key information from a victim's keyring and other constraints (e.g. use of GPGME) are met allows signature forgery via injection into the status line.

...

6.5CVSS7.2AI score0.02551EPSS
Exploits1
OSV
OSV
added 2022/07/01 10:15 p.m.1 views

DEBIAN-CVE-2022-34903

GnuPG through 2.3.6, in unusual situations where an attacker possesses any secret-key information from a victim's keyring and other constraints e.g., use of GPGME are met, allows signature forgery via injection into the status line...

6.5CVSS6.8AI score0.02551EPSS
Exploits1References1
CNNVD
CNNVD
added 2022/07/01 12:0 a.m.3 views

GnuPG 注入漏洞

GnuPG is a suite of open source cryptographic software from the GNU community under the GNU General Public License. The software supports public key, symmetric encryption, hashing, and other algorithms. Versions of GnuPG prior to 2.3.6 suffer from an injection vulnerability that stems from an...

6.5CVSS7.3AI score0.02551EPSS
Exploits1References45
Rows per page
Query Builder