2 matches found
CVE-2025-13470
creationtimestamp| type| source ---|---|--- 2025-11-21 19:42:43+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m66247hppf2n...
CVE-2025-13470 RNP 0.18.0 Vulnerable PKESK session keys
In RNP version 0.18.0 a refactoring regression causes the symmetric session key used for Public-Key Encrypted Session Key PKESK packets to be left uninitialized except for zeroing, resulting in it always being an all-zero byte array. Any data encrypted using public-key encryption in this release...