Lucene search
K

6 matches found

EUVD
EUVD
added 2026/04/16 12:54 a.m.10 views

EUVD-2026-23135

Yubico libfido2 before 1.17.0, python-fido2 before 2.2.0, and yubikey-manager before 5.9.1 have an unintended DLL search path...

2.9CVSS5.8AI score0.00131EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:21 a.m.4 views

SUSE CVE-2018-20340

Yubico libu2f-host 1.1.6 contains unchecked buffers in devs.c, which could enable a malicious token to exploit a buffer overflow. An attacker could use this to attempt to execute malicious code using a crafted USB device masquerading as a security token on a computer where the affected library is...

6.4CVSS7.5AI score0.00499EPSS
Exploits0References10
SUSE CVE
SUSE CVE
added 2023/02/15 3:58 a.m.8 views

SUSE CVE-2020-13132

An issue was discovered in Yubico libykpiv before 2.1.0. An attacker can trigger an incorrect free in the ykpivutilgeneratekey function in lib/util.c through incorrect error handling code. This could be used to cause a denial of service attack...

4.6CVSS6.8AI score0.00638EPSS
Exploits1References3
OSV
OSV
added 2020/07/09 6:15 p.m.6 views

DEBIAN-CVE-2020-13132

An issue was discovered in Yubico libykpiv before 2.1.0. An attacker can trigger an incorrect free in the ykpivutilgeneratekey function in lib/util.c through incorrect error handling code. This could be used to cause a denial of service attack...

4.6CVSS4.8AI score0.00638EPSS
Exploits1References1
OSV
OSV
added 2020/02/11 2:52 p.m.2 views

USN-4276-1 Yubico PIV Tool vulnerabilities

It was discovered that libykpiv, a supporting library of the Yubico PIV Tool and YubiKey PIV Manager, mishandled specially crafted input. An attacker with a custom-made, malicious USB device could potentially execute arbitrary code on a computer running the Yubico PIV Tool or Yubikey PIV Manager...

7.2CVSS6.6AI score0.00486EPSS
Exploits1References3
OSV
OSV
added 2019/02/08 11:0 a.m.4 views

UBUNTU-CVE-2018-20340

Yubico libu2f-host 1.1.6 contains unchecked buffers in devs.c, which could enable a malicious token to exploit a buffer overflow. An attacker could use this to attempt to execute malicious code using a crafted USB device masquerading as a security token on a computer where the affected library is...

6.8CVSS7.3AI score0.00499EPSS
Exploits0References2
Rows per page
Query Builder