phpseclib before 2.0.31 and 3.x before 3.0.7 mishandles RSA PKCS#1 v1.5 signature verification.
7.5CVSS
7.3AI Score
0.003EPSS
Math/PrimeField.php in phpseclib 3.x before 3.0.19 has an infinite loop with composite primefields.
7.5CVSS
7.3AI Score
0.001EPSS
In Math/BinaryField.php in phpseclib 3 before 3.0.34, excessively large degrees can lead to a denial of service.
7.5CVSS
7.2AI Score
0.0005EPSS