Browse and filter security vulnerabilities across ecosystems
Browse and filter security vulnerabilities across ecosystems
CMS AuthEnvelopedData Processing May Accept Forged Messages
PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys
Missing integrity verification in Triton inference handler in Amazon SageMaker Python SDK
Lockfile checksums not verified in Hex allows dependency integrity bypass
SP1 V6 Recursion Circuit Row-Count Binding Gap
xrdp: RDP MAC signature (dataSignature) never verified on receive — integrity bypass in non-TLS mode
wolfSSL EVP ChaCha20-Poly1305 AEAD authentication tag
PKCS7 CBC Padding Oracle — Plaintext Recovery
Lack of Dynamic Library Validation in SzafirHost
nginx-ui Backup Restore Allows Tampering with Encrypted Backups
Cryptomator for Android: Tampered vault configuration allows MITM attack on Hub API
Cryptomator for IOS: Tampered vault configuration allows MITM attack on Hub API
Cryptomator: Tampered vault configuration allows MITM attack on Hub API
Authlib: Fail-Open Cryptographic Verification in OIDC Hash Binding
xml-security is Missing AES-GCM Authentication Tag Validation on Encrypted Nodes Allows for Unauthorized Decryption
xmlseclibs is Missing AES-GCM Authentication Tag Validation on Encrypted Nodes Allows for Unauthorized Decryption
Striae has a hash validation utility vulnerability
nimiq/core-rs-albatross's nimiq-blockchain missing proposal body root verification
httpsig-hyper has Improper Digest Verification that May Allow Message Integrity Bypass
go-git improperly verifies data integrity values for .idx and .pack files
Showing 1 - 20 of 1,000+ results