Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dlitz pycrypto vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-2417
PyCrypto prior to 2.6 does not produce appropriate prime numbers when using an ElGamal scheme to generate a key, which reduces the signature space or public key space and makes it easier for malicious users to conduct brute force attacks to obtain the private key.
Dlitz Pycrypto 1.9
Dlitz Pycrypto 2.2
Dlitz Pycrypto 2.1.0
Dlitz Pycrypto 1.0.1
Dlitz Pycrypto 2.0.1
Dlitz Pycrypto 2.0
Dlitz Pycrypto 2.4.1
Dlitz Pycrypto 1.1
Dlitz Pycrypto 2.4
Dlitz Pycrypto
Dlitz Pycrypto 1.0.2
Dlitz Pycrypto 2.3
Dlitz Pycrypto 1.0.0
NA
CVE-2013-1445
The Crypto.Random.atfork function in PyCrypto prior to 2.6.1 does not properly reseed the pseudo-random number generator (PRNG) before allowing a child process to access it, which makes it easier for context-dependent malicious users to obtain sensitive information by leveraging ...
Dlitz Pycrypto
Dlitz Pycrypto 2.2
Dlitz Pycrypto 2.5
Dlitz Pycrypto 1.0.1
Dlitz Pycrypto 2.0.1
Dlitz Pycrypto 2.0
Dlitz Pycrypto 2.4.1
Dlitz Pycrypto 2.1.0
Dlitz Pycrypto 2.4
Dlitz Pycrypto 1.0.2
Dlitz Pycrypto 2.3
Dlitz Pycrypto 1.0.0
2 Github repositories
9.8
CVSSv3
CVE-2013-7459
Heap-based buffer overflow in the ALGnew function in block_templace.c in Python Cryptography Toolkit (aka pycrypto) allows remote malicious users to execute arbitrary code as demonstrated by a crafted iv parameter to cryptmsg.py.
Dlitz Pycrypto
Fedoraproject Fedora 25
Fedoraproject Fedora 24
7.5
CVSSv3
CVE-2018-6594
lib/Crypto/PublicKey/ElGamal.py in PyCrypto up to and including 2.6.1 generates weak ElGamal key parameters, which allows malicious users to obtain sensitive information by reading ciphertext data (i.e., it does not have semantic security in face of a ciphertext-only attack). The...
Dlitz Pycrypto
Debian Debian Linux 7.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 17.10
3 Github repositories
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started