Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libtomcrypt vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv2
CVE-2019-17362
In LibTomCrypt up to and including 1.18.2, the der_decode_utf8_string function (in der_decode_utf8_string.c) does not properly detect certain invalid UTF-8 sequences. This allows context-dependent malicious users to cause a denial of service (out-of-bounds read and crash) or read...
Libtom Libtomcrypt
Debian Debian Linux 8.0
1.9
CVSSv2
CVE-2018-12437
LibTomCrypt up to and including 1.18.1 allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual machine on the same p...
Libtom Libtomcrypt
Linaro Op-tee
5
CVSSv2
CVE-2017-1000412
Linaro's open source TEE solution called OP-TEE, version 2.4.0 (and older) is vulnerable to the bellcore attack in the LibTomCrypt code resulting in compromised private RSA key.
Linaro Op-tee
4.3
CVSSv2
CVE-2016-10335
In all Android releases from CAF using the Linux kernel, libtomcrypt was updated.
Google Android
7.5
CVSSv2
CVE-2005-1600
A "mathematical flaw" in the implementation of the El Gamal signature algorithm for LibTomCrypt 1.0 to 1.0.2 allows malicious users to generate valid signatures without having the private key.
Libtomcrypt Libtomcrypt 1.0
Libtomcrypt Libtomcrypt 1.0.1
Libtomcrypt Libtomcrypt 1.0.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907
hardcoded
inject
CVE-2024-20359
CVE-2024-2467
CVE-2024-4077
CVE-2024-22391
camera
CVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started