Skip to main content

Openpubkey

2 CVEs product

Monthly

CVE-2025-4658 Go CRITICAL PATCH Act Now

Versions of OpenPubkey library prior to 0.10.0 contained a vulnerability that would allow a specially crafted JWS to bypass signature verification. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Openpubkey Opkssh Suse
NVD GitHub
CVSS 4.0
9.3
EPSS
0.2%
CVE-2025-3757 Go CRITICAL PATCH Act Now

Versions of OpenPubkey library prior to 0.10.0 contained a vulnerability that would allow a specially crafted JWS to bypass signature verification. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Openpubkey Suse
NVD GitHub
CVSS 4.0
9.3
EPSS
0.2%
EPSS 0% CVSS 9.3
CRITICAL PATCH Act Now

Versions of OpenPubkey library prior to 0.10.0 contained a vulnerability that would allow a specially crafted JWS to bypass signature verification. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Openpubkey Opkssh +1
NVD GitHub
EPSS 0% CVSS 9.3
CRITICAL PATCH Act Now

Versions of OpenPubkey library prior to 0.10.0 contained a vulnerability that would allow a specially crafted JWS to bypass signature verification. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Openpubkey Suse
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy