Skip to main content

P5 Crypt Perl

2 CVEs product

Monthly

CVE-2020-17478 HIGH PATCH This Week

ECDSA/EC/Point.pm in Crypt::Perl before 0.33 does not properly consider timing attacks against the EC point multiplication algorithm. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure P5 Crypt Perl
NVD GitHub
CVSS 3.1
7.5
EPSS
1.1%
CVE-2020-13895 HIGH PATCH This Week

Crypt::Perl::ECDSA in the Crypt::Perl (aka p5-Crypt-Perl) module before 0.32 for Perl fails to verify correct ECDSA signatures when r and s are small and when s = 1. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Jwt Attack Information Disclosure P5 Crypt Perl
NVD GitHub
CVSS 3.1
8.8
EPSS
0.7%
EPSS 1% CVSS 7.5
HIGH PATCH This Week

ECDSA/EC/Point.pm in Crypt::Perl before 0.33 does not properly consider timing attacks against the EC point multiplication algorithm. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure P5 Crypt Perl
NVD GitHub
EPSS 1% CVSS 8.8
HIGH PATCH This Week

Crypt::Perl::ECDSA in the Crypt::Perl (aka p5-Crypt-Perl) module before 0.32 for Perl fails to verify correct ECDSA signatures when r and s are small and when s = 1. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Jwt Attack Information Disclosure P5 Crypt Perl
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy