Pypinksign
1 CVEs
product
Monthly
PyPinkSign v0.5.1 uses a non-random or static IV for Cipher Block Chaining (CBC) mode in AES encryption. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Information Disclosure
Pypinksign
NVD
VulDB
CVSS 3.1
7.5
EPSS
0.5%
CVE-2023-48056
PyPI
EPSS 0%
CVSS 7.5
HIGH
This Week
PyPinkSign v0.5.1 uses a non-random or static IV for Cipher Block Chaining (CBC) mode in AES encryption. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Information Disclosure
Pypinksign
NVD
VulDB