Skip to main content

Rsa

3 CVEs product

Monthly

CVE-2026-21895 Cargo MEDIUM PATCH This Month

The RSA crate versions prior to 0.9.10 crash when constructing private keys with invalid prime components (such as 1), allowing an attacker to trigger a denial of service by providing malformed key material. This affects applications using the vulnerable RSA library for cryptographic operations. A patch is available in version 0.9.10 and later.

Industrial Rsa Red Hat Suse
NVD GitHub
CVSS 3.1
5.3
EPSS
0.0%
CVE-2023-49092 Cargo MEDIUM This Month

RustCrypto/RSA is a portable RSA implementation in pure Rust. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Rsa
NVD GitHub
CVSS 3.1
5.9
EPSS
0.6%
CVE-2016-1494 PyPI MEDIUM POC PATCH This Month

The verify function in the RSA package for Python (Python-RSA) before 3.3 allows attackers to spoof signatures with a small public exponent via crafted signature padding, aka a BERserk attack. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Python Information Disclosure Rsa Fedora Leap +1
NVD
CVSS 3.0
5.3
EPSS
3.1%
EPSS 0% CVSS 5.3
MEDIUM PATCH This Month

The RSA crate versions prior to 0.9.10 crash when constructing private keys with invalid prime components (such as 1), allowing an attacker to trigger a denial of service by providing malformed key material. This affects applications using the vulnerable RSA library for cryptographic operations. A patch is available in version 0.9.10 and later.

Industrial Rsa Red Hat +1
NVD GitHub
EPSS 1% CVSS 5.9
MEDIUM This Month

RustCrypto/RSA is a portable RSA implementation in pure Rust. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Rsa
NVD GitHub
EPSS 3% CVSS 5.3
MEDIUM POC PATCH This Month

The verify function in the RSA package for Python (Python-RSA) before 3.3 allows attackers to spoof signatures with a small public exponent via crafted signature padding, aka a BERserk attack. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Python Information Disclosure Rsa +3
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy