CVE-2026-13757
- EPSS 0.11%
- Veröffentlicht 29.06.2026 18:44:24
- Zuletzt bearbeitet 08.07.2026 03:34:36
A flaw was found in p11-kit. The RPC message attribute parsing functions p11_rpc_message_get_attribute() and p11_rpc_message_get_attribute_array_value() form a mutually-recursive call chain with no recursion depth limit when processing nested CKA_WRA...
CVE-2026-2100
- EPSS 1.16%
- Veröffentlicht 26.03.2026 20:01:46
- Zuletzt bearbeitet 07.07.2026 15:16:43
A flaw was found in p11-kit. A remote attacker could exploit this vulnerability by calling the C_DeriveKey function on a remote token with specific IBM kyber or IBM btc derive mechanism parameters set to NULL. This could lead to the RPC-client attemp...
CVE-2020-29361
- EPSS 3.35%
- Veröffentlicht 16.12.2020 14:15:12
- Zuletzt bearbeitet 21.11.2024 05:23:54
An issue was discovered in p11-kit 0.21.1 through 0.23.21. Multiple integer overflows have been discovered in the array allocations in the p11-kit library and the p11-kit list command, where overflow checks are missing before calling realloc or callo...
CVE-2020-29362
- EPSS 2.26%
- Veröffentlicht 16.12.2020 14:15:12
- Zuletzt bearbeitet 21.11.2024 05:23:54
An issue was discovered in p11-kit 0.21.1 through 0.23.21. A heap-based buffer over-read has been discovered in the RPC protocol used by thep11-kit server/remote commands and the client library. When the remote entity supplies a byte array through a ...
CVE-2020-29363
- EPSS 3.52%
- Veröffentlicht 16.12.2020 14:15:12
- Zuletzt bearbeitet 21.11.2024 05:23:54
An issue was discovered in p11-kit 0.23.6 through 0.23.21. A heap-based buffer overflow has been discovered in the RPC protocol used by p11-kit server/remote commands and the client library. When the remote entity supplies a serialized byte array in ...