Known Vulnerabilities for products from Nettle Project
Listed below are 8 of the newest known vulnerabilities associated with the vendor "Nettle Project".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-36660 json | The OCB feature in libnettle in Nettle 3.9 before 3.9.1 allows memory corruption. | 9.8 - CRITICAL | 2023-06-25 | 2023-07-03 |
| CVE-2021-20305 json | A flaw was found in Nettle in versions before 3.7.2, where several Nettle signature verification functions (GOST DSA, EDDSA &... | 8.1 - HIGH | 2021-04-05 | 2023-11-07 |
| CVE-2021-3580 json | A flaw was found in the way nettle's RSA decryption functions handled specially crafted ciphertext. An attacker could use thi... | 7.5 - HIGH | 2021-08-05 | 2024-01-16 |
| CVE-2018-16869 json | A Bleichenbacher type side-channel based padding oracle attack was found in the way nettle handles endian conversion of RSA d... | 5.7 - MEDIUM | 2018-12-03 | 2023-02-03 |
| CVE-2016-6489 json | The RSA and DSA decryption code in Nettle makes it easier for attackers to discover private keys via a cache side channel att... | 7.5 - HIGH | 2017-04-14 | 2020-11-16 |
| CVE-2015-8805 json | The ecc_256_modq function in ecc-256.c in Nettle before 3.2 does not properly handle carry propagation and produces incorrect... | 9.8 - CRITICAL | 2016-02-23 | 2018-10-30 |
| CVE-2015-8804 json | x86_64/ecc-384-modp.asm in Nettle before 3.2 does not properly handle carry propagation and produces incorrect output in its ... | 9.8 - CRITICAL | 2016-02-23 | 2018-10-30 |
| CVE-2015-8803 json | The ecc_256_modp function in ecc-256.c in Nettle before 3.2 does not properly handle carry propagation and produces incorrect... | 9.8 - CRITICAL | 2016-02-23 | 2018-10-30 |
Known software with vulnerabilities from Nettle Project
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Nettle Project | Nettle | - |