CVE-2026-3338 | Amazon AWS-LC up to 1.68.x PKCS7_verify signature verification (GHSA-jchq-39cv-q4wj)

Inserito da Angelo Barbosa | Mar 3, 2026 | CVE

A vulnerability was found in Amazon AWS-LC up to 1.68.x and classified as problematic. The impacted element is the function PKCS7_verify. Executing a manipulation can lead to improper verification of cryptographic signature.

This vulnerability is registered as CVE-2026-3338. It is possible to launch the attack remotely. No exploit is available.

It is suggested to upgrade the affected component.

CVE-2026-3338 | Amazon AWS-LC up to 1.68.x PKCS7_verify signature verification (GHSA-jchq-39cv-q4wj)

Post correlati

CVE-2023-41334 | Astropy 5.3.2 TranformGraph.to_dot_graph savelayout command injection

CVE-2022-48699 | Linux Kernel up to 5.15.67/5.19.8 debugfs_lookup memory leak (26e9a1ded892/0c32a93963e0/c2e406596571)

CVE-2024-41358 | phpipam 1.6 import-load-data.php cross site scripting

CVE-2025-0899 | Tracker Software PDF-XChange Editor use after free