CVE-2024-26130 | pyca cryptography up to 42.0.3 PrivateFormat.PKCS12.encryption_builder.hmac_hash null pointer dereference

Inserito da Angelo Barbosa | Feb 21, 2024 | CVE

A vulnerability has been found in pyca cryptography up to 42.0.3 and classified as problematic. Affected by this vulnerability is the function PrivateFormat.PKCS12.encryption_builder.hmac_hash. The manipulation leads to null pointer dereference.

This vulnerability is known as CVE-2024-26130. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-26130 | pyca cryptography up to 42.0.3 PrivateFormat.PKCS12.encryption_builder.hmac_hash null pointer dereference

Post correlati

CVE-2024-34013 | Acronis True Image up to 41395 on macOS os command injection

CVE-2024-8803 | Bulk NoIndex & NoFollow Toolkit Plugin up to 2.15 on WordPress cross site scripting

CVE-2024-1018 | PbootCMS 3.2.5-20230421 name cross site scripting

CVE-2024-30592 | Tenda FH1202 1.2.0.14(408) /goform/addressNat fromAddressNat page stack-based overflow