CVE-2025-47934 | OpenPGP.js up to 5.11.2/6.1.0 signature verification (GHSA-8qff-qr5q-5pr8)

Inserito da Angelo Barbosa | Mag 19, 2025 | CVE

A vulnerability was found in OpenPGP.js up to 5.11.2/6.1.0. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to improper verification of cryptographic signature.

This vulnerability is handled as CVE-2025-47934. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-47934 | OpenPGP.js up to 5.11.2/6.1.0 signature verification (GHSA-8qff-qr5q-5pr8)

Post correlati

CVE-2024-13043 | Panda Security Dome 22.02.01 link following (ZDI-24-1727)

CVE-2025-27399 | Mastodon up to 4.1.22/4.2.15/4.3.3 information disclosure (GHSA-94h4-fj37-c825)

CVE-2024-24879 | Yannick Lefebvre Link Library Plugin up to 7.5.13 on WordPress cross site scripting

CVE-2025-30174 | Siemens SIMATIC PCS neo out-of-bounds (ssa-614723)