CVE-2026-23967 | JuneAndGreen sm-crypto up to 0.3.13 SM2 Signed Message signature verification (GHSA-qv7w-v773-3xqm)

Inserito da Angelo Barbosa | Gen 22, 2026 | CVE

A vulnerability classified as problematic has been found in JuneAndGreen sm-crypto up to 0.3.13. This impacts an unknown function of the component SM2 Signed Message Handler. Performing a manipulation results in improper verification of cryptographic signature.

This vulnerability is known as CVE-2026-23967. Remote exploitation of the attack is possible. No exploit is available.

It is recommended to upgrade the affected component.

CVE-2026-23967 | JuneAndGreen sm-crypto up to 0.3.13 SM2 Signed Message signature verification (GHSA-qv7w-v773-3xqm)

Post correlati

CVE-2024-51704 | Hanusek imPress Plugin up to 0.1.4 on WordPress cross site scripting

CVE-2023-53866 | Linux Kernel up to 5.15.98/6.1.15/6.2.2 soc-compress denial of service

CVE-2025-60291 | eTimeTrackLite Web up to 12.0 permission

CVE-2024-1129 | NEX-Forms Form Builder Plugin up to 8.5.6 on WordPress set_starred authorization