CVE-2026-4541 | janmojzis tinyssh up to 20250501 Ed25519 Signature crypto_sign_ed25519_tinyssh.c signature verification (Issue 101)

Inserito da Angelo Barbosa | Mar 21, 2026 | CVE

A vulnerability was found in janmojzis tinyssh up to 20250501. It has been classified as problematic. Impacted is an unknown function of the file tinyssh/crypto_sign_ed25519_tinyssh.c of the component Ed25519 Signature Handler. This manipulation causes improper verification of cryptographic signature.

This vulnerability is tracked as CVE-2026-4541. The attack is restricted to local execution. Moreover, an exploit is present.

Upgrading the affected component is recommended.

CVE-2026-4541 | janmojzis tinyssh up to 20250501 Ed25519 Signature crypto_sign_ed25519_tinyssh.c signature verification (Issue 101)

Post correlati

CVE-2025-11591 | CodeAstro Gym Management System 1.0 delete-member.php ID sql injection

CVE-2024-41829 | JetBrains TeamCity up to 2024.03.3 OAuth unknown vulnerability

CVE-2025-49146 | pgjdbc up to 42.7.6 improper authentication (GHSA-hq9p-pm7w-8p54)

CVE-2023-38946 | Multilaser RE160V/RE163V 12.03.01.09_pt/12.03.01.10_pt Web Management Interface access control