V
Scaner-VS
ENRU
HomeCatalogSourcesCWECAPECATT&CKMitigationsProductsVendorsDocs
Back to catalog
BDU:2020-01481
BDU
Critical

Уязвимость криптографической библиотеки Python ECDSA связана с некорректной проверкой криптографической подписи. Эксплуатация уязвимости мо…

CVSS
9.1
Critical
EPSS
0.00
p0
Published
2020-01-01
Updated
2020-01-01
Description

Уязвимость криптографической библиотеки Python ECDSA связана с некорректной проверкой криптографической подписи. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, оказать воздействие на конфиденциальность и целостность защищаемой информации

Tags · CWE
Pre-auth
Affected products
Novell inc. Hpe helion openstackNovell inc. Hpe helion openstackNovell inc. Hpe helion openstackNovell inc. Hpe helion openstackNovell inc. Hpe helion openstackNovell inc. Suse caas platformNovell inc. Suse caas platformNovell inc. Suse caas platformNovell inc. Suse caas platformNovell inc. Suse caas platformNovell inc. Suse enterprise storageNovell inc. Suse enterprise storageNovell inc. Suse enterprise storageNovell inc. Suse enterprise storageNovell inc. Suse enterprise storageNovell inc. Suse linux enterprise module for additional packagehubNovell inc. Suse linux enterprise module for additional packagehubNovell inc. Suse linux enterprise module for additional packagehubNovell inc. Suse linux enterprise module for additional packagehubNovell inc. Suse linux enterprise module for additional packagehub
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Timeline
2020-01-01
Published
2020-01-01
Updated
CVSS 3.1 breakdown
Attack Vector
AV: N
Network (N)
Attack Complexity
AC: L
Low (L)
Privileges Required
PR: N
None (N)
User Interaction
UI: N
None (N)
Scope
S: U
Unchanged (U)
Confidentiality Impact
C: H
High (H)
Integrity Impact
I: H
High (H)
Availability Impact
A: N
None (N)
Exploit indicators
EPSS
0.000 · p0
Known exploited (KEV)
No
Known exploits — Сканер-ВС
No Сканер-ВС checks registered for this vulnerability yet.
Affected products
Сообщество Свободного Программного Обеспечения
Python-ecdsa
Novell
Suse Linux Enterprise Module For BasesystemSuse Enterprise StorageSuse Linux Enterprise Module For Development ToolsSuse Manager ServerSuse Linux Enterprise Module For Public CloudSuse Openstack CloudSuse Caas PlatformHpe Helion OpenstackSuse Linux Enterprise Module For Additional Packagehub
ProductVendorStatus
hpe helion openstacknovell inc.Tracked
hpe helion openstacknovell inc.Tracked
hpe helion openstacknovell inc.Tracked
hpe helion openstacknovell inc.Tracked
hpe helion openstacknovell inc.Tracked
suse caas platformnovell inc.Tracked
suse caas platformnovell inc.Tracked
suse caas platformnovell inc.Tracked
suse caas platformnovell inc.Tracked
suse caas platformnovell inc.Tracked
suse enterprise storagenovell inc.Tracked
suse enterprise storagenovell inc.Tracked
suse enterprise storagenovell inc.Tracked
suse enterprise storagenovell inc.Tracked
suse enterprise storagenovell inc.Tracked
suse linux enterprise module for additional packagehubnovell inc.Tracked
suse linux enterprise module for additional packagehubnovell inc.Tracked
suse linux enterprise module for additional packagehubnovell inc.Tracked
suse linux enterprise module for additional packagehubnovell inc.Tracked
suse linux enterprise module for additional packagehubnovell inc.Tracked
Showing first 20 of 80
Source databases
BDU
Related vulnerabilities
CVE-2019-14859