Every CVE whose affected-product data names Dlitz Pycrypto, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2013-7459 — CVSS 9.8 (critical): Heap-based buffer overflow in the ALGnew function in block_templace.c in Python Cryptography Toolkit (aka pycrypto) allows remote attackers…
CVE-2018-6594 — CVSS 7.5 (high): lib/Crypto/PublicKey/ElGamal.py in PyCrypto through 2.6.1 generates weak ElGamal key parameters, which allows attackers to obtain sensitive…
CVE-2012-2417 — CVSS 4.3 (medium): PyCrypto before 2.6 does not produce appropriate prime numbers when using an ElGamal scheme to generate a key, which reduces the signature…
CVE-2013-1445 — CVSS 4.3 (medium): The Crypto.Random.atfork function in PyCrypto before 2.6.1 does not properly reseed the pseudo-random number generator (PRNG) before…