Every CVE whose affected-product data names Gnupg Libksba, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2022-3515 — CVSS 9.8 (critical): A vulnerability was found in the Libksba library due to an integer overflow within the CRL parser. The vulnerability can be exploited…
CVE-2016-4354 — CVSS 7.5 (high): ber-decoder.c in Libksba before 1.3.3 uses an incorrect integer data type, which allows remote attackers to cause a denial of service…
CVE-2016-4355 — CVSS 7.5 (high): Multiple integer overflows in ber-decoder.c in Libksba before 1.3.3 allow remote attackers to cause a denial of service (crash) via crafted…
CVE-2014-9087 — CVSS 7.5 (high): Integer underflow in the ksba_oid_to_str function in Libksba before 1.3.2, as used in GnuPG, allows remote attackers to cause a denial of…
CVE-2016-4574 — CVSS 7.5 (high): Off-by-one error in the append_utf8_value function in the DN decoder (dn.c) in Libksba before 1.3.4 allows remote attackers to cause a…
CVE-2016-4579 — CVSS 7.5 (high): Libksba before 1.3.4 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via unspecified vectors, related…
CVE-2016-4356 — CVSS 7.5 (high): The append_utf8_value function in the DN decoder (dn.c) in Libksba before 1.3.3 allows remote attackers to cause a denial of service…
CVE-2016-4353 — CVSS 7.5 (high): ber-decoder.c in Libksba before 1.3.3 does not properly handle decoder stack overflows, which allows remote attackers to cause a denial of…