Every CVE whose affected-product data names Libtom Libtomcrypt, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2019-17362 — CVSS 9.1 (critical): In LibTomCrypt through 1.18.2, the der_decode_utf8_string function (in der_decode_utf8_string.c) does not properly detect certain invalid…
CVE-2016-6129 — CVSS 7.5 (high): The rsa_verify_hash_ex function in rsa_verify_hash.c in LibTomCrypt, as used in OP-TEE before 2.2.0, does not validate that the message…
CVE-2018-12437 — CVSS 4.9 (medium): LibTomCrypt through 1.18.1 allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or…