Noise-java Project Noise-java — known CVE vulnerabilities
Every CVE whose affected-product data names Noise-java Project Noise-java, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2020-25021 — CVSS 9.8 (critical): An issue was discovered in Noise-Java through 2020-08-27. ChaChaPolyCipherState.encryptWithAd() allows out-of-bounds access.
CVE-2020-25022 — CVSS 9.8 (critical): An issue was discovered in Noise-Java through 2020-08-27. AESGCMFallbackCipherState.encryptWithAd() allows out-of-bounds access.
CVE-2020-25023 — CVSS 9.8 (critical): An issue was discovered in Noise-Java through 2020-08-27. AESGCMOnCtrCipherState.encryptWithAd() allows out-of-bounds access.