Pycryptodome
Products by Pycryptodome Sorted by Most Security Vulnerabilities since 2018
By the Year
In 2024 there have been 1 vulnerability in Pycryptodome with an average score of 5.9 out of ten. Pycryptodome did not have any published security vulnerabilities last year. That is, 1 more vulnerability have already been reported in 2024 as compared to last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 1 | 5.90 |
| 2023 | 0 | 0.00 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 1 | 7.50 |
It may take a day or so for new Pycryptodome vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Pycryptodome Security Vulnerabilities
PyCryptodome and pycryptodomex before 3.19.1
CVE-2023-52323
5.9 - Medium
- January 05, 2024
PyCryptodome and pycryptodomex before 3.19.1 allow side-channel leakage for OAEP decryption, exploitable for a Manger attack.
Side Channel Attack
PyCryptodome before 3.6.6 has an integer overflow in the data_len variable in AESNI.c
CVE-2018-15560
7.5 - High
- August 20, 2018
PyCryptodome before 3.6.6 has an integer overflow in the data_len variable in AESNI.c, related to the AESNI_encrypt and AESNI_decrypt functions, leading to the mishandling of messages shorter than 16 bytes.
Integer Overflow or Wraparound