Pycryptodome
By the Year
In 2024 there have been 1 vulnerability in Pycryptodome with an average score of 5.9 out of ten. Pycryptodome did not have any published security vulnerabilities last year. That is, 1 more vulnerability have already been reported in 2024 as compared to last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 1 | 5.90 |
| 2023 | 0 | 0.00 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 1 | 7.50 |
It may take a day or so for new Pycryptodome vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Pycryptodome Security Vulnerabilities
PyCryptodome and pycryptodomex before 3.19.1
CVE-2023-52323
5.9 - Medium
- January 05, 2024
PyCryptodome and pycryptodomex before 3.19.1 allow side-channel leakage for OAEP decryption, exploitable for a Manger attack.
Side Channel Attack
PyCryptodome before 3.6.6 has an integer overflow in the data_len variable in AESNI.c
CVE-2018-15560
7.5 - High
- August 20, 2018
PyCryptodome before 3.6.6 has an integer overflow in the data_len variable in AESNI.c, related to the AESNI_encrypt and AESNI_decrypt functions, leading to the mishandling of messages shorter than 16 bytes.
Integer Overflow or Wraparound
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Pycryptodome or by Pycryptodome? Click the Watch button to subscribe.
