| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-9860 | 5.0 |
An issue was discovered in Botan 1.11.32 through 2.x before 2.6.0. An off-by-one error when processing malformed TLS-CBC ciphertext could cause the receiving side to include in the HMAC computation exactly 64K bytes of data following the record buffe
|
03-10-2019 - 00:03 | 12-04-2018 - 05:29 | |
| CVE-2018-20187 | 4.3 |
A side-channel issue was discovered in Botan before 2.9.0. An attacker capable of precisely measuring the time taken for ECC key generation may be able to derive information about the high bits of the secret key, as the function to derive the public
|
12-03-2019 - 20:39 | 08-03-2019 - 19:29 | |
| CVE-2018-9127 | 7.5 |
Botan 2.2.0 - 2.4.0 (fixed in 2.5.0) improperly handled wildcard certificates and could accept certain certificates as valid for hostnames when, under RFC 6125 rules, they should not match. This only affects certificates issued to the same domain as
|
15-05-2018 - 16:16 | 02-04-2018 - 17:29 |