← back
CVE-2021-30130

CVE-2021-30130

EPSS 1.1%
phpseclib before 2.0.31 and 3.x before 3.0.7 mishandles RSA PKCS#1 v1.5 signature verification.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/phpseclib/phpseclib/pull/1635https://github.com/phpseclib/phpseclib/releases/tag/2.0.31https://github.com/phpseclib/phpseclib/releases/tag/3.0.7https://lists.debian.org/debian-lts-announce/2022/11/msg00024.htmlhttps://lists.debian.org/debian-lts-announce/2022/11/msg00025.html