Vulnerabilities > Gnupg > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-01-12 CVE-2022-3515 A vulnerability was found in the Libksba library due to an integer overflow within the CRL parser.
network
low complexity
gnupg gpg4win
critical
9.8
2022-12-20 CVE-2022-47629 Integer Overflow or Wraparound vulnerability in multiple products
Libksba before 1.6.3 is prone to an integer overflow vulnerability in the CRL signature parser.
network
low complexity
gnupg debian CWE-190
critical
9.8
2008-03-27 CVE-2008-1530 Resource Management Errors vulnerability in Gnupg 1.4.8/2.0.8
GnuPG (gpg) 1.4.8 and 2.0.8 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted duplicate keys that are imported from key servers, which triggers "memory corruption around deduplication of user IDs."
network
gnupg CWE-399
critical
9.3