Vulnerabilities > Relic Project
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-01 | CVE-2023-51939 | Injection vulnerability in Relic Project Relic 0.6.0 An issue in the cp_bbs_sig function in relic/src/cp/relic_cp_bbs.c of Relic relic-toolkit 0.6.0 allows a remote attacker to obtain sensitive information and escalate privileges via the cp_bbs_sig function. | 8.8 |
| 2023-09-01 | CVE-2023-36326 | Integer Overflow or Wraparound vulnerability in Relic Project Relic Integer Overflow vulnerability in RELIC before commit 34580d840469361ba9b5f001361cad659687b9ab, allows attackers to execute arbitrary code, cause a denial of service, and escalate privileges when calling realloc function in bn_grow function. | 9.8 |
| 2023-09-01 | CVE-2023-36327 | Integer Overflow or Wraparound vulnerability in Relic Project Relic Integer Overflow vulnerability in RELIC before commit 421f2e91cf2ba42473d4d54daf24e295679e290e, allows attackers to execute arbitrary code and cause a denial of service in pos argument in bn_get_prime function. | 9.8 |
| 2021-04-07 | CVE-2020-36316 | Classic Buffer Overflow vulnerability in Relic Project Relic In RELIC before 2021-04-03, there is a buffer overflow in PKCS#1 v1.5 signature verification because garbage bytes can be present. | 5.5 |
| 2021-04-07 | CVE-2020-36315 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Relic Project Relic In RELIC before 2020-08-01, RSA PKCS#1 v1.5 signature forgery can occur because certain checks of the padding (and of the first two bytes) are inadequate. | 5.3 |