CVE-2019-14853
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2019-14853
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
An error-handling flaw was found in python-ecdsa before version 0.13.3. During signature decoding, malformed DER signatures could raise unexpected exceptions (or no exceptions at all), which could lead to a denial of service.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
未经检查的错误条件
Source: NVD (National Vulnerability Database)
Vulnerability Title
python-ecdsa 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
python-ecdsa是一款基于Python的签名验证插件。 python-ecdsa 0.13.3之前版本中存在安全漏洞。攻击者可借助畸形的DER签名利用该漏洞造成拒绝服务。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| [UNKNOWN] | python-ecdsa | 0.13.3 | - |
II. Public POCs for CVE-2019-14853
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2019-14853
请登录查看更多情报信息。
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14853x_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2019-14853
Same Patch Batch · [UNKNOWN] · 2019-11-26 · 5 CVEs total
| CVE-2019-14842 | libnbd 输入验证错误漏洞 | |
| CVE-2019-14856 | Ansible 授权问题漏洞 | |
| CVE-2019-14857 | ZmartZone IAM mod_auth_openidc 输入验证错误漏洞 | |
| CVE-2019-14890 | Ansible Tower 安全漏洞 |
IV. Related Vulnerabilities
Same weakness: CWE-391
- CVE-2024-52316
Apache Tomcat: Authentication bypass when using Jakarta Auth - CVE-2022-20849
Cisco IOS XR Software Broadband Network Gateway PPPoE Denial - CVE-2024-23326
Envoy incorrectly accepts HTTP 200 response for entering upg - CVE-2023-32871
MediaTek 芯片 安全漏洞 - CVE-2023-0572
Unchecked Error Condition in froxlor/froxlor
V. Comments for CVE-2019-14853
No comments yet