Security Intel Hub 6+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Filter

KEV only

Verified PoC

Clear filters

Medium

CVE-2026-24850: ml-dsa Signature Verification Accepts Repeated Hint Indices

GHSA-5x2r-hc65-25f9 · github.com · 2026-01-28

ml-dsa v0.1.0-rc.3 and below

High

ml-dsa signature decoding logic fix and boundary value handling vulnerability analysis

github.com · 2026-01-28

ml-dsa v0.2.0-rc.3 · ml-dsa v0.7.0-rc.0

High

GHSA-j9xq-69pf-pcm8: DoS in SM2-PKE decrypt() via Insufficient Length Validation

GHSA-j9xq-69pf-pcm8 · github.com · 2026-01-20

SM2-PKE 0.14.0-rc.0 · SM2-PKE 0.14.0-pre.0

Critical

CVE-2026-22698: sm2 library SM2 encryption nonce entropy flaw

CVE-2026-22698 · github.com · 2026-01-20

sm2 0.14.0-rc.0 · sm2 0.14.0-pre.0

Medium

Timing Side-Channel Vulnerability in ML-DSA Decompose Algorithm (CVE-2026-22705)

CVE-2026-22705 · github.com · 2026-01-20

RustCrypto/signatures <v0.1.0-rc.2

High

RustCrypto/utils: Fix non-constant-time cmovnz on thumbv6m

github.com · 2026-01-20

RustCrypto/utils v0.1.0-pre.0

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.

Goal Reached Thanks to every supporter — we hit 100%!

Security Intel Hub 6+

CVE-2026-24850: ml-dsa Signature Verification Accepts Repeated Hint Indices

ml-dsa signature decoding logic fix and boundary value handling vulnerability analysis

GHSA-j9xq-69pf-pcm8: DoS in SM2-PKE decrypt() via Insufficient Length Validation

CVE-2026-22698: sm2 library SM2 encryption nonce entropy flaw

Timing Side-Channel Vulnerability in ML-DSA Decompose Algorithm (CVE-2026-22705)

RustCrypto/utils: Fix non-constant-time cmovnz on thumbv6m