Browse all 11 CVE security advisories affecting trailofbits. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Trail of Bits provides security auditing, penetration testing, and vulnerability research services, focusing on securing critical infrastructure and software systems. Their vulnerability record primarily includes remote code execution, cross-site scripting, and privilege escalation flaws, often in complex applications and cryptographic implementations. The firm is known for its deep technical expertise and contributions to open-source security tools. While no major security incidents have been publicly attributed to the organization, their work frequently involves analyzing high-stakes systems in finance, blockchain, and government sectors. Their CVEs typically demonstrate sophisticated exploitation techniques in enterprise environments and custom cryptographic implementations.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-33753 | Improper Certificate Validation in rfc3161-client — rfc3161-clientCWE-295 | 6.2 | Medium | 2026-04-08 |
| CVE-2025-52556 | rfc3161-client has insufficient verification for timestamp response signatures — rfc3161-clientCWE-347 | 7.5AI | HighAI | 2025-06-21 |
This page lists every published CVE security advisory associated with trailofbits. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.