Latest version: v43.0.3
| CVE/PVE | Vulnerability ID | Advisory | Affected versions | Severity | Severity Score |
|---|---|---|---|---|---|
| CVE-2024-4603 | 71681 |
The `cryptography` library has updated its BoringSSL and OpenSSL depe… |
|
- | - |
| PVE-2024-65647 | 65647 |
Cryptography version 42.0.5 introduces a limit on the number of name … |
|
- | - |
| CVE-2024-0727 | 71680 |
The cryptography library has updated its OpenSSL dependency in CI due… |
|
MEDIUM | 5.5 |
| CVE-2023-50782 | 65278 |
Affected versions of Cryptography may allow a remote attacker to decr… |
|
HIGH | 7.5 |
| CVE-2023-5678 | 65510 |
Cryptography starting from version 42.0.0 updates its CI configuratio… |
|
MEDIUM | 5.3 |
| CVE-2023-5363 | 62452 |
Cryptography 41.0.5 updates Windows, macOS, and Linux wheels to be co… |
|
HIGH | 7.5 |
| CVE-2023-4807 | 62451 |
Cryptography 41.0.4 updates Windows, macOS, and Linux wheels to be co… |
|
HIGH | 7.8 |
| CVE-2023-38325 | 59473 |
The cryptography package before 41.0.2 for Python mishandles SSH cert… |
|
HIGH | 7.5 |
| CVE-2023-2650 | 59062 |
Cryptography 41.0.0 updates its dependency 'OpenSSL' to v3.1.1 to inc… |
|
MEDIUM | 6.5 |
| CVE-2022-4203 | 53301 |
Cryptography 39.0.1 updates its dependency 'OpenSSL' to v3.0.8 to inc… |
|
MEDIUM | 4.9 |
| CVE-2022-3996 | 53298 |
Cryptography 39.0.1 includes a fix for CVE-2022-3996, a DoS vulnerabi… |
|
HIGH | 7.5 |
| CVE-2023-0286 | 53304 |
Cryptography 39.0.1 updates its dependency 'OpenSSL' to v3.0.8 to inc… |
|
HIGH | 7.4 |
| CVE-2022-4304 | 53303 |
Cryptography 39.0.1 updates its dependency 'OpenSSL' to v3.0.8 to inc… |
|
MEDIUM | 5.9 |
| CVE-2023-0216 | 53302 |
Cryptography 39.0.1 updates its dependency 'OpenSSL' to v3.0.8 to inc… |
|
HIGH | 7.5 |
| CVE-2023-0217 | 53306 |
Cryptography 39.0.1 updates its dependency 'OpenSSL' to v3.0.8 to inc… |
|
HIGH | 7.5 |
| CVE-2023-0401 | 53307 |
Cryptography 39.0.1 updates its dependency 'OpenSSL' to v3.0.8 to inc… |
|
HIGH | 7.5 |
| CVE-2023-0215 | 53305 |
Cryptography 39.0.1 updates its dependency 'OpenSSL' to v3.0.8 to inc… |
|
HIGH | 7.5 |
| CVE-2022-4450 | 53299 |
Cryptography 39.0.1 updates its dependency 'OpenSSL' to v3.0.8 to inc… |
|
HIGH | 7.5 |
| CVE-2024-26130 | 66704 |
cryptography is a package designed to expose cryptographic primitives… |
|
- | - |
| PVE-2024-73711 | 73711 |
Affected versions of Cryptography have a vulnerable statically linked… |
|
- | - |
| CVE-2022-3786 | 52173 |
Cryptography versions from 37.0.0 and before 38.0.2 include a statica… |
|
HIGH | 7.5 |
| CVE-2022-3602 | 52174 |
Cryptography versions from 37.0.0 and before 38.0.2 include a statica… |
|
HIGH | 7.5 |
| CVE-2024-2511 | 71684 |
The `cryptography` library updates its BoringSSL and OpenSSL dependen… |
|
- | - |
| CVE-2023-6129 | 65212 |
Versions of Cryptograph starting from 35.0.0 are susceptible to a sec… |
|
MEDIUM | 6.5 |
| CVE-2023-6237 | 66777 |
Cryptography 42.0.0 updates its bundled dependency 'OpenSSL' so to in… |
|
- | - |
| CVE-2020-36242 | 39606 |
Cryptography 3.3.2 includes a fix for CVE-2020-36242: certain sequenc… |
|
CRITICAL | 9.1 |
| PVE-2021-39252 | 39252 |
Cryptography 3.3 no longer allows loading of finite field Diffie-Hell… |
|
HIDDEN | X.Y |
| CVE-2020-25659 | 38932 |
Cryptography 3.2 and prior are vulnerable to Bleichenbacher timing at… |
|
MEDIUM | 5.9 |
| CVE-2023-49083 | 62556 |
Affected versions of Cryptography are vulnerable to NULL-dereference … |
|
HIGH | 7.5 |
| CVE-2017-3736 | 50725 |
Cryptography 2.1.3 updates Windows, macOS, and manylinux1 wheels to b… |
|
MEDIUM | 6.5 |
| CVE-2017-3735 | 50724 |
Cryptography 2.1.3 updates Windows, macOS, and manylinux1 wheels to b… |
|
MEDIUM | 5.3 |
| CVE-2018-10903 | 36351 |
A flaw was found in python-cryptography versions between >=1.9.0 and … |
|
HIGH | 7.5 |
| CVE-2023-23931 | 53048 |
Cryptography 39.0.1 includes a fix for CVE-2023-23931: In affected ve… |
|
MEDIUM | 6.5 |
| CVE-2016-9243 | 25680 |
Cryptography 1.5.3 includes a fix for CVE-2016-9243: HKDF in cryptogr… |
|
HIGH | 7.5 |
| PVE-2021-25679 | 25679 |
Cryptography 1.0.2 fixes a vulnerability. The OpenSSL backend prior t… |
|
HIDDEN | X.Y |
| PVE-2021-25678 | 25678 |
Cryptography 0.9.1 fixes a double free in the OpenSSL backend when us… |
|
HIDDEN | X.Y |
| CVE-2023-3446 | 60225 |
Cryptography 41.0.3 updates its bundled OpenSSL version to include a … |
|
MEDIUM | 5.3 |
| CVE-2023-2975 | 60224 |
Cryptography 41.0.3 updates its bundled OpenSSL version to include a… |
|
MEDIUM | 5.3 |
| CVE-2023-3817 | 60223 |
Cryptography 41.0.3 updates its bundled OpenSSL version to include a … |
|
MEDIUM | 5.3 |
| PVE-2024-99809 | 65984 |
Cryptography before 1.1 is susceptible to TLS truncation attacks. Thi… |
|
- | - |