cryptography vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
GHSA-537C-GMF6-5CCFHighcryptography: Vulnerable OpenSSL included in cryptography wheelsCVE-2026-39892Mediumcryptography: Cryptography vulnerable to buffer overflow if non-contiguous buffers were passed to APIsCVE-2026-34073Lowcryptography: cryptography has incomplete DNS name constraint enforcement on peer namesCVE-2026-26007Highcryptography: cryptography Vulnerable to a Subgroup Attack Due to Missing Subgroup Validation for SECT CurvesCVE-2024-12797Lowcryptography: Vulnerable OpenSSL included in cryptography wheelsGHSA-H4GH-QQ45-VH27Mediumcryptography: pyca/cryptography has a vulnerable OpenSSL included in cryptography wheelsCVE-2024-26130Highcryptography: cryptography NULL pointer dereference with pkcs12.serialize_key_and_certificates when called with a non-matching certificate and private…CVE-2023-50782Highcryptography: Python Cryptography package vulnerable to Bleichenbacher timing oracle attackCVE-2024-0727Mediumcryptography: Null pointer dereference in PKCS12 parsingCVE-2023-49083Mediumcryptography: cryptography vulnerable to NULL-dereference when loading PKCS7 certificatesGHSA-V8GR-M533-GHJ9Lowcryptography: Vulnerable OpenSSL included in cryptography wheelsGHSA-JM77-QPHF-C4W8Lowcryptography: pyca/cryptography's wheels include vulnerable OpenSSLCVE-2023-38325Highcryptography: cryptography mishandles SSH certificatesGHSA-5CPQ-8WJ7-HF2VLowcryptography: Vulnerable OpenSSL included in cryptography wheelsCVE-2023-0286Highcryptography: Vulnerable OpenSSL included in cryptography wheelsCVE-2023-23931Mediumcryptography: Cipher.update_into can corrupt memory if passed an immutable python object as the outbufGHSA-39HC-V87J-747XMediumcryptography: Vulnerable OpenSSL included in cryptography wheelsCVE-2016-9243Highcryptography: Improper input validation in cryptographyCVE-2020-36242Highcryptography: PyCA Cryptography symmetrically encrypting large values can lead to integer overflowCVE-2020-25659Highcryptography: RSA decryption vulnerable to Bleichenbacher timing vulnerabilityCVE-2018-10903Highcryptography: PyCA Cryptography vulnerable to GCM tag forgery

Stop the waste.
Protect your environment with Kodem.