← Back

Sks Keyserver Project

sks_keyserver_project

2 CVEs • 1 product

Products (1)

Click to collapse
Toggle
Sks Keyserver
sks_keyserver
2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2019-13050
5F5
FedoraprojectGnupg+2 more
5Fedora
GnupgLeap+2 more
Nov 21, 2024
Jun 29, 2019
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Interaction between the sks-keyserver code through 1.2.0 of the SKS keyserver network, and GnuPG through 2.2.16, makes it risky to have a GnuPG keyserver configuration line referring to a host on the SKS keyserver networ...Show more
Interaction between the sks-keyserver code through 1.2.0 of the SKS keyserver network, and GnuPG through 2.2.16, makes it risky to have a GnuPG keyserver configuration line referring to a host on the SKS keyserver network. Retrieving data from this network may cause a persistent denial of service, because of a Certificate Spamming Attack.Show less
CVE-2014-3207
1Sks Keyserver Project
1Sks Keyserver
May 6, 2026
May 8, 2014
N/A· v4
N/A· v3
4.3 MEDIUM· v2
Cross-site scripting (XSS) vulnerability in wserver.ml in SKS Keyserver before 1.1.5 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to pks/lookup/undefined1.