CVE-2019-9154

Published August 22nd, 2019

View on NVD ↗

CVSS v3

N/A

CVSS v2

5

MEDIUM

Affected

1

PROJECT

Description

Improper Verification of a Cryptographic Signature in OpenPGP.js <=4.1.2 allows an attacker to pass off unsigned data as signed.

openpgpjs/openpgpjs

OpenPGP implementation for JavaScript

GitHub

5.95K