0.002 Low
EPSS
Percentile
61.9%
python-ecdsa is vulnerable to denial of service. The DER encoding is not verified in signatures, allowing an attacker to crash the application using a malicious DER signature.
bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14859
github.com/warner/python-ecdsa/issues/114
github.com/warner/python-ecdsa/pull/115
github.com/warner/python-ecdsa/releases/tag/python-ecdsa-0.13.3
pypi.org/project/ecdsa/0.13.3/