VulnerableCode Package Details - pkg:pypi/rsa@1.3.1

Search for packages

Vulnerability	Summary	Fixed by
VCID-f4rp-ce4j-xkd3 Aliases: CVE-2020-13757 GHSA-537h-rv9q-vvph PYSEC-2020-99	Python-RSA before 4.1 ignores leading '\0' bytes during decryption of ciphertext. This could conceivably have a security-relevant impact, e.g., by helping an attacker to infer that an application uses Python-RSA, or if the length of accepted ciphertext affects application behavior (such as by causing excessive memory allocation).	4.1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-nqxh-d5pz-tuc1 Aliases: CVE-2016-1494 GHSA-8rjr-6qq5-pj9p PYSEC-2016-10	The verify function in the RSA package for Python (Python-RSA) before 3.3 allows attackers to spoof signatures with a small public exponent via crafted signature padding, aka a BERserk attack.	3.3 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-f4rp-ce4j-xkd3
Aliases:
CVE-2020-13757
GHSA-537h-rv9q-vvph
PYSEC-2020-99

Python-RSA before 4.1 ignores leading '\0' bytes during decryption of ciphertext. This could conceivably have a security-relevant impact, e.g., by helping an attacker to infer that an application uses Python-RSA, or if the length of accepted ciphertext affects application behavior (such as by causing excessive memory allocation).

4.1
Affected by 1 other vulnerability.

VCID-nqxh-d5pz-tuc1
Aliases:
CVE-2016-1494
GHSA-8rjr-6qq5-pj9p
PYSEC-2016-10

The verify function in the RSA package for Python (Python-RSA) before 3.3 allows attackers to spoof signatures with a small public exponent via crafted signature padding, aka a BERserk attack.

3.3
Affected by 2 other vulnerabilities.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-05-01T14:29:56.198602+00:00	GHSA Importer	Affected by	VCID-f4rp-ce4j-xkd3	https://github.com/advisories/GHSA-537h-rv9q-vvph	38.6.0
2026-04-29T20:31:09.998643+00:00	GitLab Importer	Affected by	VCID-nqxh-d5pz-tuc1	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/rsa/CVE-2016-1494.yml	38.5.0
2026-04-29T19:57:12.942249+00:00	GitLab Importer	Affected by	VCID-f4rp-ce4j-xkd3	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/rsa/CVE-2020-13757.yml	38.5.0
2026-04-16T21:51:30.673183+00:00	GitLab Importer	Affected by	VCID-nqxh-d5pz-tuc1	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/rsa/CVE-2016-1494.yml	38.4.0
2026-04-16T21:19:27.901616+00:00	GitLab Importer	Affected by	VCID-f4rp-ce4j-xkd3	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/rsa/CVE-2020-13757.yml	38.4.0
2026-04-16T01:41:50.170451+00:00	GHSA Importer	Affected by	VCID-f4rp-ce4j-xkd3	https://github.com/advisories/GHSA-537h-rv9q-vvph	38.4.0
2026-04-11T23:07:29.968387+00:00	GitLab Importer	Affected by	VCID-nqxh-d5pz-tuc1	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/rsa/CVE-2016-1494.yml	38.3.0
2026-04-11T22:31:46.476013+00:00	GitLab Importer	Affected by	VCID-f4rp-ce4j-xkd3	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/rsa/CVE-2020-13757.yml	38.3.0
2026-04-11T13:10:56.473455+00:00	GHSA Importer	Affected by	VCID-f4rp-ce4j-xkd3	https://github.com/advisories/GHSA-537h-rv9q-vvph	38.3.0
2026-04-02T23:15:47.417576+00:00	GitLab Importer	Affected by	VCID-nqxh-d5pz-tuc1	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/rsa/CVE-2016-1494.yml	38.1.0
2026-04-02T22:43:06.701906+00:00	GitLab Importer	Affected by	VCID-f4rp-ce4j-xkd3	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/rsa/CVE-2020-13757.yml	38.1.0
2026-04-02T14:02:36.668303+00:00	GHSA Importer	Affected by	VCID-f4rp-ce4j-xkd3	https://github.com/advisories/GHSA-537h-rv9q-vvph	38.1.0
2026-04-01T17:35:50.502476+00:00	GitLab Importer	Affected by	VCID-nqxh-d5pz-tuc1	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/rsa/CVE-2016-1494.yml	38.0.0
2026-04-01T17:00:49.689291+00:00	GitLab Importer	Affected by	VCID-f4rp-ce4j-xkd3	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/rsa/CVE-2020-13757.yml	38.0.0
2026-04-01T15:01:58.551645+00:00	PyPI Importer	Affected by	VCID-f4rp-ce4j-xkd3	https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip	38.0.0
2026-04-01T14:59:24.243892+00:00	PyPI Importer	Affected by	VCID-nqxh-d5pz-tuc1	https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip	38.0.0
2026-04-01T12:42:29.713921+00:00	Pypa Importer	Affected by	VCID-f4rp-ce4j-xkd3	https://github.com/pypa/advisory-database/blob/main/vulns/rsa/PYSEC-2020-99.yaml	38.0.0
2026-04-01T12:41:16.217631+00:00	Pypa Importer	Affected by	VCID-nqxh-d5pz-tuc1	https://github.com/pypa/advisory-database/blob/main/vulns/rsa/PYSEC-2016-10.yaml	38.0.0