CVE-2023-24011 - Siemens Industrial Automation ROS 2 DDS PKCS7 Certificate Validation_chain Execution Bypass
CVE ID : CVE-2023-24011
Published : Jan. 9, 2025, 3:15 p.m. | 16 minutes ago
Description : An attacker can arbitrarily craft malicious DDS Participants (or ROS 2 ...
CVE ID : CVE-2023-24011
Published : Jan. 9, 2025, 3:15 p.m. | 16 minutes ago
Description : An attacker can arbitrarily craft malicious DDS Participants (or ROS 2 ...
CVE-2023-24011 - Siemens Industrial Automation ROS 2 DDS PKCS7 Certificate Validation_chain Execution Bypass
An attacker can arbitrarily craft malicious DDS Participants (or ROS 2 Nodes) with valid certificates to compromise and get full control of the attacked secure DDS databus system by exploiting vulnerable attributes in the configuration of PKCS#7 certificate’s validation. This is caused by a non-compliant implementation of permission document verification …
cvefeed.io
January 9, 2025 at 3:38 PM
CVE-2023-24011 - Siemens Industrial Automation ROS 2 DDS PKCS7 Certificate Validation_chain Execution Bypass
CVE ID : CVE-2023-24011
Published : Jan. 9, 2025, 3:15 p.m. | 16 minutes ago
Description : An attacker can arbitrarily craft malicious DDS Participants (or ROS 2 ...
CVE ID : CVE-2023-24011
Published : Jan. 9, 2025, 3:15 p.m. | 16 minutes ago
Description : An attacker can arbitrarily craft malicious DDS Participants (or ROS 2 ...
PKCS (Public-Key Cryptography Standards) 🔐
PKCS is a group of standards developed by RSA Security to define how public-key cryptography should be implemente.
#PKCS #CyberSecurity #Encryption #PublicKey #RSA #PKCS1 #PKCS7 #PKCS12 #InfoSec #CryptoStandards #SecureCommunication #CyberBasics
PKCS is a group of standards developed by RSA Security to define how public-key cryptography should be implemente.
#PKCS #CyberSecurity #Encryption #PublicKey #RSA #PKCS1 #PKCS7 #PKCS12 #InfoSec #CryptoStandards #SecureCommunication #CyberBasics
October 12, 2025 at 11:01 PM
PKCS (Public-Key Cryptography Standards) 🔐
PKCS is a group of standards developed by RSA Security to define how public-key cryptography should be implemente.
#PKCS #CyberSecurity #Encryption #PublicKey #RSA #PKCS1 #PKCS7 #PKCS12 #InfoSec #CryptoStandards #SecureCommunication #CyberBasics
PKCS is a group of standards developed by RSA Security to define how public-key cryptography should be implemente.
#PKCS #CyberSecurity #Encryption #PublicKey #RSA #PKCS1 #PKCS7 #PKCS12 #InfoSec #CryptoStandards #SecureCommunication #CyberBasics
Why it matters!!
- Lower memory usage with chunked #PKCS7 verification
- Flexible support for BER + indefinite lengths
- Better standards compliance for real-time secure apps
Explore more: github.com/wolfSSL/w...
3/3
- Lower memory usage with chunked #PKCS7 verification
- Flexible support for BER + indefinite lengths
- Better standards compliance for real-time secure apps
Explore more: github.com/wolfSSL/w...
3/3
GitHub - wolfSSL/wolfssl-examples: Example applications using the wolfSSL lightweight SSL/TLS library
Example applications using the wolfSSL lightweight SSL/TLS library - wolfSSL/wolfssl-examples
github.com
May 27, 2025 at 6:46 PM
Why it matters!!
- Lower memory usage with chunked #PKCS7 verification
- Flexible support for BER + indefinite lengths
- Better standards compliance for real-time secure apps
Explore more: github.com/wolfSSL/w...
3/3
- Lower memory usage with chunked #PKCS7 verification
- Flexible support for BER + indefinite lengths
- Better standards compliance for real-time secure apps
Explore more: github.com/wolfSSL/w...
3/3
🔧 Key Enhancements to #PKCS7 Streaming in wolfSSL:
- Streamed verification of indefinite lengths
- Enhanced BER decoding
- Improved wc_PKCS7_VerifySignedData() for multipart content
2/3
- Streamed verification of indefinite lengths
- Enhanced BER decoding
- Improved wc_PKCS7_VerifySignedData() for multipart content
2/3
May 27, 2025 at 6:46 PM
🔧 Key Enhancements to #PKCS7 Streaming in wolfSSL:
- Streamed verification of indefinite lengths
- Enhanced BER decoding
- Improved wc_PKCS7_VerifySignedData() for multipart content
2/3
- Streamed verification of indefinite lengths
- Enhanced BER decoding
- Improved wc_PKCS7_VerifySignedData() for multipart content
2/3
CVE-2023-24012 - "ThreatX DDS PKCS7 Signature Bypass"
CVE ID : CVE-2023-24012
Published : Jan. 9, 2025, 3:15 p.m. | 16 minutes ago
Description : An attacker can arbitrarily craft malicious DDS Participants (or ROS 2 Nodes) with valid certificates to compromise and get fu...
CVE ID : CVE-2023-24012
Published : Jan. 9, 2025, 3:15 p.m. | 16 minutes ago
Description : An attacker can arbitrarily craft malicious DDS Participants (or ROS 2 Nodes) with valid certificates to compromise and get fu...
CVE-2023-24012 - "ThreatX DDS PKCS7 Signature Bypass"
An attacker can arbitrarily craft malicious DDS Participants (or ROS 2 Nodes) with valid certificates to compromise and get full control of the attacked secure DDS databus system by exploiting vulnerable attributes in the configuration of PKCS#7 certificate’s validation. This is caused by a non-compliant implementation of permission document verification …
cvefeed.io
January 9, 2025 at 3:38 PM
CVE-2023-24012 - "ThreatX DDS PKCS7 Signature Bypass"
CVE ID : CVE-2023-24012
Published : Jan. 9, 2025, 3:15 p.m. | 16 minutes ago
Description : An attacker can arbitrarily craft malicious DDS Participants (or ROS 2 Nodes) with valid certificates to compromise and get fu...
CVE ID : CVE-2023-24012
Published : Jan. 9, 2025, 3:15 p.m. | 16 minutes ago
Description : An attacker can arbitrarily craft malicious DDS Participants (or ROS 2 Nodes) with valid certificates to compromise and get fu...
Python Cryptography advisory: CVE-2023-49083 NULL-dereference when loading PKCS7 certificates
oss-sec: Python Cryptography advisory: CVE-2023-49083 NULL-dereference when loading PKCS7 certificates
Posted by Alan Coopersmith on Nov 29 https://github.com/pyca/cryptography/security/advisories/GHSA-jfhm-5ghh-2f97
reports:
-------------------------------------------------------------------------------
Affected versions >= 3.1, < 41.0.6
Patched versions >=41.0.6
Summary
Calling load_pem_pkcs7_certificates or load_der_pkcs7_certificates could lead to
a NULL-pointer dereference and segfault.
PoC
Here is a Python code that triggers the issue:
from...
seclists.org
November 29, 2023 at 7:57 PM
Python Cryptography advisory: CVE-2023-49083 NULL-dereference when loading PKCS7 certificates
Soweit ich weiß, stellen viele, wenn nicht die meisten Gerichte eine Abschrift zu.
Ich gucke morgen nochmal wegen der pkcs7 Datei bei übermittlung der Abschrift.
Ich gucke morgen nochmal wegen der pkcs7 Datei bei übermittlung der Abschrift.
September 17, 2025 at 8:07 PM
Soweit ich weiß, stellen viele, wenn nicht die meisten Gerichte eine Abschrift zu.
Ich gucke morgen nochmal wegen der pkcs7 Datei bei übermittlung der Abschrift.
Ich gucke morgen nochmal wegen der pkcs7 Datei bei übermittlung der Abschrift.
Öhm...doch die .pkcs7 ist dabei. Warum sollte die nicht dabei sein?
Stellt Ihr wirklich die Abschrift zu? Wir stellen immer das Original (mit Signatur des Richters) zu.
Stellt Ihr wirklich die Abschrift zu? Wir stellen immer das Original (mit Signatur des Richters) zu.
September 17, 2025 at 8:04 PM
Öhm...doch die .pkcs7 ist dabei. Warum sollte die nicht dabei sein?
Stellt Ihr wirklich die Abschrift zu? Wir stellen immer das Original (mit Signatur des Richters) zu.
Stellt Ihr wirklich die Abschrift zu? Wir stellen immer das Original (mit Signatur des Richters) zu.
son of a BITCH this fucking bird,
September 14, 2025 at 8:18 PM
son of a BITCH this fucking bird,
RE: [PATCH v5] mtd: rawnand: brcmnand: legacy exec_op implementation William Zhang writes: 2.39.5 Reviewed-by: William Zhang Reviewed-by: William Zhang [unhandled content-type:application/pkcs7-si...
| Details | Interest | Feed |
| Details | Interest | Feed |
Origin
lkml.org
May 23, 2025 at 12:29 AM
256-bit AES with CFB with PKCS7 padding
February 17, 2025 at 8:25 AM
256-bit AES with CFB with PKCS7 padding
did:cert and it's a full pkcs7 encoded x.509 certificate chain
December 9, 2024 at 1:01 PM
did:cert and it's a full pkcs7 encoded x.509 certificate chain
wolfSSL now supports PKCS7 indefinite length encoding in streaming mode!
Refinements to wc_PKCS7_VerifySignedData() improve secure, real-time data handling—perfect for memory-constrained applications.
Learn more: www.wolfssl.com/wolf...
#PKCS7
1/3
Refinements to wc_PKCS7_VerifySignedData() improve secure, real-time data handling—perfect for memory-constrained applications.
Learn more: www.wolfssl.com/wolf...
#PKCS7
1/3
May 27, 2025 at 6:46 PM
wolfSSL now supports PKCS7 indefinite length encoding in streaming mode!
Refinements to wc_PKCS7_VerifySignedData() improve secure, real-time data handling—perfect for memory-constrained applications.
Learn more: www.wolfssl.com/wolf...
#PKCS7
1/3
Refinements to wc_PKCS7_VerifySignedData() improve secure, real-time data handling—perfect for memory-constrained applications.
Learn more: www.wolfssl.com/wolf...
#PKCS7
1/3
You would think I would learn how to easily handle PKCS7 padding manually by now, but no. I decrypt something that is PKCS7 padded and I manually add a "[:-N]" (for the correct value of N) at the end of my code because ain't nobody got time to do it right.
April 15, 2025 at 6:49 PM
You would think I would learn how to easily handle PKCS7 padding manually by now, but no. I decrypt something that is PKCS7 padded and I manually add a "[:-N]" (for the correct value of N) at the end of my code because ain't nobody got time to do it right.
#TIL: Security False Positive
The security team sent a report warning about "weak encryption AES/CBC/PKCS5 or PKCS7" in my Flutter app.
I was confident I did not use that encryption method, but –
#flutter #security #flutterdev #falsepositive
The security team sent a report warning about "weak encryption AES/CBC/PKCS5 or PKCS7" in my Flutter app.
I was confident I did not use that encryption method, but –
#flutter #security #flutterdev #falsepositive
July 28, 2025 at 7:33 AM
#TIL: Security False Positive
The security team sent a report warning about "weak encryption AES/CBC/PKCS5 or PKCS7" in my Flutter app.
I was confident I did not use that encryption method, but –
#flutter #security #flutterdev #falsepositive
The security team sent a report warning about "weak encryption AES/CBC/PKCS5 or PKCS7" in my Flutter app.
I was confident I did not use that encryption method, but –
#flutter #security #flutterdev #falsepositive
https://github.com/mozilla-services/pkcs7
> This would be v1.0.0 since it's used in production
A month later,
> DEPRECATED
幽默
> This would be v1.0.0 since it's used in production
A month later,
> DEPRECATED
幽默
October 18, 2024 at 12:35 PM
https://github.com/mozilla-services/pkcs7
> This would be v1.0.0 since it's used in production
A month later,
> DEPRECATED
幽默
> This would be v1.0.0 since it's used in production
A month later,
> DEPRECATED
幽默
So: In e2A sieht das bei uns in dem Ausgängen so aus.
Im beA kommt es als separate pkcs7-Datei an. Die wird wohl ausgeblendet, lässt sich aber per Download der zip-Datei runterladen oder im Browser prüfen. Danke @litigator.bsky.social !
Im beA kommt es als separate pkcs7-Datei an. Die wird wohl ausgeblendet, lässt sich aber per Download der zip-Datei runterladen oder im Browser prüfen. Danke @litigator.bsky.social !
September 18, 2025 at 7:06 AM
So: In e2A sieht das bei uns in dem Ausgängen so aus.
Im beA kommt es als separate pkcs7-Datei an. Die wird wohl ausgeblendet, lässt sich aber per Download der zip-Datei runterladen oder im Browser prüfen. Danke @litigator.bsky.social !
Im beA kommt es als separate pkcs7-Datei an. Die wird wohl ausgeblendet, lässt sich aber per Download der zip-Datei runterladen oder im Browser prüfen. Danke @litigator.bsky.social !
CVE-2023-24012 - "ThreatX DDS PKCS7 Signature Bypass"
CVE ID : CVE-2023-24012
Published : Jan. 9, 2025, 3:15 p.m. | 16 minutes ago
Description : An attacker can arbitrarily craft malicious DDS Participants (or ROS 2 Nodes) with valid certificates to compromise and get fu...
CVE ID : CVE-2023-24012
Published : Jan. 9, 2025, 3:15 p.m. | 16 minutes ago
Description : An attacker can arbitrarily craft malicious DDS Participants (or ROS 2 Nodes) with valid certificates to compromise and get fu...
CVE-2023-24012 - "ThreatX DDS PKCS7 Signature Bypass"
An attacker can arbitrarily craft malicious DDS Participants (or ROS 2 Nodes) with valid certificates to compromise and get full control of the attacked secure DDS databus system by exploiting vulnerable attributes in the configuration of PKCS#7 certificate’s validation. This is caused by a non-compliant implementation of permission document verification …
cvefeed.io
January 9, 2025 at 3:38 PM
CVE-2023-24012 - "ThreatX DDS PKCS7 Signature Bypass"
CVE ID : CVE-2023-24012
Published : Jan. 9, 2025, 3:15 p.m. | 16 minutes ago
Description : An attacker can arbitrarily craft malicious DDS Participants (or ROS 2 Nodes) with valid certificates to compromise and get fu...
CVE ID : CVE-2023-24012
Published : Jan. 9, 2025, 3:15 p.m. | 16 minutes ago
Description : An attacker can arbitrarily craft malicious DDS Participants (or ROS 2 Nodes) with valid certificates to compromise and get fu...