[CRITICAL] Security Vulnerability in pycrypto

Security Vulnerability Detected

Dependency: pycrypto
Criticality: CRITICAL (Score: undefined)

Vulnerability Details

Name: CVE-2013-7459

Description:
Heap-based buffer overflow in the ALGnew function in block_templace.c in Python Cryptography Toolkit (aka pycrypto) allows remote attackers to execute arbitrary code as demonstrated by a crafted iv parameter to cryptmsg.py.

Metadata

"{\"vulnerabilityIdentifiers\":[\"CVE-2013-7459\"],\"published\":\"2017-02-15T15:59:00.153\",\"lastModified\":\"2025-04-20T01:37:25.860\",\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\",\"exploitabilityScore\":3.9,\"impactScore\":5.9,\"weaknesses\":[\"CWE-119\"]}"