216.73.217.139

CVE-2024-58261

· Published 27/07/2025 20:15 · Modified 28/07/2025 19:15

Labels: CVE-2024-58261 2025-07-27CVE-2024-58261CWE-835[email protected]

Essential information

Published
27/07/2025 20:15
Modified
28/07/2025 19:15
Author
Creator
CVSS
2.9 LOW (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

CVSS metrics

Description

The sequoia-openpgp crate 1.13.0 before 1.21.0 for Rust allows an infinite loop of "Reading a cert: Invalid operation: Not a Key packet" messages for RawCertParser operations that encounter an unsupported primary key type.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
sequoia-openpgp / sequoia-openpgp cpe:2.3:a:sequoia-openpgp:sequoia-openpgp:<1.21.0:*:*:*:*:*:*:*

References