216.73.217.126

CVE-2025-67897

· Published 14/12/2025 05:16 · Modified 15/12/2025 18:22

Labels: CVE-2025-67897 2025-12-14CVE-2025-67897[email protected]

Essential information

Published
14/12/2025 05:16
Modified
15/12/2025 18:22
Author
Creator
CVSS
5.3 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

CVSS metrics

Description

In Sequoia before 2.1.0, aes_key_unwrap panics if passed a ciphertext that is too short. A remote attacker can take advantage of this issue to crash an application by sending a victim an encrypted message with a crafted PKESK or SKESK packet.

NVD status

Status
Awaiting Analysis — CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.
Source
[email protected]
NVD
View on NVD

References