Vulnerabilities (CVE)

Filtered by vendor Cryptopro Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-9331 1 Cryptopro 1 Csp 2024-02-04 4.6 MEDIUM 7.8 HIGH
CryptoPro CSP through 5.0.0.10004 on 32-bit platforms allows Local Privilege Escalation (by local users with the SeChangeNotifyPrivilege right) because user-mode input is mishandled during process creation. An attacker can write arbitrary data to an arbitrary location in the kernel's address space.
CVE-2020-9361 1 Cryptopro 1 Csp 2024-02-04 2.1 LOW 5.5 MEDIUM
CryptoPro CSP through 5.0.0.10004 on 64-bit platforms allows local users with the SeChangeNotifyPrivilege right to cause denial of service because user-mode input is mishandled during process creation.