Package impact
COMPOSER / phpseclib/phpseclib
| CVE | Severity | CVSS | Risk | Published | Description | Impact |
|---|---|---|---|---|---|---|
| CVE-2023-49316 | high | — | 8.0 | 20d ago | Phpseclib needs guardrails on large binaryfield integers | |
| CVE-2024-27355 | high | — | 8.0 | 20d ago | phpseclib guardrails needed on OID length | |
| CVE-2024-27354 | high | — | 8.0 | 22d ago | phpseclib: guardrails needed on isPrime and randomPrime | |
| CVE-2026-44167 | high | 7.5 | 7.5 | 23d ago | phpseclib has a CVE-2024-27355 mitigation bypass — OID amplification DoS in ASN1::decodeOID() | |
| CVE-2026-32935 | medium | 5.9 | 5.9 | 2mo ago | phpseclib's AES-CBC unpadding susceptible to padding oracle timing attack |