Sign In

CVE-2026-21895

ADVISORY - github

Summary

When creating a RSA private key from its components, the construction panics, instead of returning an error, when one of the primes is 1.

Discovered by Christian Reitter from Radically Open Security during a security review for Proton AG.

EPSS Score: 0.00055 (0.174)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-703

Improper Check or Handling of Exceptional Conditions

ADVISORY - github

CWE-703

Improper Check or Handling of Exceptional Conditions

ADVISORY - redhat

CWE-703

Improper Check or Handling of Exceptional Conditions

Impacted images

Advisories

NIST

CREATED

UPDATED

ADVISORY IDCVE-2026-21895
EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)
CWE-703

CVSS SCORE

2.7low

GitHub

CREATED

UPDATED

ADVISORY IDGHSA-9c48-w39g-hm26
EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)
CWE-703

CVSS SCORE

2.7low

Debian

CREATED

UPDATED

ADVISORY IDCVE-2026-21895
EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
RATING UNAVAILABLE FROM ADVISORY

Ubuntu

CREATED

UPDATED

ADVISORY IDCVE-2026-21895
EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

Red Hat

CREATED

UPDATED

ADVISORY IDCVE-2026-21895
EXPLOITABILITY SCORE

1.8

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)
CWE-703

CVSS SCORE

5.5low

Chainguard

CREATED

UPDATED

ADVISORY ID

CGA-84cw-5hh5-7pxr

EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
RATING UNAVAILABLE FROM ADVISORY

minimos

CREATED

UPDATED

ADVISORY ID

MINI-6hrw-2hmh-mc9r

EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
RATING UNAVAILABLE FROM ADVISORY

minimos

CREATED

UPDATED

ADVISORY ID

MINI-xhmg-5q96-8j6v

EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
RATING UNAVAILABLE FROM ADVISORY