CVE-2026-48852
3.7 LOWPuTTY 0.71 before 0.84 has an assertion failure in ECDSA signature verification
Published: 2026-05-25 · Last updated: 2026-05-27
Severity and scoring
- CVSS
- 3.7 LOW
- Vector
- CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
- CWE
- CWE-617
Affected products
| Vendor | Product |
|---|---|
| putty | putty |
Description
PuTTY 0.71 before 0.84 has an assertion failure in ECDSA signature verification.
Source: NVD
References
Related CVEs
Same vendor
- CVE-2026-48851 — PuTTY 0.77 before 0.84 uses a copy of the PuTTY icon as a trust indication for TELNET data but the trust status is not cleared between pr... (3.1 LOW)
- CVE-2026-48850 — PuTTY 0.72 before 0.84 has a double free in RSA KEX (3.7 LOW)
- CVE-2026-4115 — A vulnerability was detected in PuTTY 0.83 (3.7 LOW)
Same CWE
- CVE-2026-29116 — A vulnerability has been found in some Dahua products could allow an unauthenticated remote attacker to send a specially crafted packet, ...
- CVE-2026-29115 — A vulnerability has been found in some Dahua products could allow an authenticated remote attacker to send a specially crafted packet, tr...
- CVE-2026-46543 — Nimiq is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm (5.3 MEDIUM)
- CVE-2026-46542 — Nimiq is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm (4.3 MEDIUM)
- CVE-2026-9750 — An authenticated user can cause a MongoDB server to crash or return incorrect results by creating documents that interfere with internal ... (6.5 MEDIUM)