Vulnerability CVE-2015-3298
Published: 2022-03-30

Description:
Yubico ykneo-openpgp before 1.0.10 has a typo in which an invalid PIN can be used. When first powered up, a signature will be issued even though the PIN has not been validated.

 References:
https://developers.yubico.com/ykneo-openpgp/SecurityAdvisory%202015-04-14.html
Copyright 2026, cxsecurity.com

 

Back to Top