Loading
Generated remediation guidance and an executive summary. No account required.
Integer overflow in the PointGFp constructor in Botan before 1.10.11 and 1.11.x before 1.11.27 allows remote attackers to overwrite memory and possibly execute arbitrary code via a crafted ECC point, which triggers a heap-based buffer overflow.
Use CWE-119, Botan Project vendor hub and Botan product page to widen CVE-2016-2195 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2021-24115, CVE-2026-34580 and CVE-2022-43705 for nearby disclosures in the same product family.