VYPR
Vendor

CryptoPro

Products
3
CVEs
4
Across products
4
Status
Private

Products

3

Recent CVEs

4
  • CVE-2020-9331HigOct 23, 2020
    risk 0.51cvss 7.8epss 0.00

    CryptoPro CSP through 5.0.0.10004 on 32-bit platforms allows Local Privilege Escalation (by local users with the SeChangeNotifyPrivilege right) because user-mode input is mishandled during process creation. An attacker can write arbitrary data to an arbitrary location in the…

  • CVE-2022-34301MedAug 26, 2022
    risk 0.44cvss 6.7epss 0.01

    A flaw was found in CryptoPro Secure Disk bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing…

  • CVE-2020-9361MedOct 23, 2020
    risk 0.36cvss 5.5epss 0.00

    CryptoPro CSP through 5.0.0.10004 on 64-bit platforms allows local users with the SeChangeNotifyPrivilege right to cause denial of service because user-mode input is mishandled during process creation.

  • CVE-2025-10010Feb 24, 2026
    risk 0.00cvss epss 0.00

    The CPSD CryptoPro Secure Disk application boots a small Linux operating system to perform user authentication before using BitLocker to decrypt the Windows partition. The system is located on a separate unencrypted partition which can be reached by anyone with access to the…