### [CVE-2018-15560](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15560)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

PyCryptodome before 3.6.6 has an integer overflow in the data_len variable in AESNI.c, related to the AESNI_encrypt and AESNI_decrypt functions, leading to the mishandling of messages shorter than 16 bytes.

### POC

#### Reference
- https://github.com/Legrandin/pycryptodome/issues/198

#### Github
No PoCs found on GitHub currently.