Lucene search
K

The vulnerability of the EVP_CipherUpdate, EVP_EncryptUpdate, and EVP_DecryptUpdate functions in the OpenSSL library for TLS and SSL protocols, related to integer overflow, allows attackers to cause service interruptions.

🗓️ 20 Jul 2021 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType 
bdu_fstec
 bdu_fstec
🔗 bdu.fstec.ru👁 6 Views

OpenSSL EVP CipherUpdate, EncryptUpdate, and DecryptUpdate overflow flaw in TLS/SSL enabling remote service interruption.

Related
Detection
Refs
ReporterTitlePublishedViews
Family
IBM Security Bulletins
Security Bulletin: Vulnerabilities in OpenSSL affect IBM Rational ClearQuest
29 Jun 202115:25
ibm
IBM Security Bulletins
Security Bulletin: Multiple vulnerabilities affect IBM® SDK for Node.js™ in IBM Cloud
11 Mar 202117:48
ibm
IBM Security Bulletins
Security Bulletin: IBM Flex System switch firmware products are affected by vulnerabilities in OpenSSL
7 Dec 202323:00
ibm
IBM Security Bulletins
Security Bulletin: Multiple vulnerabilities in node.js may affect configuration editor used in IBM Business Automation Workflow and IBM Business Process Manager (BPM) - CVE-2020-1971, CVE-2020-8265, CVE-2020-8287
25 Mar 202110:10
ibm
IBM Security Bulletins
Security Bulletin: IBM Engineering Workflow Management (EWM) vulnerabilities CVE-2021-23839, CVE-2021-23840, CVE-2021-23841
7 Jul 202315:15
ibm
IBM Security Bulletins
Security Bulletin: IBM App Connect Enterprise Certified Container may be vulnerable to multiple denial of service through the Node.js runtime
30 Apr 202113:25
ibm
IBM Security Bulletins
Security Bulletin: IBM DataPower Gateway vulnerable to a DoS
16 Aug 202115:33
ibm
IBM Security Bulletins
Security Bulletin: Multiple vulnerabilites affect Engineering Lifecycle Management and IBM Engineering products.
27 Jul 202121:32
ibm
IBM Security Bulletins
Security Bulletin: IBM InfoSphere Master Data Management Server vulnerability in OpenSSL
27 Apr 202210:23
ibm
IBM Security Bulletins
Security Bulletin: Vulnerabilities in OpenSSL affect Cloud Pak System (CVE-2021-23840, CVE-2021-23841)
4 Jul 202302:14
ibm
Rows per page
Vulners
Node
opensslopensslRange1.0.21.0.2y
OR
opensslopensslRange1.1.11.1.1j
OR

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

20 Oct 2025 00:00Current
6.6Medium risk
Vulners AI Score6.6
CVSS 25
CVSS 37.5
EPSS0.50732
6