Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2021-4160

🗓️ 28 Jan 2022 21:28:41Reported by opensslType 
cve
 cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 278 Views

There is a carry propagation bug in the MIPS32 and MIPS64 squaring procedure affecting OpenSSL versions

Related
Detection
Affected
Refs
Social
ReporterTitlePublishedViews
Family
IBM Security Bulletins		Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to multiple Operator package issues
30 Nov 202318:45
ibm
IBM Security Bulletins		Security Bulletin: IBM Cognos Analytics has addressed multiple vulnerabilities (CVE-2022-34339, CVE-2021-3712, CVE-2021-3711, CVE-2021-4160, CVE-2021-29425, CVE-2021-3733, CVE-2021-3737, CVE-2022-0391, CVE-2021-43138, CVE-2022-24758)
26 Mar 202502:27
ibm
IBM Security Bulletins		Security Bulletin: Vulnerabilities in OpenSSL affect IBM Spectrum Protect Plus SQL, File Indexing, and Windows Host agents
21 Sep 202220:55
ibm
IBM Security Bulletins		Security Bulletin: Netcool Operations Insight v1.6.8 addresses multiple security vulnerabilities.
11 Apr 202311:47
ibm
IBM Security Bulletins		Security Bulletin: Vulnerabilities in Node.js affect IBM App Connect Enterprise & IBM Integration Bus (CVE-2021-4160)
12 May 202214:52
ibm
IBM Security Bulletins		Security Bulletin: IBM Master Data Management may provide weaker than expected security due to OpenSSL through a carry propogation flaw (CVE-2021-4160)
25 Oct 202414:45
ibm
IBM Security Bulletins		Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to weakened security in OpenSSL ( CVE-2021-4160)
12 Jan 202321:59
ibm
IBM Security Bulletins		Security Bulletin: Multiple vulnerabilities in multiple dependencies affect IBM MessageGateway/ MessageSight
29 Apr 202502:18
ibm
IBM Security Bulletins		Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to multiple Base OS issues
1 Mar 202418:03
ibm
IBM Security Bulletins		Security Bulletin: IBM Aspera Orchestrator affected by vulnerability (CVE-2021-4160)
2 Feb 202317:27
ibm
Rows per page
NVD
Vulners
Node
opensslopensslRange1.0.21.0.2zb
OR
opensslopensslRange1.1.11.1.1m
OR
opensslopensslMatch3.0.0-
OR
opensslopensslMatch3.0.0alpha1
OR
opensslopensslMatch3.0.0alpha10
OR
opensslopensslMatch3.0.0alpha11
OR
opensslopensslMatch3.0.0alpha12
OR
opensslopensslMatch3.0.0alpha13
OR
opensslopensslMatch3.0.0alpha14
OR
opensslopensslMatch3.0.0alpha15
OR
opensslopensslMatch3.0.0alpha16
OR
opensslopensslMatch3.0.0alpha17
OR
opensslopensslMatch3.0.0alpha2
OR
opensslopensslMatch3.0.0alpha3
OR
opensslopensslMatch3.0.0alpha4
OR
opensslopensslMatch3.0.0alpha5
OR
opensslopensslMatch3.0.0alpha6
OR
opensslopensslMatch3.0.0alpha7
OR
opensslopensslMatch3.0.0alpha8
OR
opensslopensslMatch3.0.0alpha9
OR
opensslopensslMatch3.0.0beta1
OR
opensslopensslMatch3.0.0beta2
Node
debiandebian_linuxMatch9.0
OR
debiandebian_linuxMatch10.0
OR
debiandebian_linuxMatch11.0
Node
oraclehealth_sciences_inform_publisherMatch6.2.1.1
OR
oraclehealth_sciences_inform_publisherMatch6.3.1.1
OR
oraclejd_edwards_enterpriseone_toolsMatch9.2.6.3
OR
oraclejd_edwards_world_securityMatcha9.4
OR
oraclepeoplesoft_enterprise_peopletoolsMatch8.58
OR
oraclepeoplesoft_enterprise_peopletoolsMatch8.59
Node
siemenssinec_insRange<1.0
OR
siemenssinec_insMatch1.0-
OR
siemenssinec_insMatch1.0sp1
Node
oracleenterprise_manager_ops_centerMatch12.4.0.0
[
  {
    "vendor": "OpenSSL",
    "product": "OpenSSL",
    "versions": [
      {
        "version": "Fixed in OpenSSL 3.0.1 (Affected 3.0.0)",
        "status": "affected"
      },
      {
        "version": "Fixed in OpenSSL 1.1.1m (Affected 1.1.1-1.1.1l)",
        "status": "affected"
      },
      {
        "version": "Fixed in OpenSSL 1.0.2zc-dev (Affected 1.0.2-1.0.2zb)",
        "status": "affected"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
21 Nov 2024 06:37Current
6.2Medium risk
Vulners AI Score6.2
CVSS 24.3
CVSS 3.15.9
EPSS0.00417
SSVC
cve-2021-4160carry propagation bugmips32mips64opensslsecurity vulnerabilitytls 1.3ec algorithmsrsadsadhnvdvulnerability disclosure
278