Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2010-1633
HistoryJun 03, 2010 - 2:30 p.m.

CVE-2010-1633

2010-06-0314:30:01
CWE-264
[email protected]
web.nvd.nist.gov
2

6.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

6 Medium

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

82.8%

JSON

RSA verification recovery in the EVP_PKEY_verify_recover function in OpenSSL 1.x before 1.0.0a, as used by pkeyutl and possibly other applications, returns uninitialized memory upon failure, which might allow context-dependent attackers to bypass intended key requirements or obtain sensitive information via unspecified vectors. NOTE: some of these details are obtained from third party information.

Affected configurations

NVD
Node
opensslopensslMatch1.0.0
OR
opensslopensslMatch1.0.0beta1
OR
opensslopensslMatch1.0.0beta2
OR
opensslopensslMatch1.0.0beta3
OR
opensslopensslMatch1.0.0beta4
OR
opensslopensslMatch1.0.0beta5

Related

cve 1
openssl 1
prion 1
openvas 16
debiancve 1
f5 1
seebug 2
ubuntucve 1
cvelist 1
nessus 7
fedora 6
gentoo 1
ibm 6
oraclelinux 3
cve
cve
CVE-2010-1633
2010-06-03 14:30:01
openssl
openssl
Vulnerability in OpenSSL CVE-2010-1633
2010-06-01 00:00:00
prion
prion
Information disclosure
2010-06-03 14:30:00
openvas
openvas
OpenSSL: Invalid Return value check in pkey_rsa_verifyrecover (20100601) - Windows
2021-08-16 00:00:00
OpenSSL: Invalid Return value check in pkey_rsa_verifyrecover (20100601) - Linux
2021-08-16 00:00:00
Fedora Update for openssl FEDORA-2010-9574
2010-06-18 00:00:00
debiancve
debiancve
CVE-2010-1633
2010-06-03 14:30:01
f5
f5
K93959105 : OpenSSL vulnerability CVE-2010-1633
2018-04-03 00:00:00
seebug
seebug
OpenSSL EVP_PKEY_verify_recover()ζ— ζ•ˆθΏ”ε›žε€Όη»•θΏ‡ε―†ι’₯ιͺŒθ―ζΌζ΄ž
2010-06-04 00:00:00
OpenSSL Cryptographic Message Syntax "OriginatorInfo" Vulnerability
2010-06-03 00:00:00
ubuntucve
ubuntucve
CVE-2010-1633
2010-06-03 00:00:00
cvelist
cvelist
CVE-2010-1633
2010-06-03 14:00:00
nessus
nessus
OpenSSL < 0.9.8o / 1.0.0a Multiple Vulnerabilities
2010-06-02 00:00:00
Fedora 12 : openssl-1.0.0a-1.fc12 (2010-9639)
2010-07-01 00:00:00
OpenSSL 1.0.0 < 1.0.0a Multiple Vulnerabilities
2010-06-03 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: openssl-1.0.0a-1.fc13
2010-06-15 15:59:21
[SECURITY] Fedora 13 Update: openssl-1.0.0b-1.fc13
2010-11-21 21:53:49
[SECURITY] Fedora 13 Update: openssl-1.0.0c-1.fc13
2010-12-17 08:35:37
gentoo
gentoo
OpenSSL: Multiple vulnerabilities
2011-10-09 00:00:00
ibm
ibm
Security Bulletin: Storage HMC OpenSSL upgrade to address cryptographic vulnerabilities.
2018-06-18 00:07:41
Security Bulletin: Tivoli Management Framework affected by vulnerabilities in OpenSSL versions prior to 1.0.0
2022-09-25 23:13:40
Security Bulletin: IBM Sterling Connect:Enterprise for UNIX is affected by multiple vulnerabilities in OpenSSL
2022-09-25 20:45:36
oraclelinux
oraclelinux
openssl-fips security update
2015-04-02 00:00:00
openssl security update
2019-03-13 00:00:00
openssl security update
2019-08-16 00:00:00

6.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

6 Medium

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

82.8%

JSON
Related for NVD:CVE-2010-1633
cve1openssl1prion1openvas16debiancve1f51seebug2ubuntucve1cvelist1nessus7fedora6gentoo1ibm6oraclelinux3