Lucene search
Copyright (C) 2021 Greenbone AGOPENVAS:1361412562310818227HistoryApr 02, 2021 - 12:00 a.m.
Fedora: Security Advisory for openssl (FEDORA-2021-cbf14ab8f9)
2021-04-0200:00:00
Copyright (C) 2021 Greenbone AG
plugins.openvas.org
1
7.4 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
7.2 High
AI Score
Confidence
High
5.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
0.004 Low
EPSS
Percentile
71.6%
The remote host is missing an update for the
# SPDX-FileCopyrightText: 2021 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.818227");
script_version("2024-04-04T05:05:25+0000");
script_cve_id("CVE-2021-3449", "CVE-2021-3450");
script_tag(name:"cvss_base", value:"5.8");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:P/I:P/A:N");
script_tag(name:"last_modification", value:"2024-04-04 05:05:25 +0000 (Thu, 04 Apr 2024)");
script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2021-07-20 23:15:00 +0000 (Tue, 20 Jul 2021)");
script_tag(name:"creation_date", value:"2021-04-02 03:05:25 +0000 (Fri, 02 Apr 2021)");
script_name("Fedora: Security Advisory for openssl (FEDORA-2021-cbf14ab8f9)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2021 Greenbone AG");
script_family("Fedora Local Security Checks");
script_xref(name:"Advisory-ID", value:"FEDORA-2021-cbf14ab8f9");
script_xref(name:"URL", value:"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CCBFLLVQVILIVGZMBJL3IXZGKWQISYNP");
script_tag(name:"summary", value:"The remote host is missing an update for the 'openssl'
package(s) announced via the FEDORA-2021-cbf14ab8f9 advisory.
This VT has been deprecated and is therefore no longer functional.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"The OpenSSL toolkit provides support for secure communications between
machines. OpenSSL includes a certificate management tool and shared
libraries which provide various cryptographic algorithms and
protocols.");
script_tag(name:"affected", value:"'openssl' package(s) on Fedora 34.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
script_tag(name:"deprecated", value:TRUE);
exit(0);
}
exit(66);Related
oraclelinux
oraclelinux
openssl security update
2021-03-29 00:00:00
openssl security update
2021-04-01 00:00:00
nessus
nessus
Oracle Linux 8 : openssl (ELSA-2021-9151) (deprecated)
2021-04-01 00:00:00
CentOS 8 : openssl (CESA-2021:1024)
2021-04-01 00:00:00
RHEL 8 : openssl (RHSA-2021:1024)
2021-03-30 00:00:00
ibm
ibm
attackerkb
attackerkb
CVE-2021-3450
2021-03-25 00:00:00
OpenSSL TLS Server Crash (NULL pointer dereference) — CVE-2021-3449
2021-03-25 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package openssl1.1 version 1.1.1k-alt1
2021-03-29 00:00:00
Security fix for the ALT Linux 10 package openssl1.1 version 1.1.1k-alt1
2021-03-25 00:00:00
thn
thn
OpenSSL Releases Patches for 2 High-Severity Security Vulnerabilities
2021-03-26 14:56:00
redhat
redhat
openvas
openvas
Mageia: Security Advisory (MGASA-2021-0176)
2022-01-28 00:00:00
Fedora: Security Advisory for openssl (FEDORA-2021-cbf14ab8f9)
2021-04-02 00:00:00
Tenable Nessus <= 8.13.1 Multiple Third-party Vulnerabilities (TNS-2021-05)
2021-04-07 00:00:00
osv
osv
Important: openssl security update
2021-03-29 19:03:22
NULL pointer deref in signature_algorithms processing
2021-05-01 12:00:00
openssl - security update
2021-03-25 00:00:00
mageia
mageia
Updated openssl packages fix security vulnerability
2021-04-05 18:54:07
almalinux
almalinux
Important: openssl security update
2021-03-29 19:03:22
symantec
symantec
OpenSSL Vulnerabilities Mar 2021
2021-04-07 19:44:57
fedora
fedora
[SECURITY] Fedora 34 Update: openssl-1.1.1k-1.fc34
2021-04-01 00:53:20
rocky
rocky
openssl security update
2021-03-29 19:03:22
freebsd
freebsd
OpenSSL -- Multiple vulnerabilities
2021-03-25 00:00:00
Node.js -- April 2021 Security Releases
2021-04-06 00:00:00
amazon
amazon
Important: openssl11
2021-03-25 18:31:00
archlinux
archlinux
[ASA-202103-10] openssl: multiple issues
2021-03-25 00:00:00
cisco
cisco
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2021
2021-03-25 16:00:00
photon
photon
freebsd_advisory
freebsd_advisory
FreeBSD-SA-21:07.openssl
2021-03-25 00:00:00
nodejsblog
nodejsblog
April 2021 Security Releases
2021-04-06 00:00:00
gentoo
gentoo
OpenSSL: Multiple vulnerabilities
2021-03-31 00:00:00
kaspersky
kaspersky
KLA12311 Multiple vulnerabilities in Microsoft Developer Tools
2021-10-12 00:00:00
f5
f5
K52171694 : OpenSSL vulnerability CVE-2021-3450
2021-03-26 00:00:00
K83623027 : OpenSSL vulnerability CVE-2021-3449
2021-03-26 00:00:00
rustsec
rustsec
CA certificate check bypass with X509_V_FLAG_X509_STRICT
2021-05-01 12:00:00
NULL pointer deref in signature_algorithms processing
2021-05-01 12:00:00
prion
prion
Design/Logic Flaw
2021-03-25 15:15:00
Null pointer dereference
2021-03-25 15:15:00
debiancve
debiancve
CVE-2021-3450
2021-03-25 15:15:00
CVE-2021-3449
2021-03-25 15:15:00
githubexploit
githubexploit
Exploit for NULL Pointer Dereference in Openssl
2021-03-26 01:09:25
Exploit for NULL Pointer Dereference in Openssl
2023-09-08 10:53:39
debian
debian
[SECURITY] [DLA 2751-1] postgresql-9.6 security update
2021-08-31 14:03:14
[SECURITY] [DSA 4875-1] openssl security update
2021-03-25 15:41:28
[SECURITY] [DSA 4875-1] openssl security update
2021-03-25 15:41:28
redhatcve
redhatcve
CVE-2021-3449
2021-03-25 14:58:10
CVE-2021-3450
2021-03-25 14:58:02
cloudfoundry
cloudfoundry
USN-4891-1: OpenSSL vulnerability | Cloud Foundry
2021-04-14 00:00:00
checkpoint_security
checkpoint_security
Check Point Response to OpenSSL CVE-2021-3449
2021-04-10 23:31:27
veracode
veracode
Denial Of Service (DoS)
2021-03-25 16:28:32
Privilege Escalation
2021-03-25 16:37:03
github
github
openssl-src NULL pointer Dereference in signature_algorithms processing
2021-08-25 20:54:02
Certificate check bypass in openssl-src
2021-08-25 20:54:00
ics
ics
Siemens OpenSSL Vulnerabilities in Industrial Products (Update B)
2022-08-11 12:00:00
ubuntucve
ubuntucve
CVE-2021-3450
2021-03-25 00:00:00
CVE-2021-3449
2021-03-25 00:00:00
alpinelinux
alpinelinux
CVE-2021-3450
2021-03-25 15:15:00
CVE-2021-3449
2021-03-25 15:15:00
suse
suse
Security update for openssl-1_1 (important)
2021-03-26 00:00:00
Security update for nodejs12 (important)
2021-07-14 00:00:00
Security update for nodejs12 (important)
2021-07-20 00:00:00
ubuntu
ubuntu
OpenSSL vulnerability
2021-03-25 00:00:00
cve
cve
CVE-2021-3449
2021-03-25 15:15:00
CVE-2021-3450
2021-03-25 15:15:00
openssl
openssl
Vulnerability in OpenSSL CVE-2021-3449
2021-03-25 00:00:00
Vulnerability in OpenSSL CVE-2021-3450
2021-03-25 00:00:00
seebug
seebug
OpenSSL 拒绝服务攻击(CVE-2021-3449)
2021-03-29 00:00:00
mscve
mscve
7.4 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
7.2 High
AI Score
Confidence
High
5.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
0.004 Low
EPSS
Percentile
71.6%
Related for OPENVAS:1361412562310818227