OESA-2024-2385 openssl security update

🗓️ 15 Nov 2024 12:19:26Reported by GoogleType

osv

osv🔗 osv.dev

OpenSSL fixes out-of-bounds memory access in binary curve APIs due to exotic parameters.

Reporter	Title	Published	Views	Family All 206
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in IBM API Connect	15 Mar 202500:18	–	ibm
IBM Security Bulletins	Security Bulletin: IBM MQ is affected by multiple vulnerabilities in the IBM Semeru Runtime	27 Feb 202515:56	–	ibm
IBM Security Bulletins	Security Bulletin: Security vulnerabilities affect multiple packages shipped with IBM CICS TX Advanced.	28 Apr 202510:33	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities affect IBM® Semeru Runtime	11 Dec 202410:20	–	ibm
IBM Security Bulletins	Security Bulletin: AIX is vulnerable to information disclosure (CVE-2024-13176) or arbitrary code execution or a denial of service (CVE-2024-9143) due to OpenSSL	15 Apr 202503:47	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Data Product Hub is affected by several vulnerabilities	11 Dec 202422:59	–	ibm
IBM Security Bulletins	Security Bulletin: IBM QRadar Wincollect is vulnerable to using components with known vulnerabilities	10 Apr 202517:22	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in OpenSSL affect IBM Rational ClearQuest	11 Aug 202513:06	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in OpenSSL affects IBM Integrated Analytics System [CVE-2024-9143]	28 Jan 202522:08	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities affecting IBM Decision Optimization for Cloud Pak for Data are addressed	16 May 202515:04	–	ibm

Source	Link
openeuler	www.openeuler.org/zh/security/security-bulletins/detail/
nvd	www.nvd.nist.gov/vuln/detail/CVE-2024-9143

03 Sep 2025 06:20Current

7.4High risk

Vulners AI Score7.4

CVSS 3.14.3

EPSS0.00883

SSVC

openssl binary curves out of bounds exotic parameters remote code execution