Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:OPENSUSE-SU-2024:10088-1
HistoryJun 15, 2024 - 12:00 a.m.

libmbedcrypto0-2.4.0-1.2 on GA media

2024-06-1500:00:00
Google
osv.dev
libmbedcrypto0-2.4.0-1.2
ga media
opensuse tumbleweed
security issues

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

5.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

7.2

Confidence

Low

JSON

These are all security issues fixed in the libmbedcrypto0-2.4.0-1.2 package on the GA media of openSUSE Tumbleweed.

Related

osv 1
mageia 2
nessus 35
openvas 39
archlinux 3
gentoo 2
fedora 6
cvelist 1
ubuntucve 2
prion 2
nvd 2
cve 2
debian 7
securityvulns 2
suse 1
freebsd 2
ibm 72
kaspersky 1
lenovo 1
redhat 2
centos 3
ubuntu 2
oraclelinux 2
veracode 1
aix 1
f5 1
mozilla 1
amazon 2
debiancve 1
osv
osv
libmbedcrypto7-2.28.3-1.1 on GA media
2024-06-15 00:00:00
mageia
mageia
Updated polarssl package fix security vulnerabilities
2014-11-22 13:54:50
Updated polarssl & hiawatha packages fix security vulnerabilities
2015-05-05 16:36:50
nessus
nessus
Fedora 20 : polarssl-1.2.12-1.fc20 (2014-14898)
2014-11-24 00:00:00
openSUSE Security Update : polarssl (openSUSE-SU-2014:1457-1)
2014-11-20 00:00:00
Fedora 19 : polarssl-1.2.12-1.fc19 (2014-14912)
2014-11-24 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0185)
2022-01-28 00:00:00
Mageia: Security Advisory (MGASA-2014-0481)
2022-01-28 00:00:00
Fedora Update for polarssl FEDORA-2014-14912
2014-11-23 00:00:00
archlinux
archlinux
polarssl: multiple issues
2014-11-06 00:00:00
mbedtls: arbitrary code execution
2015-10-15 00:00:00
mbedtls: man-in-the-middle
2016-01-25 00:00:00
gentoo
gentoo
PolarSSL: Multiple vulnerabilities
2018-01-15 00:00:00
mbed TLS: Multiple vulnerabilities
2017-06-20 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: polarssl-1.2.12-1.fc20
2014-11-22 12:45:21
[SECURITY] Fedora 19 Update: polarssl-1.2.12-1.fc19
2014-11-22 12:43:01
[SECURITY] Fedora 20 Update: polarssl-1.2.12-3.fc20
2015-01-30 04:31:47
cvelist
cvelist
CVE-2014-8627
2014-11-24 15:00:00
ubuntucve
ubuntucve
CVE-2014-8627
2014-11-24 00:00:00
CVE-2015-7575
2015-12-31 00:00:00
prion
prion
Code injection
2014-11-24 15:59:00
Code injection
2016-01-09 02:59:00
nvd
nvd
CVE-2014-8627
2014-11-24 15:59:11
CVE-2015-7575
2016-01-09 02:59:10
cve
cve
CVE-2014-8627
2014-11-24 15:59:11
CVE-2015-7575
2016-01-09 02:59:10
debian
debian
[SECURITY] [DLA 129-1] polarssl security update
2015-01-03 21:32:56
[SECURITY] [DSA 3116-1] polarssl security update
2014-12-30 01:19:54
[SECURITY] [DLA 331-1] polarssl security update
2015-10-22 18:09:19
securityvulns
securityvulns
[SECURITY] [DSA 3116-1] polarssl security update
2014-12-30 00:00:00
PolarSSL DoS
2014-12-30 00:00:00
suse
suse
Security update for mbedtls (important)
2015-12-13 13:12:45
freebsd
freebsd
mbedTLS/PolarSSL -- DoS and possible remote code execution
2015-10-05 00:00:00
NSS -- MD5 downgrade in TLS 1.2 signatures
2015-12-22 00:00:00
ibm
ibm
Security Bulletin: Vulnerability in MD5 Signature and Hash Algorithm affects IBM Flex System FC5022 16Gb SAN Scalable Switch (CVE-2015-7575)
2019-01-31 02:25:02
Security Bulletin: Vulnerability in IBM Java Runtime affects IBM MQ Light (CVE-2015-7575)
2018-06-15 07:05:00
Security Bulletin: Vulnerability in MD5 Signature and Hash Algorithm affects Rational Performance Tester (CVE-2015-7575)
2018-06-17 05:08:57
kaspersky
kaspersky
KLA10732 Security bypass vulnerability in Mozilla Firefox and Firefox ESR
2015-12-22 00:00:00
lenovo
lenovo
Security Losses from Obsolete and Truncated Transcript Hashes (SLOTH)
2016-08-14 00:00:00
redhat
redhat
(RHSA-2016:0007) Moderate: nss security update
2016-01-07 00:00:00
(RHSA-2016:0012) Moderate: gnutls security update
2016-01-07 00:00:00
centos
centos
gnutls security update
2016-01-07 22:10:02
openssl security update
2016-01-07 22:09:26
nss security update
2016-01-07 22:08:46
ubuntu
ubuntu
Firefox vulnerability
2016-01-08 00:00:00
OpenSSL vulnerability
2016-01-07 00:00:00
oraclelinux
oraclelinux
nss security update
2016-01-07 00:00:00
openssl security update
2016-01-07 00:00:00
veracode
veracode
Man-in-the-Middle (MitM)
2019-01-15 09:09:31
aix
aix
Vulnerability in MD5 Signature and Hash Algorithm affects OpenSSL on AIX
2016-01-29 15:43:20
f5
f5
K02201365 : SLOTH: TLS 1.2 handshake vulnerability CVE-2015-7575
2016-01-23 00:00:00
mozilla
mozilla
MD5 signatures accepted within TLS 1.2 ServerKeyExchange in server signature — Mozilla
2015-12-22 00:00:00
amazon
amazon
Medium: nss
2016-02-09 13:30:00
Medium: gnutls
2016-02-09 13:30:00
debiancve
debiancve
CVE-2015-7575
2016-01-09 02:59:10

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

5.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

7.2

Confidence

Low

JSON
Related for OSV:OPENSUSE-SU-2024:10088-1
osv1mageia2nessus35openvas39archlinux3gentoo2fedora6cvelist1ubuntucve2prion2nvd2cve2debian7securityvulns2suse1freebsd2ibm72kaspersky1lenovo1redhat2centos3ubuntu2oraclelinux2veracode1aix1f51mozilla1amazon2debiancve1