Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
photonPhotonPHSA-2024-5.0-0198
HistoryFeb 06, 2024 - 12:00 a.m.

Important Photon OS Security Update - PHSA-2024-5.0-0198

2024-02-0600:00:00
github.com
17
photon os
security update
linux-rt
linux
openssl
linux-secure

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

10 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

60.0%

JSON

Updates of [‘linux-rt’, ‘linux’, ‘openssl’, ‘linux-secure’] packages of Photon OS have been released.

OSVersionArchitecturePackageVersionFilename
Photon5.0x86_64linux-rt-drivers-intel-i40e-docs< 2.22.18-1.0601075001.ph5linux-rt-drivers-intel-i40e-docs-2.22.18-1.0601075001.ph5.x86_64.rpm
Photon5.0x86_64linux-rt-drivers-intel-iavf< 4.5.3-1.0601075001.ph5linux-rt-drivers-intel-iavf-4.5.3-1.0601075001.ph5.x86_64.rpm
Photon5.0x86_64linux-esx-devel< 6.1.75-1.ph5linux-esx-devel-6.1.75-1.ph5.x86_64.rpm
Photon5.0x86_64linux-rt< 6.1.75-1.ph5linux-rt-6.1.75-1.ph5.x86_64.rpm
Photon5.0x86_64linux-rt-drivers-intel-iavf< 4.8.2-1.0601075001.ph5linux-rt-drivers-intel-iavf-4.8.2-1.0601075001.ph5.x86_64.rpm
Photon5.0x86_64openssl-docs< 3.0.9-10.ph5openssl-docs-3.0.9-10.ph5.x86_64.rpm
Photon5.0x86_64linux-rt-devel< 6.1.75-1.ph5linux-rt-devel-6.1.75-1.ph5.x86_64.rpm
Photon5.0x86_64linux-docs< 6.1.75-1.ph5linux-docs-6.1.75-1.ph5.x86_64.rpm
Photon5.0x86_64linux-rt-drivers-intel-i40e< 2.23.17-1.0601075001.ph5linux-rt-drivers-intel-i40e-2.23.17-1.0601075001.ph5.x86_64.rpm
Photon5.0x86_64openssl-c_rehash< 3.0.9-10.ph5openssl-c_rehash-3.0.9-10.ph5.x86_64.rpm
Rows per page:
1-10 of 391

Related

photon 75
alpinelinux 2
nessus 29
f5 1
openvas 25
osv 4
prion 7
ibm 4
cgr 1
github 1
cbl_mariner 5
debiancve 4
veracode 2
citrix 1
cvelist 5
redhatcve 3
amazon 2
xen 1
ubuntucve 5
cve 7
openssl 1
wolfi 1
oraclelinux 1
mageia 2
ubuntu 2
freebsd 1
zdt 2
hivepro 1
vmware 2
packetstorm 1
exploitdb 1
photon
photon
Important Photon OS Security Update - PHSA-2024-3.0-0729
2024-02-22 00:00:00
Important Photon OS Security Update - PHSA-2024-4.0-0559
2024-01-31 00:00:00
Moderate Photon OS Security Update - PHSA-2024-3.0-0721
2024-02-05 00:00:00
alpinelinux
alpinelinux
CVE-2023-46838
2024-01-29 11:15:07
CVE-2024-0727
2024-01-26 09:15:07
nessus
nessus
SUSE SLES12 Security Update : openssl-1_1 (SUSE-SU-2024:0813-1)
2024-03-09 00:00:00
Siemens SIMATIC S7-1500 Improper Input Validation (CVE-2024-0727)
2024-04-22 00:00:00
EulerOS 2.0 SP9 : openssl (EulerOS-SA-2024-1491)
2024-04-09 00:00:00
f5
f5
K000138695 : OpenSSL vulnerability CVE-2024-0727
2024-02-23 00:00:00
openvas
openvas
OpenSSL DoS Vulnerability (20240125) - Linux
2024-01-26 00:00:00
Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2024-1220)
2024-03-12 00:00:00
openSUSE: Security Advisory for openssl (SUSE-SU-2024:0815-1)
2024-03-25 00:00:00
osv
osv
CVE-2024-0727
2024-01-26 09:15:07
Null pointer dereference in PKCS12 parsing
2024-01-26 09:30:23
CVE-2023-46838
2024-01-29 11:15:07
prion
prion
Null pointer dereference
2024-01-26 09:15:00
Design/Logic Flaw
2024-01-02 18:15:00
Double free
2024-01-31 13:15:00
ibm
ibm
Security Bulletin: IBM DataPower Gateway vulnerable to DOS in OpenSSL (CVE-2024-0727)
2024-05-14 16:59:51
Security Bulletin: z/Transaction Processing Facility is affected by an OpenSSL vulnerability
2024-03-15 13:37:53
Security Bulletin: IBM MQ Appliance is affected by a denial of service vulnerability (CVE-2024-0727)
2024-04-26 19:49:52
cgr
cgr
CVE-2024-0727 vulnerabilities
2024-05-18 09:07:38
github
github
Null pointer dereference in PKCS12 parsing
2024-01-26 09:30:23
cbl_mariner
cbl_mariner
CVE-2024-0727 affecting package openssl for versions less than 1.1.1k-29
2024-05-18 09:07:37
CVE-2023-46838 affecting package kernel for versions less than 5.15.153.1-1
2024-04-09 20:48:36
CVE-2024-0727 affecting package nodejs for versions less than 16.20.2-2
2024-05-18 09:07:37
debiancve
debiancve
CVE-2023-46838
2024-01-29 11:15:07
CVE-2024-0727
2024-01-26 09:15:07
CVE-2024-0193
2024-01-02 18:15:08
veracode
veracode
NULL Pointer Dereference
2024-01-30 17:14:19
Denial Of Service
2024-01-30 20:23:38
citrix
citrix
Citrix Hypervisor Security Bulletin for CVE-2023-46838
2024-01-23 12:22:10
cvelist
cvelist
CVE-2023-46838 Linux: netback processing of zero-length transmit fragment
2024-01-29 10:18:48
CVE-2024-0193 Kernel: netfilter: use-after-free in nft_trans_gc_catchall_sync leads to privilege escalation
2024-01-02 18:05:13
CVE-2024-1085 Use-after-free in Linux kernel's netfilter: nf_tables component
2024-01-31 12:14:32
redhatcve
redhatcve
CVE-2024-1085
2024-01-31 19:26:25
CVE-2024-0727
2024-01-25 17:20:37
CVE-2024-0193
2024-01-17 11:08:36
amazon
amazon
Low: openssl11
2024-02-29 10:03:00
Low: openssl
2024-02-29 10:03:00
xen
xen
Linux: netback processing of zero-length transmit fragment
2024-01-22 18:30:00
ubuntucve
ubuntucve
CVE-2023-46838
2024-01-29 00:00:00
CVE-2024-0193
2024-01-02 00:00:00
CVE-2024-0727
2024-01-26 00:00:00
cve
cve
CVE-2023-46838
2024-01-29 11:15:07
CVE-2024-0193
2024-01-02 18:15:08
CVE-2024-1085
2024-01-31 13:15:10
openssl
openssl
Vulnerability in OpenSSL CVE-2024-0727
2024-01-25 00:00:00
wolfi
wolfi
CVE-2024-0727 vulnerabilities
2024-05-18 09:07:35
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2024-03-11 00:00:00
mageia
mageia
Updated kernel packages fix security vulnerabilities and other bugs
2024-02-09 05:45:39
Updated kernel-linus fixes security vulnerabilities and many bugs
2024-02-09 04:34:03
ubuntu
ubuntu
Kernel Live Patch Security Notice
2024-04-30 00:00:00
OpenSSL vulnerabilities
2024-02-13 00:00:00
freebsd
freebsd
OpenSSL -- Multiple vulnerabilities
2024-01-30 00:00:00
zdt
zdt
VMware Cloud Director 10.5 - Bypass identity verification Exploit
2024-03-12 00:00:00
VMware Cloud Director - Bypass identity verification Exploit
2023-12-08 00:00:00
hivepro
hivepro
VMware Unveils Critical Authentication Bypass Vulnerability in VCD Appliance
2023-11-17 08:07:39
vmware
vmware
VMware Cloud Director Appliance contains an authentication bypass vulnerability (CVE-2023-34060).
2023-11-14 00:00:00
VMware Cloud Director Appliance contains an authentication bypass vulnerability (CVE-2023-34060).
2023-11-14 00:00:00
packetstorm
packetstorm
VMware Cloud Director 10.5 Authentication Bypass
2024-03-13 00:00:00
exploitdb
exploitdb
VMware Cloud Director 10.5 - Bypass identity verification
2024-03-12 00:00:00

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

10 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

60.0%

JSON
Related for PHSA-2024-5.0-0198
photon75alpinelinux2nessus29f51openvas25osv4prion7ibm4cgr1github1cbl_mariner5debiancve4veracode2citrix1cvelist5redhatcve3amazon2xen1ubuntucve5cve7openssl1wolfi1oraclelinux1mageia2ubuntu2freebsd1zdt2hivepro1vmware2packetstorm1exploitdb1