CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

SUSE CVE•added 2023/02/15 4:34 a.m.•1 views

SUSE CVE-2018-0737

The OpenSSL RSA Key generation algorithm has been shown to be vulnerable to a cache timing side channel attack. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover the private key. Fixed in OpenSSL 1.1.0i-dev Affected 1.1.0-1.1.0h...

4.7CVSS6.5AI score0.38121EPSS

Exploits0References41

OpenVAS•added 2021/08/26 12:0 a.m.•11 views

openSUSE: Security Advisory for openssl-1_0_0 (openSUSE-SU-2021:1189-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.4CVSS8.2AI score0.0046EPSS

Exploits0References2

OpenVAS•added 2021/06/09 12:0 a.m.•20 views

SUSE: Security Advisory (SUSE-SU-2018:2812-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8AI score0.78382EPSS

Exploits0References2

Tenable Nessus•added 2019/03/27 12:0 a.m.•33 views

openSUSE Security Update : nodejs8 (openSUSE-2019-718)

This update for nodejs8 to version 8.11.4 fixes the following issues : Security issues fixed : - CVE-2018-12115: Fixed an out-of-bounds memory write in Buffer that could be used to write to memory outside of a Buffer's memory space buffer bsc1105019 - Upgrade to OpenSSL 1.0.2p, which fixed : -...

7.5CVSS6.6AI score0.78382EPSS

Exploits0References5

Tenable Nessus•added 2019/01/02 12:0 a.m.•29 views

SUSE SLES15 Security Update : nodejs8 (SUSE-SU-2018:2812-1)

This update for nodejs8 to version 8.11.4 fixes the following issues : Security issues fixed : CVE-2018-12115: Fixed an out-of-bounds memory write in Buffer that could be used to write to memory outside of a Buffer's memory space buffer bsc1105019 Upgrade to OpenSSL 1.0.2p, which fixed : -...

7.5CVSS6.4AI score0.78382EPSS

Exploits0References8

Mageia•added 2018/11/27 3:26 p.m.•55 views

Updated openssl packages fix security vulnerabilities

The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.1a Affected 1.1.1. Fixed in OpenSSL 1.1.0j Affected 1.1.0-1.1.0i. Fixed in OpenSSL 1.0.2q...

5.9CVSS6AI score0.05057EPSS

Exploits4References3

Positive Technologies•added 2018/10/16 12:0 a.m.•1 views

PT-2018-2639

Name of the Vulnerable Software and Affected Versions OpenSSL versions prior to 1.1.1a OpenSSL versions 1.1.0 through 1.1.0i OpenSSL versions 1.0.2 through 1.0.2p MySQL Server versions 5.6.42 and earlier MySQL Server versions 5.7.24 and earlier MySQL Server versions 8.0.13 and earlier Description...

10CVSS6.9AI score0.94464EPSS

Exploits241References482

OpenVAS•added 2018/09/09 12:0 a.m.•26 views

openSUSE: Security Advisory for nodejs4 (openSUSE-SU-2018:2667-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS8.2AI score0.78382EPSS

Exploits0References2

RedhatCVE•added 2018/06/14 5:18 a.m.•54 views

CVE-2018-0732

During key agreement in a TLS handshake using a DHE based ciphersuite a malicious server can send a very large prime value to the client. This will cause the client to spend an unreasonably long period of time generating a key for this prime resulting in a hang until the client has finished. This...

7.5CVSS2.7AI score0.78382EPSS

Exploits0References2