CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2025/02/10 12:0 a.m.•17 views

Azure Linux 3.0 Security Update: cloud-hypervisor-cvm / edk2 / hvloader / kata-containers / kata-containers-cc / nodejs (CVE-2023-5678)

The version of cloud-hypervisor-cvm / edk2 / hvloader / kata-containers / kata-containers-cc / nodejs installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-5678 advisory. - Issue summary: Generating...

5.3CVSS6.5AI score0.00537EPSS

CBLMariner•added 2025/01/31 4:8 p.m.•7 views

CVE-2023-5678 affecting package edk2 for versions less than 20230301gitf80f052277c8-38

CVE-2023-5678 affecting package edk2 for versions less than 20230301gitf80f052277c8-38. A patched version of the package is available...

5.3CVSS6.2AI score0.00537EPSS

Rosalinux•added 2025/01/28 12:45 p.m.•20 views

Advisory ROSA-SA-2025-2617

software: openssl 1.1.1w OS: ROSA-CHROME packageevrstring: openssl-1.1.1.1w-3 CVE-ID: CVE-2023-5678 BDU-ID: 2023-08615 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the DHgeneratekey function of the OpenSSL library is related to the generation of excessively long X9.42 DH keys. Exploitation of t...

5.3CVSS6.9AI score0.00537EPSS

IBM Security Bulletins•added 2024/12/16 5:50 p.m.•29 views

Security Bulletin: IBM Storage Scale System may be affected by vulnerabilities in OpenSSL

Summary Security vulnerabilities have been discovered in OpenSSL that are now fixed. Vulnerability Details CVEID:CVE-2023-3446 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by a flaw when using the DHcheck, DHcheckex or EVPPKEYparamcheck functions to check a DH key or DH...

5.3CVSS7AI score0.01EPSS

IBM Security Bulletins•added 2024/11/19 7:57 p.m.•16 views

Security Bulletin: Vulnerability in NX-OS Firmware used by IBM c-type SAN directors and switches.

Summary Public disclosed OpenSSL vulnerability in NX-OS Firmware used by IBM c-type SAN directors and switches. The vulnerability has been addressed and can be resolved by applying the NX-OS code level listed below. CVE-2023-5678. Vulnerability Details CVEID:CVE-2023-5678 DESCRIPTION: Openssl is...

5.3CVSS6.9AI score0.00537EPSS

IBM Security Bulletins•added 2024/11/14 9:21 a.m.•21 views

Security Bulletin: Vulnerability in OpenSSL affects IBM Integrated Analytics System [CVE-2023-5678]

Summary Redhat provided OpenSSL is used by IBM Integrated Analytics System. IBM Integrated Analytics System has addressed the applicable CVE CVE-2023-5678 Vulnerability Details CVEID:CVE-2023-5678 DESCRIPTION: Openssl is vulnerable to a denial of service, caused by a flaw when using DHgeneratekey...

5.3CVSS6.7AI score0.00537EPSS

Debian•added 2024/11/03 6:33 a.m.•288 views

[SECURITY] [DLA 3942-2] openssl regression update

Debian LTS Advisory DLA-3942-2 [email protected] https://www.debian.org/lts/security/ Sean Whitton November 03, 2024 https://wiki.debian.org/LTS Package : openssl Version : 1.1.1w-0+deb11u2 CVE ID : CVE-2023-5678 CVE-2024-0727 CVE-2024-2511 CVE-2024-4741 CVE-2024-5535 CVE-2024-9143 Debi...

9.1CVSS6.8AI score0.08833EPSS

Exploits1

IBM Security Bulletins•added 2024/09/10 3:18 p.m.•48 views

Security Bulletin: Vulnerabilities in openssl library (CVE-2023-3446, CVE-2023-3817, CVE-2023-5678) affect Power HMC.

Summary The openssl library is used by Power Hardware Management Console HMC. HMC has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2023-3446 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by a flaw when using the DHcheck, DHcheckex or EVPPKEYparamcheck functio...

5.3CVSS6.4AI score0.01EPSS

CBLMariner•added 2024/07/22 3:37 p.m.•19 views

CVE-2023-5678 affecting package cloud-hypervisor-cvm for versions less than 38.0.72.2-1

CVE-2023-5678 affecting package cloud-hypervisor-cvm for versions less than 38.0.72.2-1. An upgraded version of the package is available that resolves this issue...

5.3CVSS5.6AI score0.00537EPSS

Slackware Linux•added 2024/07/17 7:35 p.m.•82 views

[slackware-security] openssl

New openssl packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/openssl-1.1.1za-i586-1slack15.0.txz: Upgraded. Apply patches to fix CVEs that were fixed by the 1.1.1x,y,za releases that were only...

9.1CVSS7.4AI score0.08833EPSS

Exploits1

IBM Security Bulletins•added 2024/07/16 12:17 p.m.•24 views

Security Bulletin: Security vulnerabilities may affect Ubuntu packages that are shipped with IBM CICS TX Advanced.

Summary Security vulnerabilities may affect Ubuntu packages that are shipped with IBM CICS TX Advanced. IBM CICS TX Advanced has addressed the issues. Vulnerability Details CVEID:CVE-2023-4641 DESCRIPTION: shadow-maint shadow-utils could allow a local authenticated attacker to obtain sensitive...

5.5CVSS7.1AI score0.10933EPSS

Exploits4Affected Software1

IBM Security Bulletins•added 2024/07/16 8:12 a.m.•51 views

Security Bulletin: Vulnerabilities in OpenSSL affect IBM Rational ClearQuest

Summary OpenSSL vulnerabilities were disclosed by the OpenSSL Project. OpenSSL is used by IBM Rational ClearQuest. IBM Rational ClearQuest has addressed mutiple CVEs. Vulnerability Details CVEID:CVE-2023-6129 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by a flaw in the...

6.5CVSS6.8AI score0.03331EPSS

CBLMariner•added 2024/07/12 11:39 p.m.•19 views

CVE-2023-5678 affecting package cloud-hypervisor-cvm for versions less than 38.0.72.2-1

CVE-2023-5678 affecting package cloud-hypervisor-cvm for versions less than 38.0.72.2-1. An upgraded version of the package is available that resolves this issue...

5.3CVSS5.6AI score0.00537EPSS

Tenable Nessus•added 2024/07/03 12:0 a.m.•34 views

CBL Mariner 2.0 Security Update: cloud-hypervisor-cvm / edk2 / hvloader / kata-containers / kata-containers-cc / nodejs (CVE-2023-5678)

The version of cloud-hypervisor-cvm / edk2 / hvloader / kata-containers / kata-containers-cc / nodejs installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-5678 advisory. - Issue summary: Generating...

5.3CVSS6.5AI score0.00537EPSS

Tenable Nessus•added 2024/06/03 12:0 a.m.•14 views

RHEL 9 : openssl (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - openssl: double free after calling PEMreadbioex CVE-2022-4450 - Issue summary: Checking excessively long ...

9.1CVSS7.9AI score0.06702EPSS

Exploits1References4

CBLMariner•added 2024/05/17 9:38 p.m.•18 views

CVE-2023-5678 affecting package kata-containers for versions less than 3.2.0.azl1-1

CVE-2023-5678 affecting package kata-containers for versions less than 3.2.0.azl1-1. An upgraded version of the package is available that resolves this issue...

5.3CVSS6.8AI score0.00537EPSS

OpenVAS•added 2024/05/17 12:0 a.m.•26 views

Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2024-1706)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS5.8AI score0.91736EPSS

OpenVAS•added 2024/05/16 12:0 a.m.•27 views

Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2024-1666)

5.3CVSS7.1AI score0.01EPSS