Lucene search
K

39 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2014-3661

Malware in sbrugna...

3.3CVSS6.2AI score0.00411EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2023-23524

Malicious code in bioql PyPI...

5.9CVSS6.2AI score0.00953EPSS
Exploits0References4
Microsoft CVE
Microsoft CVE
added 2025/10/02 1:5 a.m.4 views

Timing side-channel in SM2 algorithm on 64 bit ARM

...

6.5CVSS7AI score0.02234EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/10/01 11:25 p.m.3 views

SUSE CVE-2025-9231

Issue summary: A timing side-channel which could potentially allow remote recovery of the private key exists in the SM2 algorithm implementation on 64 bit ARM platforms. Impact summary: A timing side-channel in SM2 signature computations on 64 bit ARM platforms could allow recovering the private...

5.3CVSS6.7AI score0.02234EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2025/10/01 7:44 a.m.3 views

CVE-2025-39904

In the Linux kernel, the following vulnerability has been resolved: arm64: kexec: initialize kexecbuf struct in loadothersegments Patch series "kexec: Fix invalid field access". The kexecbuf structure was previously declared without initialization. commit bf454ec31add "kexecfile: allow to place...

5.5CVSS5.5AI score0.00121EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/10/01 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-9231

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Issue summary: A timing side-channel which could potentially allow remote recovery of the private key exists in the SM2 algorithm implementation on 64 bit ARM...

6.5CVSS7.5AI score0.02234EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/10/01 12:0 a.m.4 views

OpenSSL Timing Side-Channel Vulnerability (20250930, CVE-2025-9231) - Linux

OpenSSL is prone to a timing side-channel vulnerability in SM2 algorithm on 64 bit ARM. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

6.5CVSS6.9AI score0.02234EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/09/30 1:17 p.m.2 views

CVE-2025-9231 Timing side-channel in SM2 algorithm on 64 bit ARM

Issue summary: A timing side-channel which could potentially allow remote recovery of the private key exists in the SM2 algorithm implementation on 64 bit ARM platforms. Impact summary: A timing side-channel in SM2 signature computations on 64 bit ARM platforms could allow recovering the private...

6.3AI score0.02234EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/09/30 12:0 a.m.4 views

PT-2025-39987

Name of the Vulnerable Software and Affected Versions OpenSSL versions prior to 3.5.4 OpenSSL versions prior to 3.4.3 OpenSSL versions prior to 3.3.5 OpenSSL versions prior to 3.2.6 Description A timing side-channel exists in the SM2 algorithm implementation on 64-bit ARM platforms, potentially...

7.5CVSS7.2AI score0.02234EPSS
Exploits0References54
Xen Project
Xen Project
added 2023/10/10 12:0 p.m.63 views

Possible deadlock in Linux kernel event handling

ISSUE DESCRIPTION Closing of an event channel in the Linux kernel can result in a deadlock. This happens when the close is being performed in parallel to an unrelated Xen console action and the handling of a Xen console interrupt in an unprivileged guest. The closing of an event channel is e.g...

4.9CVSS6.4AI score0.00888EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/06/09 12:0 a.m.42 views

openSUSE 15: libopenssl-3-devel / libopenssl-3-devel-32bit / libopenssl3 / etc (SUSE-SU-2023:2470-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2470-1 advisory. - Update to version 3.0.8 bsc1207541. - CVE-2022-40735: Fixed remote trigger of expensive server-side DHE modular-exponentiation with long exponents ...

7.5CVSS6.9AI score0.73461EPSS
Exploits0References10
Ubuntu
Ubuntu
added 2023/05/30 2:16 p.m.132 views

USN-6119-1: OpenSSL vulnerabilities

Matt Caswell discovered that OpenSSL incorrectly handled certain ASN.1 object identifiers. A remote attacker could possibly use this issue to cause OpenSSL to consume resources, resulting in a denial of service. CVE-2023-2650 Anton Romanov discovered that OpenSSL incorrectly handled AES-XTS ciphe...

6.5CVSS7.1AI score0.73461EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/05/01 3:38 p.m.38 views

K000133752: OpenSSL vulnerability CVE-2023-1255

Security Advisory Description Issue summary: The AES-XTS cipher decryption implementation for 64 bit ARM platform contains a bug that could cause it to read past the input buffer, leading to a crash. Impact summary: Applications that use the AES-XTS algorithm on the 64 bit ARM platform can crash ...

5.9CVSS6.4AI score0.00953EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2023/04/20 8:59 p.m.37 views

CVE-2023-1255

A vulnerability was found in OpenSSL. This security flaw occurs because the AES-XTS cipher decryption implementation for the 64-bit ARM platform contains an issue that could cause it to read past the input buffer, leading to a crash...

5.1CVSS5.5AI score0.00953EPSS
Exploits0References4
NVD
NVD
added 2023/04/20 5:15 p.m.28 views

CVE-2023-1255

Issue summary: The AES-XTS cipher decryption implementation for 64 bit ARM platform contains a bug that could cause it to read past the input buffer, leading to a crash. Impact summary: Applications that use the AES-XTS algorithm on the 64 bit ARM platform can crash in rare circumstances. The...

5.9CVSS7.3AI score0.00953EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2023/04/20 4:14 p.m.15 views

CVE-2023-1255 Input buffer over-read in AES-XTS implementation on 64 bit ARM

Issue summary: The AES-XTS cipher decryption implementation for 64 bit ARM platform contains a bug that could cause it to read past the input buffer, leading to a crash. Impact summary: Applications that use the AES-XTS algorithm on the 64 bit ARM platform can crash in rare circumstances. The...

5.9AI score0.00953EPSS
Exploits0References4
Cvelist
Cvelist
added 2023/04/20 4:14 p.m.30 views

CVE-2023-1255 Input buffer over-read in AES-XTS implementation on 64 bit ARM

Issue summary: The AES-XTS cipher decryption implementation for 64 bit ARM platform contains a bug that could cause it to read past the input buffer, leading to a crash. Impact summary: Applications that use the AES-XTS algorithm on the 64 bit ARM platform can crash in rare circumstances. The...

6.6AI score0.00953EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2023/04/20 4:14 p.m.89 views

CVE-2023-1255

Issue summary: The AES-XTS cipher decryption implementation for 64 bit ARM platform contains a bug that could cause it to read past the input buffer, leading to a crash. Impact summary: Applications that use the AES-XTS algorithm on the 64 bit ARM platform can crash in rare circumstances. The...

5.9CVSS6.7AI score0.00953EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2021/02/02 12:6 p.m.84 views

Moderate: Red Hat Security Advisory: qemu-kvm-ma security update

An update for qemu-kvm-ma is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fro...

7.5CVSS6.7AI score0.02293EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2020/10/01 3:5 p.m.64 views

Important: Red Hat Security Advisory: qemu-kvm-ma security update

An update for qemu-kvm-ma is now available for Red Hat Enterprise Linux 7.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

5CVSS6.8AI score0.05447EPSS
Exploits1References2
Rows per page
Query Builder