Lucene search
+L

17 matches found

osv
osv
added 2026/06/09 4:3 p.m.2 views

CVE-2026-42767 NULL Pointer Dereference in CRMF EncryptedValue Decryption

Issue summary: An attacker-controlled CMP Certificate Management Protocol server could trigger a NULL pointer dereference in a CMP client application. Impact summary: A NULL pointer dereference causes a crash of the application and a Denial of Service. An attacker controlling a CMP server or acti...

5.9CVSS7.1AI score0.00349EPSS
Exploits0References8
nvd
nvd
added 2026/06/09 2:16 p.m.14 views

CVE-2026-11793

A stack buffer overflow flaw was found in 389 Directory Server. The checkPrefix function in pw.c copies an attacker-controlled algorithm ID into a 256-byte stack buffer without bounds checking when parsing reversible-encrypted attribute values. An attacker with Directory Manager privileges can...

4.9CVSS0.00282EPSS
Exploits0References2
osv
osv
added 2026/06/09 2:16 p.m.10 views

UBUNTU-CVE-2026-11793

A stack buffer overflow flaw was found in 389 Directory Server. The checkPrefix function in pw.c copies an attacker-controlled algorithm ID into a 256-byte stack buffer without bounds checking when parsing reversible-encrypted attribute values. An attacker with Directory Manager privileges can...

4.9CVSS5.6AI score0.00282EPSS
Exploits0References5
euvd
euvd
added 2026/06/09 1:11 p.m.11 views

EUVD-2026-35423

A stack buffer overflow flaw was found in 389 Directory Server. The checkPrefix function in pw.c copies an attacker-controlled algorithm ID into a 256-byte stack buffer without bounds checking when parsing reversible-encrypted attribute values. An attacker with Directory Manager privileges can...

4.9CVSS5.7AI score0.00282EPSS
Exploits0References3
debiancve
debiancve
added 2026/06/09 1:11 p.m.10 views

CVE-2026-11793

A stack buffer overflow flaw was found in 389 Directory Server. The checkPrefix function in pw.c copies an attacker-controlled algorithm ID into a 256-byte stack buffer without bounds checking when parsing reversible-encrypted attribute values. An attacker with Directory Manager privileges can...

4.9CVSS5.7AI score0.00282EPSS
Exploits0
vulnrichment
vulnrichment
added 2026/06/09 1:11 p.m.9 views

CVE-2026-11793 389-ds-base: 389-ds-base: stack buffer overflow in checkprefix() algorithm id parsing

A stack buffer overflow flaw was found in 389 Directory Server. The checkPrefix function in pw.c copies an attacker-controlled algorithm ID into a 256-byte stack buffer without bounds checking when parsing reversible-encrypted attribute values. An attacker with Directory Manager privileges can...

4.9CVSS5.7AI score0.00282EPSS
Exploits0References2
osv
osv
added 2026/04/27 6:33 p.m.30 views

JLSEC-2026-239 Issue summary: Processing some specially crafted ASN.1 object identifiers or data containing them...

Issue summary: Processing some specially crafted ASN.1 object identifiers or data containing them may be very slow. Impact summary: Applications that use OBJobj2txt directly, or use any of the OpenSSL subsystems OCSP, PKCS7/SMIME, CMS, CMP/CRMF or TS with no message size limit may experience...

6.5CVSS6.3AI score0.75116EPSS
Exploits0References14
osv
osv
added 2026/04/07 10:16 p.m.7 views

ALPINE-CVE-2026-28389

Issue summary: During processing of a crafted CMS EnvelopedData message with KeyAgreeRecipientInfo a NULL pointer dereference can happen. Impact summary: Applications that process attacker-controlled CMS data may crash before authentication or cryptographic operations occur resulting in Denial of...

7.5CVSS5.9AI score0.01027EPSS
Exploits0References1
osv
osv
added 2026/01/13 3:29 p.m.3 views

CVE-2025-68792 tpm2-sessions: Fix out of range indexing in name_size

In the Linux kernel, the following vulnerability has been resolved: tpm2-sessions: Fix out of range indexing in namesize 'namesize' does not have any range checks, and it just directly indexes with TPMALGID, which could lead into memory corruption at worst. Address the issue by only processing...

6.5AI score0.00166EPSS
Exploits0References6
nessus
nessus
added 2025/08/27 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2021-30004

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In wpasupplicant and hostapd 2.9, forging attacks may occur because AlgorithmIdentifier parameters are mishandled in tls/pkcs1.c and tls/x509v3.c. CVE-2021-3000...

5.3CVSS6.7AI score0.01669EPSS
Exploits0References2
nessus
nessus
added 2023/12/07 12:0 a.m.73 views

RHEL 7 / 8 : Red Hat JBoss Core Services Apache HTTP Server 2.4.57 SP2 (RHSA-2023:7625)

The remote Redhat Enterprise Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:7625 advisory. Red Hat JBoss Core Services is a set of supplementary software for Red Hat JBoss middleware products. This software, such as Apache HTTP...

9.8CVSS7.6AI score0.99999EPSS
Exploits27References24
susecve
susecve
added 2023/02/15 3:42 a.m.3 views

SUSE CVE-2021-30004

In wpasupplicant and hostapd 2.9, forging attacks may occur because AlgorithmIdentifier parameters are mishandled in tls/pkcs1.c and tls/x509v3.c...

5.3CVSS8.4AI score0.01669EPSS
Exploits0References8
mscve
mscve
added 2021/04/08 7:0 a.m.5 views

In wpa_supplicant and hostapd 2.9 forging attacks may occur because AlgorithmIdentifier parameters are mishandled in tls/pkcs1.c and tls/x509v3.c.

...

5.3CVSS7AI score0.01669EPSS
Exploits0
osv
osv
added 2021/04/02 5:15 a.m.7 views

AZL-6974 CVE-2021-30004 affecting package wpa_supplicant for versions less than 2.9-4

In wpasupplicant and hostapd 2.9, forging attacks may occur because AlgorithmIdentifier parameters are mishandled in tls/pkcs1.c and tls/x509v3.c...

5.3CVSS5.8AI score0.01669EPSS
Exploits0References1
freebsd
freebsd
added 2018/01/31 12:0 a.m.33 views

strongswan - Insufficient input validation in RSASSA-PSS signature parser

Strongswan Release Notes reports: Fixed a DoS vulnerability in the parser for PKCS1 RSASSA-PSS signatures that was caused by insufficient input validation. One of the configurable parameters in algorithm identifier structures for RSASSA-PSS signatures is the mask generation function MGF. Only MGF...

5.3CVSS5.9AI score0.01069EPSS
Exploits0References1
osv
osv
added 2016/02/28 4:59 a.m.4 views

DEBIAN-CVE-2016-2524

epan/dissectors/packet-x509af.c in the X.509AF dissector in Wireshark 2.0.x before 2.0.2 mishandles the algorithm ID, which allows remote attackers to cause a denial of service application crash via a crafted packet...

5.9CVSS5.4AI score0.01865EPSS
Exploits0References1
osv
osv
added 2016/02/28 4:59 a.m.3 views

UBUNTU-CVE-2016-2524

epan/dissectors/packet-x509af.c in the X.509AF dissector in Wireshark 2.0.x before 2.0.2 mishandles the algorithm ID, which allows remote attackers to cause a denial of service application crash via a crafted packet...

5.9CVSS6.6AI score0.01865EPSS
Exploits0References6
Rows per page
Query Builder