Lucene search
K

182 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.8 views

MiracleLinux 7 : openssl-1.0.2k-23.el7 (AXSA:2022-2926:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-2926:01 advisory. openssl: Read buffer overruns processing ASN.1 strings CVE-2021-3712 Tenable has extracted the preceding description block directly from the MiracleLinux...

7.4CVSS6.8AI score0.50445EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/12/01 12:0 a.m.5 views

Ubuntu: Security Advisory (USN-7894-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS6.8AI score0.73461EPSS
Exploits3References3
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.6 views

TencentOS Server 2: openssl (TSSA-2023:0337)

The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2023:0337 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities:...

7.4CVSS7AI score0.50445EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.9 views

Azure Linux 3.0 Security Update: edk2 / openssl (CVE-2021-3712)

The version of edk2 / openssl installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-3712 advisory. - ASN.1 strings are represented internally within OpenSSL as an ASN1STRING structure which contains a...

7.4CVSS7AI score0.50445EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/12/11 12:0 a.m.13 views

Oracle Siebel Server <= 22.10 (April 2023 CPU)

The versions of Oracle Siebel CRM installed on the remote host are affected by a vulnerability as referenced in the April 2023 CPU advisory. - Vulnerability in the Siebel CRM product of Oracle Siebel CRM component: Siebel Core - Server Infrastructure OpenSSL. Supported versions that are affected...

7.4CVSS6.6AI score0.50445EPSS
Exploits0References3
Oracle linux
Oracle linux
added 2024/11/22 12:0 a.m.51 views

edk2 security update

Mon Sep 09 2024 Aaron Young - Create new 20240909 release for OL9 which includes the following fixed CVEs: - EDK2: EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access Orabug: 36990130 CVE-2024-1298 - EDK...

7.5CVSS7.4AI score0.95764EPSS
Exploits28
Tenable Nessus
Tenable Nessus
added 2024/08/30 12:0 a.m.15 views

CBL Mariner 2.0 Security Update: openssl (CVE-2021-3712)

The version of openssl installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-3712 advisory. - ASN.1 strings are represented internally within OpenSSL as an ASN1STRING structure which contains a buffer...

7.4CVSS7AI score0.50445EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2024/06/21 9:32 a.m.21 views

CVE-2021-3712 affecting package edk2 for versions less than 20240223gitedc6681206c1-1

CVE-2021-3712 affecting package edk2 for versions less than 20240223gitedc6681206c1-1. A patched version of the package is available...

7.4CVSS8.3AI score0.50445EPSS
Exploits0
Oracle linux
Oracle linux
added 2023/12/07 12:0 a.m.59 views

edk2 security update

20230821 - Create new 20230821 release for OL9 which includes the following fixed CVEs: CVE-2019-14560 - Update to OpenSSL 1.1.1v which includes the following fixed CVEs: CVE-2023-3817 CVE-2023-3446 CVE-2023-2650 CVE-2023-0465 CVE-2023-0466 CVE-2023-0464 CVE-2023-0286 CVE-2023-0215 CVE-2022-4450...

10CVSS7.9AI score0.95764EPSS
Exploits18
Oracle linux
Oracle linux
added 2023/12/07 12:0 a.m.60 views

edk2 security update

20230821 - Create new 20230821 release for OL7 which includes the following fixed CVEs: CVE-2019-14560 - Update to OpenSSL 1.1.1v which includes the following fixed CVEs: CVE-2023-3817 CVE-2023-3446 CVE-2023-2650 CVE-2023-0465 CVE-2023-0466 CVE-2023-0464 CVE-2023-0286 CVE-2023-0215 CVE-2022-4450...

10CVSS7.9AI score0.95764EPSS
Exploits18
IBM Security Bulletins
IBM Security Bulletins
added 2023/10/31 2:57 p.m.20 views

Security Bulletin: IBM Rational Build Forge 8.0.0.24 addresses multiple vulnerabilities by updating OpenSSL

Summary IBM Rational Build Forge 8.0.0.24 addresses multiple vulnerabilities by updating OpenSSL Vulnerability Details CVEID:CVE-2022-4304 DESCRIPTION: OpenSSL could allow a remote attacker to obtain sensitive information, caused by a timing-based side channel in the RSA Decryption implementation...

10CVSS9AI score0.95764EPSS
Exploits3Affected Software1
OSV
OSV
added 2023/08/31 12:15 p.m.1 views

BELL-CVE-2021-3712 CVE-2021-3712 does not affect BellSoft software

Bulletin has no description...

7.4CVSS7.3AI score0.50445EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2023/05/08 12:0 a.m.16 views

Huawei EulerOS: Security Advisory for shim-signed (EulerOS-SA-2023-1748)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.1AI score0.70561EPSS
Exploits2References2
F5 Networks
F5 Networks
added 2023/02/21 7:54 p.m.154 views

K19559038: OpenSSL vulnerability CVE-2021-3712

Security Advisory Description ASN.1 strings are represented internally within OpenSSL as an ASN1STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C strings which are repesented as a buffer for the string data which i...

7.4CVSS7.1AI score0.50445EPSS
Exploits0Affected Software19
OpenVAS
OpenVAS
added 2023/01/31 12:0 a.m.31 views

Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2023-1281)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.7AI score0.95764EPSS
Exploits8References2
Tenable Nessus
Tenable Nessus
added 2023/01/30 12:0 a.m.32 views

EulerOS Virtualization 3.0.2.2 : openssl (EulerOS-SA-2023-1281)

According to the versions of the openssl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - ASN.1 strings are represented internally within OpenSSL as an ASN1STRING structure which contains a buffer holding the string da...

10CVSS7.8AI score0.95764EPSS
Exploits8References5
IBM Security Bulletins
IBM Security Bulletins
added 2023/01/12 9:59 p.m.33 views

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to information disclosure or denial of service in OpenSSL (CVE-2021-3712)

Summary IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to information disclosure or denial of service in OpenSSL, caused by an out-of-bounds read when processing ASN.1 strings CVE-2021-3712. OpenSSL is used as part of the base image included in our service component...

7.4CVSS7.6AI score0.50445EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2022/12/20 12:0 a.m.25 views

Tenable Nessus Network Monitor < 6.0.0 Multiple Vulnerabilities (TNS-2022-02)

Tenable Nessus Network Monitor is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

8.5AI score
Exploits0References1
OpenVAS
OpenVAS
added 2022/11/18 12:0 a.m.84 views

Synology DiskStation Manager (DSM) 6.2.x, 7.x < 7.0.1-42218 OpenSSL Vulnerabilities (Synology-SA-21:24)

Synology DiskStation Manager DSM is prone to multiple vulnerabilities in OpenSSL. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9.8CVSS8.6AI score0.87816EPSS
Exploits1References1
IBM Security Bulletins
IBM Security Bulletins
added 2022/11/08 4:36 p.m.80 views

Security Bulletin: IBM Security Guardium is affected by multiple vulnerabilities

Summary IBM Security Guardium has fixed these vulnerabilities. Vulnerability Details CVEID:CVE-2021-38153 DESCRIPTION: Apache Kafka could allow a remote attacker to obtain sensitive information, caused by a timing attack flaw due to the use of "Arrays.equals" to validate a password or key. By...

7.4CVSS7.5AI score0.50445EPSS
Exploits0Affected Software1
Rows per page
Query Builder