Lucene search
K

114 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/06/22 12:20 p.m.5 views

Security Bulletin: Vulnerability in cryptography affects IBM Cloud Pak for Data System 2.0 (CPDS 2.0) [CVE-2023-2650, CVE-2023-4807, CVE-2023-3446 ]

Summary The cryptography package is used by IBM Cloud Pak for Data System 2.0 . IBM Cloud Pak for Data System 2.0 has addressed the applicable CVEs CVE-2023-2650, CVE-2023-4807, CVE-2023-3446 Vulnerability Details CVEID:CVE-2023-2650 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caus...

7.8CVSS7.6AI score0.73461EPSS
Exploits0Affected Software1
OSV
OSV
added 2025/04/11 4:9 p.m.11 views

CLSA-2025-1744368964 openssl: Fix of CVE-2023-2650

Fix possible DoS translating ASN.1 object identifiers Resolves: CVE-2023-2650 - Release the DRBG in global default libctx early Resolves: rhbz2211340...

6.5CVSS5.8AI score0.73461EPSS
Exploits0References1
CBLMariner
CBLMariner
added 2025/04/08 9:12 p.m.19 views

CVE-2023-2650 affecting package hvloader for versions less than 1.0.1-9

CVE-2023-2650 affecting package hvloader for versions less than 1.0.1-9. A patched version of the package is available...

6.5CVSS7.6AI score0.73461EPSS
Exploits0
Oracle linux
Oracle linux
added 2024/11/22 12:0 a.m.51 views

edk2 security update

Mon Sep 09 2024 Aaron Young - Create new 20240909 release for OL9 which includes the following fixed CVEs: - EDK2: EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access Orabug: 36990130 CVE-2024-1298 - EDK...

7.5CVSS7.4AI score0.95764EPSS
Exploits28
IBM Security Bulletins
IBM Security Bulletins
added 2024/10/29 4:33 p.m.25 views

Security Bulletin: IBM Master Data Management is vulnerable to denial of service through OpenSSL by a specially crafted request (CVE-2023-2650)

Summary IBM Master Data Management v11.6, and v12.0 are vulnerable to denial of service through OpenSSL by a specially crafted request from no message size limit. OpenSSL is vulnerable to a denial of service, caused by a flaw when using OBJobj2txt directly, or use any of the OpenSSL subsystems...

6.5CVSS6.9AI score0.73461EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2024/08/22 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2024-2287)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.9AI score0.73461EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2024/08/05 10:2 p.m.38 views

Security Bulletin: IBM Storage Ceph is vulnerable to Uncontrolled Resource Consumption in the RHEL UBI (CVE-2023-2650, CVE-2023-3446, CVE-2023-4807)

Summary RHEL UBI is used by IBM Storage Ceph as the base operating system. This bulletin identifies the steps to take to address the vulnerability in the RHEL UBI. CVE-2023-2650, CVE-2023-3446, CVE-2023-4807. Vulnerability Details CVEID:CVE-2023-2650 DESCRIPTION: OpenSSL is vulnerable to a denial...

7.8CVSS7.4AI score0.73461EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/07/31 2:16 p.m.29 views

Security Bulletin: IBM Storage Ceph is vulnerable to the Improper Restriction of Operations within Memory Buffer in the RHEL UBI (CVE-2023-1255, CVE-2023-2650)

Summary RHEL UBI is used by IBM Storage Ceph as the base operating system. This bulletin identifies the steps to take to address the vulnerability in the RHEL UBI. CVE-2023-1255, CVE-2023-2650. Vulnerability Details CVEID:CVE-2023-1255 DESCRIPTION: OpenSSL is vulnerable to a denial of service,...

6.5CVSS6.7AI score0.73461EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/07/24 12:0 a.m.27 views

Photon OS 4.0: Nodejs PHSA-2023-4.0-0417

An update of the nodejs package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-4.0-0417. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

7.5CVSS7.8AI score0.73461EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2024/07/01 12:0 a.m.21 views

Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2024-1862)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.9AI score0.73461EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/07/01 12:0 a.m.29 views

Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2024-1876)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.9AI score0.73461EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/28 12:0 a.m.28 views

EulerOS 2.0 SP12 : shim (EulerOS-SA-2024-1876)

According to the versions of the shim package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Issue summary: Processing some specially crafted ASN.1 object identifiers or data containing them may be very slow. Impact summary: Applications that...

6.5CVSS6.6AI score0.73461EPSS
Exploits0References3
ICS
ICS
added 2024/06/06 6:0 a.m.33 views

Mitsubishi Electric CC-Link IE TSN Industrial Managed Switch

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 5.1 ATTENTION : Exploitable remotely/low attack complexity Vendor : Mitsubishi Electric Equipment : CC-Link IE TSN Industrial Managed Switch Vulnerability : Allocation of Resources Without Limits or Throttling 2. RISK EVALUATION Successful exploitation of...

6.5CVSS7.6AI score0.73461EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.14 views

RHEL 8 : edk2 (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - edk2: DxeImageVerificationHandler integer overflow leads to endless loop CVE-2019-14562 - openssl: Possib...

9.1CVSS8AI score0.73461EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2024/05/17 12:0 a.m.30 views

Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2024-1706)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS5.8AI score0.73461EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2024/05/15 11:37 p.m.66 views

Security Bulletin: Vulnerability in NX-OS Firmware used by IBM c-type SAN directors and switches.

Summary Public disclosed OpenSSL vulnerability in NX-OS Firmware used by IBM c-type SAN directors and switches. The vulnerability has been addressed and can be resolved by applying the NX-OS code level listed below. CVE-2023-2650. Vulnerability Details CVEID:CVE-2023-2650 DESCRIPTION: OpenSSL is...

6.5CVSS7AI score0.73461EPSS
Exploits0Affected Software1
CBLMariner
CBLMariner
added 2024/04/17 10:2 p.m.20 views

CVE-2023-2650 affecting package edk2 for versions less than 20230301gitf80f052277c8-37

CVE-2023-2650 affecting package edk2 for versions less than 20230301gitf80f052277c8-37. A patched version of the package is available...

6.5CVSS7.4AI score0.73461EPSS
Exploits0
OpenVAS
OpenVAS
added 2024/03/12 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2024-1299)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.9AI score0.73461EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/03/05 12:0 a.m.20 views

Ubuntu: Security Advisory (USN-6672-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.9AI score0.73461EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/02/29 12:0 a.m.37 views

CentOS 9 : openssl-3.0.7-20.el9

The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the openssl-3.0.7-20.el9 build changelog. - Issue summary: Processing some specially crafted ASN.1 object identifiers or data containing them may be very slow. Impact summary: Applications...

6.5CVSS6.9AI score0.73461EPSS
Exploits0References2
Rows per page
Query Builder