Lucene search
K

15 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/20 12:0 a.m.7 views

SUSE SLES15 Security Update : openssl-3-livepatches (SUSE-SU-2026:2411-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2411-1 advisory. - CVE-2025-11187: Improper validation of PBMAC1 parameters in PKCS12 MAC verification bsc1256878. - CVE-2025-15467: Stack buffer overflow in CM...

9.8CVSS7.2AI score0.47621EPSS
Exploits7References14
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/21 3:53 p.m.19 views

Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to multiple Base OS issues

Summary IBM Watson Speech Services Cartridge is vulnerable to multiple Base OS issues. We have updated the base image used by our Speech Services and the following vulnerabilities have been addressed. Please read the details for remediation below. Vulnerability Details CVEID:CVE-2025-11187...

9.8CVSS7.5AI score0.47621EPSS
Exploits8Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/18 7:0 a.m.19 views

Security Bulletin: Multiple vulnerabilities in IBM watsonx Orchestrate with watsonx Assistant Cartridge

Summary Multiple vulnerabilities were addressed in IBM watsonx Orchestrate with watsonx Assistant Cartridge version 5.3.2 Vulnerability Details CVEID:CVE-2025-55132 DESCRIPTION: A flaw in Node.js's permission model allows a file's access and modification timestamps to be changed via futimes even...

9.8CVSS8AI score0.47621EPSS
Exploits14Affected Software1
F5 Networks
F5 Networks
added 2026/02/05 8:8 a.m.13 views

K000159898: OpenSSL vulnerability CVE-2025-11187

Security Advisory Description Issue summary: PBMAC1 parameters in PKCS12 files are missing validation which can trigger a stack-based buffer overflow, invalid pointer or NULL pointer dereference during MAC verification. Impact summary: The stack buffer overflow or NULL pointer dereference may cau...

6.1CVSS6.3AI score0.00515EPSS
Exploits1
OSV
OSV
added 2026/02/02 1:0 p.m.2 views

OPENSUSE-SU-2026:20152-1 Security update for openssl-3

This update for openssl-3 fixes the following issues: Security fixes: - CVE-2025-11187: Improper validation of PBMAC1 parameters in PKCS12 MAC verification bsc1256829. - CVE-2025-15467: Stack buffer overflow in CMS AuthEnvelopedData parsing bsc1256830. - CVE-2025-15468: NULL dereference in...

9.8CVSS6.9AI score0.47621EPSS
Exploits7References25
OSV
OSV
added 2026/02/02 12:59 p.m.3 views

SUSE-SU-2026:20223-1 Security update for openssl-3

This update for openssl-3 fixes the following issues: Security fixes: - CVE-2025-11187: Improper validation of PBMAC1 parameters in PKCS12 MAC verification bsc1256829. - CVE-2025-15467: Stack buffer overflow in CMS AuthEnvelopedData parsing bsc1256830. - CVE-2025-15468: NULL dereference in...

9.8CVSS6.9AI score0.47621EPSS
Exploits7References26
Tenable Nessus
Tenable Nessus
added 2026/01/31 12:0 a.m.6 views

RockyLinux 10 : openssl (RLSA-2026:1472)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:1472 advisory. openssl: OpenSSL: Arbitrary code execution or denial of service through crafted PKCS12 file CVE-2025-11187 openssl: OpenSSL: Remote code execution or...

9.8CVSS6.2AI score0.47621EPSS
Exploits7References25
Tenable Nessus
Tenable Nessus
added 2026/01/31 12:0 a.m.10 views

Oracle Linux 10 : openssl (ELSA-2026-50081)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-50081 advisory. - Fix CVE-2025-11187 CVE-2025-15467 CVE-2025-15468 CVE-2025-15469 CVE-2025-66199 CVE-2025-68160 CVE-2025-69418 CVE-2025-69419 CVE-2025-69420...

9.8CVSS6.9AI score0.47621EPSS
Exploits7References13
OSV
OSV
added 2026/01/30 10:9 p.m.8 views

RLSA-2026:1473 Important: openssl security update

OpenSSL is a toolkit that implements the Secure Sockets Layer SSL and Transport Layer Security TLS protocols, as well as a full-strength general-purpose cryptography library. Security Fixes: openssl: OpenSSL: Arbitrary code execution or denial of service through crafted PKCS12 file CVE-2025-11187...

9.8CVSS6.3AI score0.47621EPSS
Exploits7References13
RedHat Linux
RedHat Linux
added 2026/01/28 3:32 p.m.15 views

Important: Red Hat Security Advisory: openssl security update

An update for openssl is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available fo...

8.8CVSS7.4AI score0.47621EPSS
Exploits7References4
OSV
OSV
added 2026/01/28 12:0 a.m.9 views

ALSA-2026:1473 Important: openssl security update

OpenSSL is a toolkit that implements the Secure Sockets Layer SSL and Transport Layer Security TLS protocols, as well as a full-strength general-purpose cryptography library. Security Fixes: openssl: OpenSSL: Arbitrary code execution or denial of service through crafted PKCS12 file CVE-2025-11187...

9.8CVSS6.2AI score0.47621EPSS
Exploits7References26
Oracle linux
Oracle linux
added 2026/01/28 12:0 a.m.8 views

openssl security update

3.5.1-7.0.1 - Replace upstream references Orabug: 34340177 - Update FIPS provider name Orabug: 35824276 1:3.5.1-7 - Fix CVE-2025-11187 CVE-2025-15467 CVE-2025-15468 CVE-2025-15469 CVE-2025-66199 CVE-2025-68160 CVE-2025-69418 CVE-2025-69419 CVE-2025-69420 CVE-2025-69421 CVE-2026-22795 CVE-2026-227...

9.8CVSS5.9AI score0.47621EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2026/01/28 12:0 a.m.11 views

RHEL 10 : openssl (RHSA-2026:1472)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:1472 advisory. OpenSSL is a toolkit that implements the Secure Sockets Layer SSL and Transport Layer Security TLS protocols, as well as a full-strength...

9.8CVSS7.4AI score0.47621EPSS
Exploits7References26
Tenable Nessus
Tenable Nessus
added 2026/01/27 12:0 a.m.26 views

Debian dsa-6113 : libcrypto3-udeb - security update

The remote Debian 12 / 13 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-6113 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6113-1 [email protected]...

9.8CVSS5.9AI score0.47621EPSS
Exploits7References27
Tenable Nessus
Tenable Nessus
added 2026/01/27 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-11187

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Issue summary: PBMAC1 parameters in PKCS12 files are missing validation which can trigger a stack-based buffer overflow, invalid pointer or NULL pointer...

6.1CVSS7.3AI score0.00515EPSS
Exploits1References3
Rows per page
Query Builder