Lucene search
K

9 matches found

Tenable Nessus
Tenable Nessus
added 2026/02/12 12:0 a.m.4 views

SUSE SLES15: apptainer / apptainer-leap / apptainer-sle15_6 / apptainer-sle15_7 / etc (SUSE-SU-2026:0439-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0439-1 advisory. Security fixes: - CVE-2024-45310: Fixed runc being tricked into creating empty files/directories on host bsc1257432 -...

8.7CVSS6.8AI score0.00868EPSS
Exploits3References30
IBM Security Bulletins
IBM Security Bulletins
added 2025/11/28 7:4 p.m.6 views

Security Bulletin: Astronomer with IBM is vulnerable to session security compromise due to the CIRCL package (CVE-2025-8556)

Summary CIRCL is used by Astronomer with IBM as part of crytographic processing functionality. Vulnerability Details CVEID:CVE-2025-8556 DESCRIPTION: A flaw was found in CIRCL's implementation of the FourQ elliptic curve. This vulnerability allows an attacker to compromise session security via...

3.7CVSS6.7AI score0.00452EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2025/11/17 12:0 a.m.2 views

Fedora: Security Advisory (FEDORA-2025-c555ce4089)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.00507EPSS
Exploits1References10
OpenVAS
OpenVAS
added 2025/11/17 12:0 a.m.4 views

Fedora: Security Advisory (FEDORA-2025-6ab111452f)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.00507EPSS
Exploits0References8
OSV
OSV
added 2025/08/06 9:15 a.m.8 views

CVE-2025-8556

A flaw was found in CIRCL's implementation of the FourQ elliptic curve. This vulnerability allows an attacker to compromise session security via low-order point injection and incorrect point validation during Diffie-Hellman key exchange...

3.7CVSS6.2AI score0.00452EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2025/08/06 9:15 a.m.3 views

CVE-2025-8556

A flaw was found in CIRCL's implementation of the FourQ elliptic curve. This vulnerability allows an attacker to compromise session security via low-order point injection and incorrect point validation during Diffie-Hellman key exchange...

3.7CVSS6.7AI score0.00452EPSS
Exploits0References6
CVE
CVE
added 2025/08/06 8:48 a.m.46 views

CVE-2025-8556

CVE-2025-8556 affects CIRCL’s FourQ elliptic-curve implementation used in session Diffie-Hellman. The issue permits low-order point injection and incorrect point validation, weakening Diffie-Hellman key exchange and session security. Public details document a CVSS v3.1 base score of 3.7 (Low) wit...

3.7CVSS6.6AI score0.00452EPSS
Exploits0References7
Cvelist
Cvelist
added 2025/08/06 8:48 a.m.10 views

CVE-2025-8556 Github.com/cloudflare/circl: circl-fourq: missing and wrong validation can lead to incorrect results

A flaw was found in CIRCL's implementation of the FourQ elliptic curve. This vulnerability allows an attacker to compromise session security via low-order point injection and incorrect point validation during Diffie-Hellman key exchange...

3.7CVSS0.00452EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/08/06 8:48 a.m.1 views

CVE-2025-8556 Github.com/cloudflare/circl: circl-fourq: missing and wrong validation can lead to incorrect results

A flaw was found in CIRCL's implementation of the FourQ elliptic curve. This vulnerability allows an attacker to compromise session security via low-order point injection and incorrect point validation during Diffie-Hellman key exchange...

3.7CVSS6.2AI score0.00452EPSS
Exploits0References5
Rows per page
Query Builder