Lucene search
K

18 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/12 12:0 a.m.8 views

EulerOS Virtualization 2.13.1 : pyOpenSSL (EulerOS-SA-2026-2385)

According to the versions of the pyOpenSSL packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : pyOpenSSL is a Python wrapper around the OpenSSL library. Starting in version 0.14.0 and prior to version 26.0.0, if a user...

6.3CVSS5.4AI score0.00241EPSS
Exploits0References2
OSV
OSV
added 2026/06/03 2:11 p.m.5 views

SUSE-SU-2026:2244-1 Security update 5.0.8 for Multi-Linux Manager Salt Bundle

This update fixes the following issues: venv-salt-minion: - Security issues fixed: - CVE-2026-31958: tornado: Fixed parsing large multipart bodies with many parts can cause a denial of service bsc1259554 - CVE-2026-27459: pyOpenSSL: Fixed issue with large cookie value that can lead to a buffer...

9.8CVSS6.1AI score0.00704EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2026/06/03 12:0 a.m.11 views

pyOpenSSL 0.14.x < 26.0.0 Security Bypass

The version of pyOpenSSL installed on the remote host is prior to 26.0.0. It is, therefore, affected by a security bypass vulnerability: - pyOpenSSL is a Python wrapper around the OpenSSL library. Starting in version 0.14.0 and prior to version 26.0.0, if a user provided callback to...

6.3CVSS5.5AI score0.00241EPSS
Exploits0References3
OSV
OSV
added 2026/05/19 9:9 a.m.6 views

CLSA-2026-1779181743 pyOpenSSL: Fix of CVE-2026-27448

CVE-2026-27448: fix fail-open in settlsextservernamecallback when callback raises exception...

6.3CVSS5.8AI score0.00241EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/06 4:21 p.m.10 views

Security Bulletin: IBM SOAR QRadar Plugin App is vulnerable to using components with known vulnerabilities

Summary The product includes vulnerable components e.g., framework libraries that may be identified and exploited with automated tools. IBM SOAR QRadar Plugin App has addressed the applicable CVEs with an update. Vulnerability Details CVEID:CVE-2026-27448 DESCRIPTION: pyOpenSSL is a Python wrappe...

9.8CVSS5.9AI score0.00704EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/04/25 12:0 a.m.6 views

SUSE SLES12 Security Update : python-pyOpenSSL (SUSE-SU-2026:1582-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2026:1582-1 advisory. This update for python-pyOpenSSL fixes the following issue: - CVE-2026-27448: unhandled exception can result in connection not being cancelled...

6.3CVSS5.4AI score0.00241EPSS
Exploits0References4
OSV
OSV
added 2026/04/16 3:36 p.m.4 views

SUSE-SU-2026:1416-1 Security update for python-pyOpenSSL

This update for python-pyOpenSSL fixes the following issue: - CVE-2026-27448: unhandled exception can result in connection not being cancelled bsc1259804...

6.3CVSS5.8AI score0.00241EPSS
Exploits0References3
OSV
OSV
added 2026/04/13 4:38 p.m.6 views

CLSA-2026-1776098295 pyOpenSSL: Fix of CVE-2026-27448

CVE-2026-27448: fix fail-open in settlsextservernamecallback when callback raises exception...

6.3CVSS5.8AI score0.00241EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2026/04/09 12:0 a.m.12 views

SUSE: Security Advisory (SUSE-SU-2026:1192-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6AI score0.00704EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2026/04/03 12:0 a.m.4 views

SUSE: Security Advisory (SUSE-SU-2026:20930-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS5.9AI score0.00704EPSS
Exploits0References5
OSV
OSV
added 2026/03/25 3:41 a.m.3 views

OPENSUSE-SU-2026:20419-1 Security update for python-pyOpenSSL

This update for python-pyOpenSSL fixes the following issues: - CVE-2026-27448: unhandled exception can result in connection not being cancelled bsc1259804. - CVE-2026-27459: large cookie value can lead to a buffer overflow bsc1259808...

9.8CVSS6.1AI score0.00704EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/03/25 12:0 a.m.21 views

Ubuntu 22.04 LTS / 24.04 LTS / 25.10 : pyOpenSSL vulnerabilities (USN-8115-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-8115-1 advisory. It was discovered that pyOpenSSL incorrectly handled exceptions in the tlsextservername callback. This could result in connections...

9.8CVSS6.2AI score0.00704EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2026/03/24 12:0 a.m.5 views

Ubuntu: Security Advisory (USN-8115-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS5.8AI score0.00704EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/03/19 12:26 a.m.4 views

SUSE CVE-2026-27448

pyOpenSSL is a Python wrapper around the OpenSSL library. Starting in version 0.14.0 and prior to version 26.0.0, if a user provided callback to settlsextservernamecallback raised an unhandled exception, this would result in a connection being accepted. If a user was relying on this callback for...

3.7CVSS5.8AI score0.00241EPSS
Exploits0References17
Chainguard
Chainguard
added 2026/03/18 1:17 a.m.15 views

CVE-2026-27448 vulnerabilities

Vulnerabilities for packages: datadog-agent-fips, datahub-ingestion, request-1276, airflow, gitlab-cng-fips, keep-fips, mitmproxy, awx, superset, authentik-fips, authentik, py3-cassandra-medusa, az, localstack, datadog-agent, gitlab-cng, ggshield, keep...

6.3CVSS5.8AI score0.00241EPSS
Exploits0
NVD
NVD
added 2026/03/18 12:16 a.m.4 views

CVE-2026-27448

pyOpenSSL is a Python wrapper around the OpenSSL library. Starting in version 0.14.0 and prior to version 26.0.0, if a user provided callback to settlsextservernamecallback raised an unhandled exception, this would result in a connection being accepted. If a user was relying on this callback for...

6.3CVSS0.00241EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/03/18 12:0 a.m.4 views

CVE-2026-27448

pyOpenSSL is a Python wrapper around the OpenSSL library. Starting in version 0.14.0 and prior to version 26.0.0, if a user provided callback to settlsextservernamecallback raised an unhandled exception, this would result in a connection being accepted. If a user was relying on this callback for...

6.3CVSS5.9AI score0.00241EPSS
Exploits0References3
vulnersOsv
vulnersOsv
added 2026/03/16 3:15 p.m.4 views

a10-octavia (>=1.0.0 <=2.2.0), a2grunnerp (>=0.1.0 <=0.1.8) +1514 more potentially affected by CVE-2026-27448 via pyopenssl (>=0.14.0 <=25.3.0)

pyopenssl PYPI version =0.14.0, =1.0.0, =0.1.0, =0.9.2, =2.3.36, =2.0.0, =2.4.15, =0.1.17, =0.1.0, =0.3.2, =2.8.1, =0.4.0, =0.2.0, =0.3.4 and more Source cves: CVE-2026-27448 Source advisory: SNYK:PYTHON-PYOPENSSL-15674458...

6.3CVSS5.4AI score0.00241EPSS
Exploits0
Rows per page
Query Builder