Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

27 matches found

Tenable Nessus
Tenable Nessusadded 2021/02/17 12:0 a.m.40 views

FreeBSD : OpenSSL -- Multiple vulnerabilities (96a21236-707b-11eb-96d8-d4c9ef517024)

The OpenSSL project reports : NULL pointer deref in X509issuerandserialhash CVE-2021-23841Moderate The OpenSSL public API function X509issuerandserialhash attempts to create a unique hash value based on the issuer and serial number data contained within an X509 certificate. However it fails to...

7.5CVSS6.6AI score0.00958EPSS
Exploits0References5
OpenVAS
OpenVASadded 2021/02/17 12:0 a.m.21 views

OpenSSL: Integer overflow in CipherUpdate (CVE-2021-23840) - Windows

OpenSSL is prone to an integer overflow vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you ca...

7.5CVSS8AI score0.00463EPSS
Exploits0References1
OpenVAS
OpenVASadded 2021/02/17 12:0 a.m.17 views

OpenSSL: Integer overflow in CipherUpdate (CVE-2021-23840) - Linux

OpenSSL is prone to an integer overflow vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you ca...

7.5CVSS8AI score0.00463EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2021/02/16 4:55 p.m.1 views

CVE-2021-23840 Integer overflow in CipherUpdate

Calls to EVPCipherUpdate, EVPEncryptUpdate and EVPDecryptUpdate may overflow the output length argument in some cases where the input length is close to the maximum permissable length for an integer on the platform. In such cases the return value from the function call will be 1 indicating succes...

7.1AI score0.00463EPSS
Exploits0References20
Cvelist
Cvelistadded 2021/02/16 4:55 p.m.22 views

CVE-2021-23840 Integer overflow in CipherUpdate

Calls to EVPCipherUpdate, EVPEncryptUpdate and EVPDecryptUpdate may overflow the output length argument in some cases where the input length is close to the maximum permissable length for an integer on the platform. In such cases the return value from the function call will be 1 indicating succes...

8AI score0.00463EPSS
Exploits0References20
FreeBSD
FreeBSDadded 2021/02/16 12:0 a.m.82 views

OpenSSL -- Multiple vulnerabilities

The OpenSSL project reports: Null pointer deref in X509issuerandserialhash CVE-2021-23841Moderate The OpenSSL public API function X509issuerandserialhash attempts to create a unique hash value based on the issuer and serial number data contained within an X509 certificate. However it fails to...

7.5CVSS7AI score0.00958EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2020/01/24 12:0 a.m.5 views

PT-2021-3610

Name of the Vulnerable Software and Affected Versions OpenSSL versions 1.1.1i and below OpenSSL versions 1.0.2x and below Description The issue is related to the functions EVP CipherUpdate, EVP EncryptUpdate, and EVP DecryptUpdate in OpenSSL, which may overflow the output length argument when the...

7.5CVSS6.4AI score0.08728EPSS
Exploits0References322
Rows per page
Query Builder