Lucene search
K

27 matches found

Fedora
Fedora
added 4 days ago8 views

[SECURITY] Fedora 44 Update: p11-kit-0.26.4-1.fc44

p11-kit provides a way to load and enumerate PKCS11 modules, as well as a standard configuration setup for installing PKCS11 modules in such a way that they're discoverable...

6.2CVSS6.1AI score0.00137EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/26 12:0 a.m.16 views

PT-2026-43430

Crypt::ScryptKDF versions through 0.010 for Perl uses insecure random number source when no CSPRNG module is available. The random bytes function fell back to using the built-in rand function when none of the Perl modules Crypt::PRNG, Crypt::OpenSSL::Random, Net::SSLeay, Crypt::Random, or...

5.8AI score0.00222EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/04/23 7:29 a.m.4 views

CVE-2026-41564

CryptX versions before 0.088 for Perl do not reseed the Crypt::PK PRNG state after forking. The Crypt::PK::RSA, Crypt::PK::DSA, Crypt::PK::DH, Crypt::PK::ECC, Crypt::PK::Ed25519 and Crypt::PK::X25519 modules seed a per-object PRNG state in their constructors and reuse it without fork detection. A...

5.8AI score0.00447EPSS
Exploits0References4
EUVD
EUVD
added 2026/04/15 6:31 p.m.6 views

EUVD-2026-22840

Apache::API::Password versions through v0.5.2 for Perl can generate insecure random values for salts. The makesalt and makesaltbcrypt methods will attept to load Crypt::URandom and then Bytes::Random::Secure to generate random bytes for the salt. If those modules are unavailable, it will simply...

5.8AI score0.00572EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/04/15 7:3 a.m.8 views

CVE-2026-5088

Apache::API::Password versions through 0.5.2 for Perl can generate insecure random values for salts. The makesalt and makesaltbcrypt methods will attept to load Crypt::URandom and then Bytes::Random::Secure to generate random bytes for the salt. If those modules are unavailable, it will simply...

7.5CVSS5.8AI score0.00572EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.35 views

EUVD-2023-43777

Malicious code in bioql PyPI...

7.5CVSS5.7AI score0.0052EPSS
Exploits0References2
Filippo.io
Filippo.io
added 2024/09/25 8:42 p.m.7 views

The FIPS Compliance of HKDF

HKDF is an HMAC-based key-derivation function specified in RFC 5869. It’s nice and we generally like using it. FIPS Federal Information Processing Standards is used generally as a moniker for the set of standards, recommendations, and guidance published by the U.S. National Institute of Standards...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/01/24 12:0 a.m.38 views

RHCOS 4 : Red Hat OpenShift Enterprise (RHSA-2023:3910)

The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:3910 advisory. - golang: net/http: excessive memory growth in a Go server accepting HTTP/2 requests CVE-2022-41717 - openshift: OCP & FIPS mode...

9.8CVSS6.8AI score0.05623EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2024/01/24 12:0 a.m.30 views

RHCOS 4 : OpenShift Container Platform 4.12.23 (RHSA-2023:3924)

The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:3924 advisory. - openshift: OCP & FIPS mode CVE-2023-3089 Note that Nessus has not tested for this issue but has instead relied only on the application's...

7.5CVSS6.6AI score0.0052EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2023/10/31 2:6 p.m.5 views

openshift: OCP & FIPS mode

A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered that, when FIPS mode was enabled, not all of the cryptographic modules in use were FIPS-validated...

7.5CVSS5.7AI score0.0052EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/08/03 2:58 p.m.5 views

openshift: OCP & FIPS mode

A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered that, when FIPS mode was enabled, not all of the cryptographic modules in use were FIPS-validated...

7.5CVSS5.7AI score0.0052EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/07/20 5:32 p.m.5 views

openshift: OCP & FIPS mode

A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered that, when FIPS mode was enabled, not all of the cryptographic modules in use were FIPS-validated...

7.5CVSS5.7AI score0.0052EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/07/06 2:13 p.m.5 views

openshift: OCP & FIPS mode

A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered that, when FIPS mode was enabled, not all of the cryptographic modules in use were FIPS-validated...

7.5CVSS5.7AI score0.0052EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/07/06 3:1 a.m.4 views

openshift: OCP & FIPS mode

A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered that, when FIPS mode was enabled, not all of the cryptographic modules in use were FIPS-validated...

7.5CVSS5.7AI score0.0052EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/07/06 2:47 a.m.2 views

openshift: OCP & FIPS mode

A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered that, when FIPS mode was enabled, not all of the cryptographic modules in use were FIPS-validated...

7.5CVSS5.7AI score0.0052EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2023/07/05 1:15 p.m.5 views

CVE-2023-3089

A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered that, when FIPS mode was enabled, not all of the cryptographic modules in use were FIPS-validated...

7.5CVSS6.4AI score0.0052EPSS
Exploits0References3
OSV
OSV
added 2023/07/05 1:15 p.m.24 views

CVE-2023-3089

A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered that, when FIPS mode was enabled, not all of the cryptographic modules in use were FIPS-validated...

7.5CVSS5.4AI score0.0052EPSS
Exploits0References2
NVD
NVD
added 2023/07/05 1:15 p.m.81 views

CVE-2023-3089

A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered that, when FIPS mode was enabled, not all of the cryptographic modules in use were FIPS-validated...

7.5CVSS8.3AI score0.0052EPSS
Exploits0References2
Prion
Prion
added 2023/07/05 1:15 p.m.31 views

Design/Logic Flaw

A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered that, when FIPS mode was enabled, not all of the cryptographic modules in use were FIPS-validated...

5CVSS8.4AI score0.0052EPSS
Exploits0References2Affected Software5
CVE
CVE
added 2023/07/05 12:21 p.m.280 views

CVE-2023-3089

CVE-2023-3089 affects Red Hat OpenShift Container Platform; in OpenShift 4.13.x, the advisory RHSA-2023:4093 notes the fix for OCP in FIPS mode, stating that the CVE-3089 issue (in which not all cryptographic modules in use were FIPS-validated) is addressed by upgrading to OpenShift 4.13.5 and ap...

7.5CVSS7.4AI score0.0052EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder