Lucene search
+L

121 matches found

RedhatCVE
RedhatCVE
added 2025/10/16 2:52 p.m.12 views

CVE-2025-61951

Undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. This issue may occur when a Datagram Transport Layer Security DTLS 1.2 virtual server is enabled with a Server SSL profile that is configured with a certificate, key, and the SSL Sign Hash set to ANY, and the backe...

8.7CVSS6.8AI score0.00224EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/15 3:30 p.m.11 views

EUVD-2025-34636

Undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. This issue may occur when a Datagram Transport Layer Security DTLS 1.2 virtual server is enabled with a Server SSL profile that is configured with a certificate, key, and the SSL Sign Hash set to ANY, and the...

8.7CVSS6.3AI score0.00224EPSS
Exploits0References2
NVD
NVD
added 2025/10/15 2:15 p.m.20 views

CVE-2025-61951

Undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. This issue may occur when a Datagram Transport Layer Security DTLS 1.2 virtual server is enabled with a Server SSL profile that is configured with a certificate, key, and the SSL Sign Hash set to ANY, and the...

8.7CVSS0.00224EPSS
Exploits0References1
OSV
OSV
added 2025/10/15 2:15 p.m.5 views

CVE-2025-61951

Undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. This issue may occur when a Datagram Transport Layer Security DTLS 1.2 virtual server is enabled with a Server SSL profile that is configured with a certificate, key, and the SSL Sign Hash set to ANY, and the...

8.7CVSS5.8AI score0.00224EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/15 1:55 p.m.5 views

CVE-2025-61951 BIG-IP DTLS 1.2 Vulnerability

Undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. This issue may occur when a Datagram Transport Layer Security DTLS 1.2 virtual server is enabled with a Server SSL profile that is configured with a certificate, key, and the SSL Sign Hash set to ANY, and the...

8.7CVSS6.4AI score0.00224EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/15 1:55 p.m.32 views

CVE-2025-61951 BIG-IP DTLS 1.2 Vulnerability

Undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. This issue may occur when a Datagram Transport Layer Security DTLS 1.2 virtual server is enabled with a Server SSL profile that is configured with a certificate, key, and the SSL Sign Hash set to ANY, and the...

8.7CVSS0.00224EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/10/15 12:0 a.m.3 views

F5 Networks BIG-IP : BIG-IP DTLS 1.2 vulnerability (K000151309)

The version of F5 Networks BIG-IP installed on the remote host is prior to 16.1.6.1 / 17.1.3 / 17.5.1. It is, therefore, affected by a vulnerability as referenced in the K000151309 advisory. Undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. This issue may occur wh...

8.7CVSS5.6AI score0.00224EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-3660

Malicious code in bioql PyPI...

5.3CVSS5.4AI score0.01952EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2025/02/17 12:0 a.m.8 views

The vulnerability of the SSL_VERIFY_PEER mode in the OpenSSL cryptographic library allows a attacker to execute a man-in-the-middle attack.

The vulnerability of the SSL-VerifyPEER mode in the OpenSSL cryptographic library is related to the absence of a mechanism to notify the user of the establishment of a connection session. Exploiting this vulnerability allows a malicious actor to execute a “man-in-the-middle” attack during a...

7.5CVSS6.9AI score0.02439EPSS
Exploits0References8Affected Software8
Microsoft CVE
Microsoft CVE
added 2024/12/07 8:0 a.m.7 views

Improper (D)TLS key boundary enforcement

...

5.3CVSS6AI score0.00513EPSS
Exploits0
Debian
Debian
added 2024/02/26 9:38 a.m.30 views

[SECURITY] [DLA 3740-1] gnutls28 security update

Debian LTS Advisory DLA-3740-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin February 26, 2024 https://wiki.debian.org/LTS Package : gnutls28 Version : 3.6.7-4+deb10u12 CVE ID : CVE-2024-0553 Debian Bug : 1061046 Hubert Kario discovered that GnuTLS, a portable...

7.5CVSS6.7AI score0.01614EPSS
Exploits1
Snyk
Snyk
added 2024/02/15 6:46 p.m.2 views

Marvin Attack

Overview Affected versions of this package are vulnerable to Marvin Attack due to the improper handling of DTLS records that do not check if messages span key boundaries. An attacker can exploit this vulnerability to combine DTLS messages using different keys into one DTLS record. Notes: 1 An...

5.3CVSS6.9AI score0.00513EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/01/18 12:0 a.m.6 views

Contiki-NG Security Vulnerability

Contiki-NG is an open source cross-platform operating system for next-generation IoT Internet of Things devices. A security vulnerability exists in Contiki-NG tinyDTLS version 2018-08-30 and earlier versions, which stems from the DTLS server incorrectly handling the early use of large epoch numbe...

9.8CVSS6.8AI score0.00989EPSS
Exploits0References4
0day.today
0day.today
added 2023/12/29 12:0 a.m.513 views

FreeSWITCH 1.10.10 Denial Of Service Vulnerability

When handling DTLS-SRTP for media setup, FreeSWITCH version 1.10.10 is susceptible to denial of service due to a race condition in the hello handshake phase of the DTLS protocol. This attack can be done continuously, thus denying new DTLS-SRTP encrypted calls during the attack. FreeSWITCH...

7.5CVSS5.6AI score0.01485EPSS
Exploits4
Packet Storm
Packet Storm
added 2023/12/15 12:0 a.m.401 views

RTPEngine mr11.5.1.6 Denial Of Service

RTPEngine susceptible to Denial of Service via DTLS Hello packets during call initiation - Fixed versions: mr12.1.1.2, mr12.0.1.3, mr11.5.1.16, mr10.5.6.3, mr10.5.6.2 - Enable Security Advisory: https://github.com/EnableSecurity/advisories/tree/master/ES2023-03-rtpengine-dtls-hello-race - Vendor...

7.4AI score
Exploits0
OSV
OSV
added 2023/12/14 8:15 p.m.3 views

DEBIAN-CVE-2023-49786

Asterisk is an open source private branch exchange and telephony toolkit. In Asterisk prior to versions 18.20.1, 20.5.1, and 21.0.1; as well as certified-asterisk prior to 18.9-cert6; Asterisk is susceptible to a DoS due to a race condition in the hello handshake phase of the DTLS protocol when...

5.9CVSS6.4AI score0.05338EPSS
Exploits2References1
Positive Technologies
Positive Technologies
added 2023/09/27 12:0 a.m.4 views

PT-2023-8586 · Unknown +1 · Freeswitch +1

Name of the Vulnerable Software and Affected Versions: FreeSWITCH versions prior to 1.10.11 Description: The issue is related to incorrect handling of exceptional states in the FreeSWITCH software-defined telecom stack, which can lead to a Denial of Service DoS when handling DTLS-SRTP for media...

7.8CVSS6.3AI score0.01485EPSS
Exploits4References21
SUSE CVE
SUSE CVE
added 2023/02/15 5:32 a.m.3 views

SUSE CVE-2014-0221

The dtls1getmessagefragment function in d1both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h allows remote attackers to cause a denial of service recursion and client crash via a DTLS hello message in an invalid DTLS handshake...

4.3CVSS8.3AI score0.87892EPSS
Exploits0References23
SUSE CVE
SUSE CVE
added 2023/02/15 5:6 a.m.4 views

SUSE CVE-2016-2179

The DTLS implementation in OpenSSL before 1.1.0 does not properly restrict the lifetime of queue entries associated with unused out-of-order messages, which allows remote attackers to cause a denial of service memory consumption by maintaining many crafted DTLS sessions simultaneously, related to...

7.5CVSS8AI score0.26559EPSS
Exploits1References19
RedHat Linux
RedHat Linux
added 2023/01/23 9:32 a.m.6 views

OpenJDK: handshake DoS attack against DTLS connections (JSSE, 8287411)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected are Oracle Java SE: 11.0.17, 17.0.5, 19.0.1; Oracle GraalVM Enterprise Edition: 20.3.8, 21.3.4 and 22.3.0. Easily exploitable vulnerability allows...

5.3CVSS7.3AI score0.01836EPSS
Exploits0References4
Rows per page
Query Builder