CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2026/03/13 9:31 p.m.•2 views

EUVD-2026-12033

OSV•added 2026/03/13 7:54 p.m.•1 views

ALPINE-CVE-2026-2673

6.5CVSS5.8AI score0.00038EPSS

Exploits0References1

OSV•added 2026/03/13 7:54 p.m.•4 views

CVE-2026-2673

7.5CVSS5.8AI score

Exploits0References4

NVD•added 2026/03/13 7:54 p.m.•5 views

CVE-2026-2673

6.5CVSS0.00038EPSS

UbuntuCve•added 2026/03/13 7:54 p.m.•4 views

CVE-2026-2673

Snyk•added 2026/03/13 4:45 p.m.•2 views

Exploits0References4

Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')

Overview Affected versions of this package are vulnerable to Selection of Less-Secure Algorithm During Negotiation 'Algorithm Downgrade' in the TLS 1.3 server key agreement group selection when the server configuration includes the 'DEFAULT' keyword. An attacker can influence the negotiation to u...

AlpineLinux•added 2026/03/13 1:23 p.m.•4 views

Exploits0References2

CVE-2026-2673

Vulnrichment•added 2026/03/13 1:23 p.m.•1 views

Exploits0

CVE-2026-2673 OpenSSL TLS 1.3 server may choose unexpected key agreement group

CVE•added 2026/03/13 1:23 p.m.•46 views

Exploits0References3

CVE-2026-2673

OpenSSL CVE-2026-2673 affects OpenSSL 3.5 and 3.6 series. The issue arises when an OpenSSL TLS 1.3 server uses the DEFAULT keyword to interpolate a built-in/default group list into its own configuration, causing the group tuples to lose their structure. As a result, the server may treat all suppo...

6.5CVSS5.8AI score0.00038EPSS

Exploits0References5Affected Software1

ATTACKERKB•added 2026/03/13 1:23 p.m.•6 views

CVE-2026-2673

Exploits0References4Affected Software1

CNNVD•added 2026/03/13 12:0 a.m.•2 views

OpenSSL 安全漏洞

OpenSSL is an open-source encryption library developed by the OpenSSL team that enables secure implementation of Secure Sockets Layer SSLv2/v3 and Secure Transport Layer TLSv1 protocols. This product supports various encryption algorithms, including symmetric ciphers, hash algorithms, and secure...

6.5CVSS7.2AI score0.00038EPSS

Packet Storm News•added 2026/03/13 12:0 a.m.•0 views

OpenSSL Security Advisory 20260313

OpenSSL Security Advisory 20260313 - An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group configuration includes the default by using the "DEFAULT" keyword...

FreeBSD•added 2026/03/13 12:0 a.m.•7 views

Exploits0

OpenSSL -- key agreement vulnerability

The OpenSSL project reports: TLS 1.3 server may choose unexpected key agreement group Low An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group configuration includes the default by using the "DEFAULT" keyword...

6.5CVSS5.8AI score0.00038EPSS

Exploits0References1

Tenable Nessus•added 2026/03/13 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2026-2673

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group configuration includes the...

6.5CVSS7.3AI score0.00038EPSS

Exploits0References3

Tenable Nessus•added 2026/03/13 12:0 a.m.•2 views

FreeBSD : OpenSSL -- key agreement vulnerability (ee1e6a24-1eeb-11f1-81da-8447094a420f)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the ee1e6a24-1eeb-11f1-81da-8447094a420f advisory. The OpenSSL project reports: TLS 1.3 server may choose unexpected key agreement group Low An OpenSSL TL...