Lucene search
K

28 matches found

RedhatCVE
RedhatCVE
added 5 days ago7 views

CVE-2026-54891

A flaw was found in Erlang's SSL Secure Sockets Layer component. A network-positioned attacker can exploit this vulnerability by injecting unauthenticated plaintext data into a client's TLS Transport Layer Security handshake. The client application may then process this injected data as if it wer...

6.3CVSS5.9AI score0.00164EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 5 days ago5 views

Linux Distros Unpatched Vulnerability : CVE-2026-54887

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use of Default Cryptographic Key vulnerability in Erlang/OTP ssl DTLS server allows predictable DTLS cookie computation during the startup window, enabling sour...

6.3CVSS6AI score0.00389EPSS
Exploits0References3
OSV
OSV
added 2026/06/24 1:11 p.m.3 views

OESA-2026-2705 erlang security update

Erlang is a general-purpose programming language and runtime environment. Erlang has built-in support for concurrency, distribution and fault tolerance. Erlang is used in several large telecommunication systems from Ericsson. Security Fixes: Relative Path Traversal, Improper Isolation or...

2.3CVSS5.8AI score0.00461EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/06/10 12:0 a.m.13 views

Erlang/OTP 安全漏洞

Erlang/OTP is an open-source JavaScript library for handling exceptions, developed by Erlang/OTP. This library can catch exceptions caused by the built-in APIs of node.js. There were security vulnerabilities in versions of Erlang/OTP erts prior to 15.2.7.9, as well as in versions 16.4.0.2 and...

8.8CVSS5.8AI score0.00497EPSS
Exploits0References1
OSV
OSV
added 2026/01/15 5:32 p.m.2 views

SUSE-SU-2026:20088-1 Security update for erlang

This update for erlang fixes the following issues: Update the ssh component to the latest in the maint-27 branch. Security issues fixed: - CVE-2025-48040: ssh: overly tolerant handling of data received from unauthenticated users when processing key exchange messages may lead to excessive resource...

6.9CVSS5.8AI score0.00402EPSS
Exploits0References7
OSV
OSV
added 2026/01/09 2:6 p.m.15 views

OESA-2026-1030 erlang security update

Erlang is a general-purpose programming language and runtime environment. Erlang has built-in support for concurrency, distribution and fault tolerance. Erlang is used in several large telecommunication systems from Ericsson. Security Fixes: Allocation of Resources Without Limits or Throttling...

7.1CVSS6.8AI score0.00359EPSS
Exploits0References4
OSV
OSV
added 2026/01/09 2:6 p.m.11 views

OESA-2026-1027 erlang security update

Erlang is a general-purpose programming language and runtime environment. Erlang has built-in support for concurrency, distribution and fault tolerance. Erlang is used in several large telecommunication systems from Ericsson. Security Fixes: Allocation of Resources Without Limits or Throttling...

6.9CVSS6.8AI score0.00402EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/07/11 12:0 a.m.4 views

Azure Linux 3.0 Security Update: erlang (CVE-2025-46712)

The version of erlang installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-46712 advisory. - Erlang/OTP is a set of libraries for the Erlang programming language. In versions prior to OTP-27.3.4 for...

3.7CVSS5.8AI score0.00442EPSS
Exploits0References2
OSV
OSV
added 2025/04/29 3:46 a.m.5 views

OESA-2025-1461 erlang security update

Security Fixes: Erlang/OTP is a set of libraries for the Erlang programming language. Prior to versions OTP-27.3.3, OTP-26.2.5.11, and OTP-25.3.2.20, a SSH server may allow an attacker to perform unauthenticated remote code execution RCE. By exploiting a flaw in SSH protocol message handling, a...

10CVSS8.7AI score0.97859EPSS
Exploits36References2
Tenable Nessus
Tenable Nessus
added 2025/04/23 12:0 a.m.10 views

Azure Linux 3.0 Security Update: erlang (CVE-2025-32433)

The version of erlang installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-32433 advisory. - Erlang/OTP is a set of libraries for the Erlang programming language. Prior to versions OTP-27.3.3,...

10CVSS8.9AI score0.97859EPSS
Exploits36References2
SUSE Linux
SUSE Linux
added 2025/04/22 9:30 a.m.1 views

Security update for erlang

This update for erlang fixes the following issues: CVE-2025-32433: Fixed unauthenticated remote code execution in Erlang/OTP SSH bsc1241300 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can...

10CVSS8.7AI score0.97859EPSS
Exploits36References4
Tenable Nessus
Tenable Nessus
added 2025/04/21 12:0 a.m.53 views

Debian dsa-5906 : erlang - security update

The remote Debian 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5906 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5906-1 [email protected] https://www.debian.org/securit...

10CVSS7.5AI score0.97859EPSS
Exploits40References10
Debian
Debian
added 2025/04/20 11:48 p.m.26 views

[SECURITY] [DLA 4132-1] erlang security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-4132-1 [email protected] https://www.debian.org/lts/security/ Bastien Roucariès April 21, 2025 https://wiki.debian.org/LTS -...

10CVSS8.8AI score0.97859EPSS
Exploits40
Debian
Debian
added 2025/04/20 9:23 a.m.43 views

[SECURITY] [DSA 5906-1] erlang security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5906-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff April 20, 2025 https://www.debian.org/security/faq -...

10CVSS8.1AI score0.97859EPSS
Exploits40
OSV
OSV
added 2025/04/20 12:0 a.m.18 views

DSA-5906-1 erlang - security update

Bulletin has no description...

10CVSS7.4AI score0.97859EPSS
Exploits40
Tenable Nessus
Tenable Nessus
added 2025/04/13 12:0 a.m.21 views

Azure Linux 3.0 Security Update: erlang (CVE-2025-30211)

The version of erlang installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-30211 advisory. - Erlang/OTP is a set of libraries for the Erlang programming language. Prior to versions OTP-27.3.1, 26.2.5.1...

7.5CVSS7.2AI score0.00436EPSS
Exploits0References2
SUSE Linux
SUSE Linux
added 2025/03/18 9:59 a.m.3 views

Security update for erlang

This update for erlang fixes the following issues: CVE-2025-26618: Fixed SSH SFTP packet size not verified properly in Erlang OTP bsc1237467. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you c...

7.1CVSS7.5AI score0.0046EPSS
Exploits0References4
OSV
OSV
added 2025/03/18 9:58 a.m.10 views

SUSE-SU-2025:0901-1 Security update for erlang

This update for erlang fixes the following issues: - CVE-2025-26618: Fixed SSH SFTP packet size not verified properly in Erlang OTP bsc1237467...

7CVSS7.2AI score0.0046EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/02/20 11:22 p.m.15 views

CVE-2025-26618

A flaw was found in the Erlang OTP library. When multiple SSH packets are received, they may be combined into a single SFTP packet that exceeds the maximum allowed size. This flaw allows an authenticated remote attacker to trigger excessive memory allocation and cause a denial of service...

6.5CVSS6.1AI score0.0046EPSS
Exploits0References5
OSV
OSV
added 2025/02/20 7:4 p.m.15 views

CVE-2025-26618 SSH SFTP packet size not verified properly in Erlang OTP

Erlang is a programming language and runtime system for building massively scalable soft real-time systems with requirements on high availability. OTP is a set of Erlang libraries, which consists of the Erlang runtime system, a number of ready-to-use components mainly written in Erlang. Packet si...

7CVSS6.9AI score0.0046EPSS
Exploits0References6
Rows per page
Query Builder