PT-2026-2766

Name of the Vulnerable Software and Affected Versions Windows versions affected versions not specified Windows Server versions affected versions not specified Description The issue centers around the approaching expiration of Microsoft certificates used in Windows Secure Boot, specifically those...

SUSE SLES15 Security Update : openssl-3 (SUSE-SU-2025:03439-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:03439-1 advisory. - CVE-2025-9230: incorrect check of key size can lead to out-of-bounds read and write in RFC 3211 KEK unwrap bsc1250232. Tenable has...

openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap

A flaw was found in the OpenSSL CMS implementation RFC 3211 KEK Unwrap. This vulnerability allows memory corruption, an application level denial of service, or potential execution of attacker-supplied code via crafted CMS messages using password-based encryption PWRI...

RockyLinux 9 : openssl (RLSA-2025:21255)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:21255 advisory. openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap CVE-2025-9230 Tenable has extracted the preceding description block directly from the RockyLinux...

SUSE-SU-2025:03630-1 Security update for openssl1

This update for openssl1 fixes the following issues: - CVE-2025-9230: Fixed out-of-bounds read & write in RFC 3211 KEK unwrap bsc1250232...

EUVD-2025-18421

Malicious code in bioql PyPI...

Out-of-bounds read & write in RFC 3211 KEK Unwrap

...

SUSE: Security Advisory (SUSE-SU-2025:03441-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2025-9230

Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read and write. Impact summary: This out-of-bounds read may trigger a crash which leads to Denial of Service for an application. The out-of-bounds write can cause a...

CVE-2025-2327

A flaw exists in FlashArray whereby the Key Encryption Key KEK is logged during key rotation when RDL is configured...

CVE-2025-2327 FlashArray KEK Logging Vulnerability

A flaw exists in FlashArray whereby the Key Encryption Key KEK is logged during key rotation when RDL is configured...

CVE-2025-2327 FlashArray KEK Logging Vulnerability

A flaw exists in FlashArray whereby the Key Encryption Key KEK is logged during key rotation when RDL is configured...

CVE-2025-2327

CVE-2025-2327 affects Pure Storage FlashArray. A KEK is logged during key rotation when RDL is configured, potentially enabling information disclosure of KEKs. Documented impact is limited to what is stated; exploitation details are not provided in the supplied materials. Some connected sources n...

PT-2025-25571 · Pure Storage · Pure Storage Flasharray

Name of the Vulnerable Software and Affected Versions: Pure Storage FlashArray affected versions not specified Description: A flaw exists in FlashArray whereby the Key Encryption Key KEK is logged during key rotation when RDL is configured. Recommendations: At the moment, there is no information...

Decrypt Citrix NetScaler Config Secrets

This module takes a Citrix NetScaler ns.conf configuration file as input and extracts secrets that have been stored with reversible encryption. The module supports legacy NetScaler encryption RC4 as well as the newer AES-256-ECB and AES-256-CBC encryption types. It is also possible to decrypt...