Lucene search
+L

5 matches found

cvelist
cvelist
added 3 days ago34 views

CVE-2026-58102 Crypt::OpenSSL::X509 versions before 2.1.3 for Perl allow a heap out-of-bounds read via a long certificate extension OID in hv_exts

Crypt::OpenSSL::X509 versions before 2.1.3 for Perl allow a heap out-of-bounds read via a long certificate extension OID in hvexts. When building the extension hash via extensions, extensionsbylongname, extensionsbyoid, or hasextensionoid, the code passes OBJobj2txt's return value as the hash-key...

0.00222EPSS
Exploits0References2
ptsecurity
ptsecurity
added 3 days ago6 views

PT-2026-57918

Name of the Vulnerable Software and Affected Versions Crypt::OpenSSL::X509 versions prior to 2.1.3 Description A heap out-of-bounds read occurs when processing a long certificate extension Object Identifier OID in hv exts. This happens during the construction of the extension hash through the...

6.1AI score0.00222EPSS
Exploits0References6
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-3807

Malware in sbrugna...

9.8CVSS9.5AI score0.01575EPSS
Exploits0References2
osv
osv
added 2019/05/17 7:29 p.m.4 views

CVE-2019-12158

GoHTTP through 2017-07-25 has a GetExtension heap-based buffer overflow via a long extension...

9.8CVSS7.6AI score0.01575EPSS
Exploits0References1
redhat
redhat
added 2018/03/07 3:9 p.m.8 views

tomcat-native: Mishandling of client certificates can allow for OCSP check bypass

When parsing the AIA-Extension field of a client certificate, Apache Tomcat Native Connector 1.2.0 to 1.2.14 and 1.1.23 to 1.1.34 did not correctly handle fields longer than 127 bytes. The result of the parsing error was to skip the OCSP check. It was therefore possible for client certificates th...

5.9CVSS7.3AI score0.03527EPSS
Exploits0References4
Rows per page
Query Builder