Lucene search
K

117 matches found

OpenVAS
OpenVAS
added 2015/10/13 12:0 a.m.33 views

SUSE: Security Advisory for OpenSSL (SUSE-SU-2014:0759-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.4CVSS6.8AI score0.95326EPSS
Exploits9References2
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.52 views

Oracle: Security Advisory (ELSA-2014-1652)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.5AI score0.99999EPSS
Exploits106References2
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.37 views

Oracle: Security Advisory (ELSA-2014-0626)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.3AI score0.95326EPSS
Exploits17References2
Huawei
Huawei
added 2015/09/19 12:0 a.m.32 views

Security Advisory - MITM Vulnerability in the OpenSSL Module of Huawei eSight Network

During certificate verification, OpenSSL starting from version 1.0.1n and 1.0.2b will attempt to find an alternative certificate chain if the first attempt to build such a chain fails. An error in the implementation of this logic can mean that an attacker could cause certain checks on untrusted...

6.5CVSS6.2AI score0.61798EPSS
Exploits6Affected Software1
RedHat Linux
RedHat Linux
added 2015/08/25 5:44 a.m.5 views

keystonemiddleware/keystoneclient: S3Token TLS cert verification option not honored

It was discovered that some items in the S3Token paste configuration as used by python-keystonemiddleware formerly python-keystoneclient were incorrectly evaluated as strings, an issue similar to CVE-2014-7144. If the "insecure" option were set to "false", the option would be evaluated as true,...

4.3CVSS5.8AI score0.02586EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2015/04/16 4:2 p.m.6 views

CXF: SSL hostname verification bypass, incomplete CVE-2012-6153 fix

It was found that the fix for CVE-2012-6153 was incomplete: the code added to check that the server hostname matches the domain name in a subject's Common Name CN field in X.509 certificates was flawed. A man-in-the-middle attacker could use this flaw to spoof an SSL server using a specially...

5.8CVSS7.2AI score0.09149EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2015/03/31 5:0 p.m.2 views

CXF: SSL hostname verification bypass, incomplete CVE-2012-6153 fix

It was found that the fix for CVE-2012-6153 was incomplete: the code added to check that the server hostname matches the domain name in a subject's Common Name CN field in X.509 certificates was flawed. A man-in-the-middle attacker could use this flaw to spoof an SSL server using a specially...

5.8CVSS7.2AI score0.09149EPSS
Exploits1References4
RubySec
RubySec
added 2015/03/24 12:0 a.m.14 views

HTTPS MitM vulnerability in http.rb

http.rb failed to call the OpenSSL::SSL::SSLSocketpostconnectioncheck method to perform hostname verification. Because of this, an attacker with a valid certificate but with a mismatched subject can perform a MitM attack...

5.9CVSS6AI score0.01521EPSS
Exploits0References1Affected Software1
OpenVAS
OpenVAS
added 2015/01/23 12:0 a.m.36 views

Juniper Networks Junos OS SSL/TLS MITM Vulnerability

Junos OS is prone to a OpenSSL man in the middle security bypass vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.4CVSS6.7AI score0.95326EPSS
Exploits9References2
Tenable Nessus
Tenable Nessus
added 2014/12/05 12:0 a.m.34 views

SuSE 11.3 Security Update : compat-openssl097g (SAT Patch Number 10033)

The SLES 9 compatibility package compat-openssl097g received a roll up update fixing various security issues : - Build option no-ssl3 is incomplete. CVE-2014-3568 - Add support for TLSFALLBACKSCSV. CVE-2014-3566 - Information leak in pretty printing functions. CVE-2014-3508 - OCSP bad key DoS...

7.4CVSS7.5AI score0.99999EPSS
Exploits16References20
Tenable Nessus
Tenable Nessus
added 2014/11/26 12:0 a.m.57 views

OracleVM 3.2 : onpenssl (OVMSA-2014-0008)

The remote OracleVM system is missing necessary patches to address critical security updates : - fix for CVE-2014-0224 - SSL/TLS MITM vulnerability - replace expired GlobalSign Root CA certificate in ca-bundle.crt - fix for CVE-2013-0169 - SSL/TLS CBC timing attack 907589 - fix for CVE-2013-0166 ...

10CVSS8AI score0.95326EPSS
Exploits34References20
Tenable Nessus
Tenable Nessus
added 2014/11/26 12:0 a.m.44 views

OracleVM 3.2 : openssl (OVMSA-2014-0039) (POODLE)

The remote OracleVM system is missing necessary patches to address critical security updates : - add support for fallback SCSV to partially mitigate CVE-2014-3566 padding attack on SSL3 - fix CVE-2014-0221 - recursion in DTLS code leading to DoS - fix CVE-2014-3505 - doublefree in DTLS packet...

7.4CVSS7.6AI score0.99999EPSS
Exploits16References8
Tenable Nessus
Tenable Nessus
added 2014/11/26 12:0 a.m.249 views

OracleVM 2.2 : openssl (OVMSA-2014-0007)

The remote OracleVM system is missing necessary patches to address critical security updates : - fix for CVE-2014-0224 - SSL/TLS MITM vulnerability - replace expired GlobalSign Root CA certificate in ca-bundle.crt - fix for CVE-2013-0169 - SSL/TLS CBC timing attack 907589 - fix for CVE-2013-0166 ...

10CVSS8AI score0.95326EPSS
Exploits34References20
Tenable Nessus
Tenable Nessus
added 2014/10/17 12:0 a.m.270 views

Oracle Linux 6 / 7 : openssl (ELSA-2014-1652)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2014-1652 advisory. - fix CVE-2014-3567 - memory leak when handling session tickets - fix CVE-2014-3513 - memory leak in srtp support - add support for fallback SCSV t...

7.5CVSS8AI score0.99999EPSS
Exploits106References3
RedHat Linux
RedHat Linux
added 2014/09/08 7:37 p.m.7 views

CXF: SSL hostname verification bypass, incomplete CVE-2012-6153 fix

It was found that the fix for CVE-2012-6153 was incomplete: the code added to check that the server hostname matches the domain name in a subject's Common Name CN field in X.509 certificates was flawed. A man-in-the-middle attacker could use this flaw to spoof an SSL server using a specially...

5.8CVSS6.7AI score0.09149EPSS
Exploits1References4
Oracle linux
Oracle linux
added 2014/09/08 12:0 a.m.53 views

jakarta-commons-httpclient security update

1:3.1-16 - Fix MITM security vulnerability - Resolves: CVE-2014-3577...

5.8CVSS1.9AI score0.09149EPSS
Exploits1
OSV
OSV
added 2014/09/04 12:0 a.m.4 views

UBUNTU-CVE-2012-6153

http/conn/ssl/AbstractVerifier.java in Apache Commons HttpClient before 4.2.3 does not properly verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via...

4.3CVSS6.4AI score0.05844EPSS
Exploits0References3
OSV
OSV
added 2014/08/21 2:55 p.m.2 views

DEBIAN-CVE-2014-3577

org.apache.http.conn.ssl.AbstractVerifier in Apache HttpComponents HttpClient before 4.3.5 and HttpAsyncClient before 4.0.2 does not properly verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows...

5.8CVSS9.1AI score0.09149EPSS
Exploits1References1
Oracle linux
Oracle linux
added 2014/08/13 12:0 a.m.46 views

openssl security update

0.9.8e-27.4 - fix CVE-2014-0221 - recursion in DTLS code leading to DoS - fix CVE-2014-3505 - doublefree in DTLS packet processing - fix CVE-2014-3506 - avoid memory exhaustion in DTLS - fix CVE-2014-3508 - fix OID handling to avoid information leak - fix CVE-2014-3510 - fix DoS in anonymous ECDH...

5.8CVSS1AI score0.95326EPSS
Exploits9
securityvulns
securityvulns
added 2014/08/11 12:0 a.m.101 views

CVE-2014-5075 MitM Vulnerability in the Smack XMPP Library for Java

CVE-2014-5075 MitM Vulnerability in the Smack XMPP Library for Java =================================================================== Smack http://www.igniterealtime.org/projects/smack/ is an Open Source XMPP Jabber client library for instant messaging and presence written in Java. Smack prior ...

6.8CVSS0.8AI score0.0123EPSS
Exploits0
Rows per page
Query Builder