CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

54 matches found

AstraLinux•added 2026/05/03 11:59 p.m.•12 views

Astra Linux - уязвимость в mbedtls

An issue was discovered in Mbed TLS 3.5.1. There is persistent handshake denial if a client sends a TLS 1.3 ClientHello without extensions...

7.5CVSS5.5AI score0.00685EPSS

Exploits1References1

AstraLinux•added 2026/05/03 11:59 p.m.•9 views

Astra Linux – Vulnerability in mbedtls

A issue was discovered in Arm Mbed TLS before version 2.23.0. A remote attacker can retrieve plaintext data because a certain countermeasure, known as “Lucky 13,” does not properly handle the case where a hardware accelerator is involved...

7.5CVSS7.3AI score0.01195EPSS

Exploits0References2

Tenable Nessus•added 2026/04/03 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2026-34874

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Mbed TLS through 3.6.5 and 4.x through 4.0.0. There is a NULL pointer dereference in distinguished name parsing that allows an attack...

7.5CVSS5.8AI score0.00279EPSS

Exploits0References3

Tenable Nessus•added 2026/04/03 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-34871

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Mbed TLS before 3.6.6 and 4.x before 4.1.0 and TF-PSA-Crypto before 1.1.0. There is a Predictable Seed in a Pseudo-Random Number...

6.7CVSS5.8AI score0.00192EPSS

Exploits0References3

Tenable Nessus•added 2026/04/03 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-34875

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Mbed TLS through 3.6.5 and TF-PSA-Crypto 1.0.0. A buffer overflow can occur in public key export for FFDH keys. CVE-2026-34875 Note...

9.8CVSS6AI score0.00366EPSS

Exploits0References3

EUVD•added 2026/04/01 9:30 p.m.•2 views

EUVD-2026-17999

Mbed TLS before 3.6.6 and TF-PSA-Crypto before 1.1.0 misuse seeds in a Pseudo-Random Number Generator PRNG...

7.7CVSS5.9AI score0.0017EPSS

Exploits0References3

AstraLinux•added 2026/01/13 2:1 p.m.•2 views

Astra Linux – Vulnerability in mbedtls

In Mbed TLS versions prior to 2.28.10 and 3.x before 3.6.3, in some cases of failed memory allocation or hardware errors, uninitialized stack memory was used to construct the TLS Finished message. This could potentially lead to authentication bypasses, such as replay attacks...

5.4CVSS5.9AI score0.00265EPSS

Exploits0References3

CNNVD•added 2025/10/20 12:0 a.m.•3 views

Mbed TLS 安全漏洞

Mbed TLS is an open source, portable, easy to use, readable and flexible SSL library from Mbed TLS Open Source. A security vulnerability exists in Mbed TLS versions prior to 3.6.5 that stems from a local timing attack and a direct call to mbedtlsmpimodinv or mbedtlsmpigcd, which could lead to...

6.2CVSS5.8AI score0.00183EPSS

Exploits1References3

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2018-1311

Malware in sbrugna...

9.8CVSS9.2AI score0.05064EPSS

Exploits0References11

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2017-5547

Malware in sbrugna...

8.1CVSS8AI score0.01492EPSS

Exploits0References9