CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedHat Linux•added 2023/07/06 3:1 a.m.•2 views

openshift: OCP & FIPS mode

A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered that, when FIPS mode was enabled, not all of the cryptographic modules in use were FIPS-validated...

7.5CVSS5.7AI score0.00442EPSS

RedHat Linux•added 2023/07/06 2:47 a.m.•1 views

openshift: OCP & FIPS mode

A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered that, when FIPS mode was enabled, not all of the cryptographic modules in use were FIPS-validated...

7.5CVSS5.7AI score0.00442EPSS

RedhatCVE•added 2023/07/05 3:17 p.m.•53 views

CVE-2023-30581

A vulnerability has been discovered in Node.js, where the use of proto in process.mainModule.proto.require can bypass the policy mechanism and require modules outside of the policy.json definition...

7.5CVSS7.6AI score0.0105EPSS

Exploits0References3

ATTACKERKB•added 2023/07/05 1:15 p.m.•3 views

CVE-2023-3089

A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered that, when FIPS mode was enabled, not all of the cryptographic modules in use were FIPS-validated...

7.5CVSS6.4AI score0.00442EPSS

Exploits0References3

OSV•added 2023/07/05 1:15 p.m.•23 views

CVE-2023-3089

A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered that, when FIPS mode was enabled, not all of the cryptographic modules in use were FIPS-validated...

7.5CVSS5.4AI score0.00442EPSS

NVD•added 2023/07/05 1:15 p.m.•78 views

CVE-2023-3089

A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered that, when FIPS mode was enabled, not all of the cryptographic modules in use were FIPS-validated...

7.5CVSS8.3AI score0.00442EPSS

Prion•added 2023/07/05 1:15 p.m.•29 views

Design/Logic Flaw

A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered that, when FIPS mode was enabled, not all of the cryptographic modules in use were FIPS-validated...

5CVSS8.4AI score0.00442EPSS

Exploits0References2Affected Software5

CVE•added 2023/07/05 12:21 p.m.•274 views

CVE-2023-3089

CVE-2023-3089 affects Red Hat OpenShift Container Platform; in OpenShift 4.13.x, the advisory RHSA-2023:4093 notes the fix for OCP in FIPS mode, stating that the CVE-3089 issue (in which not all cryptographic modules in use were FIPS-validated) is addressed by upgrading to OpenShift 4.13.5 and ap...

7.5CVSS7.4AI score0.00442EPSS

Exploits0References2Affected Software1

Cvelist•added 2023/07/05 12:21 p.m.•75 views

CVE-2023-3089 Ocp & fips mode

A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered that, when FIPS mode was enabled, not all of the cryptographic modules in use were FIPS-validated...

7CVSS7.8AI score0.00442EPSS

Vulnrichment•added 2023/07/05 12:21 p.m.•17 views

CVE-2023-3089 Ocp & fips mode

A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered that, when FIPS mode was enabled, not all of the cryptographic modules in use were FIPS-validated...

7CVSS6.7AI score0.00442EPSS

RedhatCVE•added 2023/07/05 12:17 p.m.•39 views

CVE-2023-3089

A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered that, when FIPS mode was enabled, not all of the cryptographic modules in use were FIPS-validated. Mitigation Red Hat has investigated whether a possible mitigation exists for this issue, and has not be...

6.5CVSS6.8AI score0.00442EPSS

Exploits0References3

Tenable Nessus•added 2023/07/03 12:0 a.m.•37 views

Rockwell Automation ControlLogix Communications Modules Multiple Vulnerabilities

Binary data rockwellautomationcontrollogix1756.nbin...

9.8CVSS8.9AI score0.0364EPSS

OSV•added 2023/07/01 11:5 a.m.•2 views

OESA-2023-1386 golang security update

The Go Programming Language. Security Fixes: The go command may generate unexpected code at build time when using cgo. This may result in unexpected behavior when running a go program which uses cgo. This may occur when running an untrusted module which contains directories with newline character...

9.8CVSS7.9AI score0.01837EPSS

Exploits0References4

Cloud Foundry•added 2023/06/30 12:0 a.m.•37 views

USN-6112-1: Perl vulnerability | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 16.04 Canonical Ubuntu 18.04 Description It was discovered that Perl was not properly verifying TLS certificates when using CPAN together with HTTP::Tiny to download modules over HTTPS. If a remote attacker were able to...

8.1CVSS8.1AI score0.01561EPSS

Exploits1Affected Software3

RedHat Linux•added 2023/06/29 9:49 a.m.•4 views

golang: cmd/go: go command may generate unexpected code at build time when using cgo

A flaw was found in golang. The go command may generate unexpected code at build time when using cgo. This may result in unexpected behavior when running a go program that uses cgo. This can occur when running an untrusted module that contains directories with newline characters in their names...

9.8CVSS7.1AI score0.01708EPSS

RedHat Linux•added 2023/06/29 9:14 a.m.•4 views

golang: cmd/go: go command may execute arbitrary code at build time when using cgo

A flaw was found in golang. The go command may execute arbitrary code at build time when using cgo. This can occur when running "go get" on a malicious module, or when running any other command which builds untrusted code. This can be triggered by linker flags, specified via a "cgo LDFLAGS"...

9.8CVSS7.4AI score0.01837EPSS

RedHat Linux•added 2023/06/29 9:14 a.m.•5 views

golang: cmd/go: go command may generate unexpected code at build time when using cgo

9.8CVSS7.1AI score0.01708EPSS

RedHat Linux•added 2023/06/29 5:33 a.m.•2 views

golang: cmd/go: go command may generate unexpected code at build time when using cgo

9.8CVSS7.1AI score0.01708EPSS