Lucene search
K

1575 matches found

F5 Networks
F5 Networks
added 2026/03/31 7:14 p.m.6 views

K000160557: OpenSSL vulnerability CVE-2025-69418

Security Advisory Description Issue summary: When using the low-level OCB API directly with AES-NI or other hardware-accelerated code paths, inputs whose length is not a multiple of 16 bytes can leave the final partial block unencrypted and unauthenticated. Impact summary: The trailing 1-15 bytes...

4CVSS5.8AI score0.00115EPSS
Exploits1
F5 Networks
F5 Networks
added 2026/03/31 7:2 p.m.5 views

K000160555: OpenSSL vulnerability CVE-2026-22795

Security Advisory Description Issue summary: An invalid or NULL pointer dereference can happen in an application processing a malformed PKCS12 file. Impact summary: An application processing a malformed PKCS12 file can be caused to dereference an invalid or NULL pointer on memory read, resulting ...

5.5CVSS5.8AI score0.00144EPSS
Exploits1
F5 Networks
F5 Networks
added 2026/03/31 6:52 p.m.6 views

K000160552: OpenSSL vulnerability CVE-2025-68160

Security Advisory Description Issue summary: Writing large, newline-free data into a BIO chain using the line-buffering filter where the next BIO performs short writes can trigger a heap-based out-of-bounds write. Impact summary: This out-of-bounds write can cause memory corruption which typicall...

4.7CVSS6.4AI score0.00152EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/31 3:38 a.m.8 views

Security Bulletin: Vulnerability in IBM Java, Websphere, OpenSSL, libcurl, and Apache Commons may affect IBM Storage Protect Backup-Archive Client, IBM Storage Protect for Virtual Environments and IBM Storage Protect for Space Management

Summary IBM Spectrum Protect Backup-Archive Client, IBM Storage Protect for Virtual Environments and IBM Storage Protect for Space Management can be affected by logging and security vulnerabilities. This update improves reliability of Java object property handling, modern logging frameworks and...

7.5CVSS7.8AI score0.66594EPSS
Exploits0Affected Software3
Tenable Nessus
Tenable Nessus
added 2026/03/28 12:0 a.m.2 views

NewStart CGSL MAIN 7.02 : openssl Vulnerability (NS-SA-2026-0038)

The remote NewStart CGSL host, running version MAIN 7.02, has openssl packages installed that are affected by a vulnerability: - Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read and write. Impact summary: This...

7.5CVSS6.5AI score0.01744EPSS
Exploits0References3
OSV
OSV
added 2026/03/27 2:4 p.m.3 views

OESA-2026-1749 edk2 security update

EDK II is a modern, feature-rich, cross-platform firmware development environment for the UEFI and PI specifications. Security Fixes: Issue summary: Writing large, newline-free data into a BIO chain using the line-buffering filter where the next BIO performs short writes can trigger a heap-based...

7.5CVSS6.3AI score0.00844EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2026/03/23 12:0 a.m.10 views

RHEL 9 : compat-openssl11 (RHSA-2026:5217)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2026:5217 advisory. The OpenSSL toolkit provides support for secure communications between machines. This version of OpenSSL package contains only the libraries from the...

7.4CVSS6.4AI score0.00444EPSS
Exploits1References5
OSV
OSV
added 2026/03/20 2:24 p.m.4 views

OESA-2026-1664 edk2 security update

EDK II is a modern, feature-rich, cross-platform firmware development environment for the UEFI and PI specifications. Security Fixes: Issue summary: Calling PKCS12getfriendlyname function on a maliciously crafted PKCS12 file with a BMPString UTF-16BE friendly name containing non-ASCII BMP code...

7.4CVSS6AI score0.00444EPSS
Exploits1References2
OSV
OSV
added 2026/03/20 2:24 p.m.3 views

OESA-2026-1661 edk2 security update

EDK II is a modern, feature-rich, cross-platform firmware development environment for the UEFI and PI specifications. Security Fixes: Issue summary: Calling PKCS12getfriendlyname function on a maliciously crafted PKCS12 file with a BMPString UTF-16BE friendly name containing non-ASCII BMP code...

7.4CVSS6.9AI score0.00444EPSS
Exploits1References2
GithubExploit
GithubExploit
added 2026/03/18 4:29 p.m.164 views

Exploit for Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) in Openssl

🔐 SSH Exploit Tool Educational Use Only 📌 Description Th...

7.8CVSS7AI score0.70721EPSS
Exploits7
RedHat Linux
RedHat Linux
added 2026/03/17 6:13 p.m.11 views

Moderate: Red Hat Security Advisory: compat-openssl11 security update

An update for compat-openssl11 is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.4CVSS7.5AI score0.00444EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2026/03/17 6:1 p.m.9 views

Moderate: Red Hat Security Advisory: compat-openssl11 security update

An update for compat-openssl11 is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.4CVSS6.2AI score0.00444EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/03/17 12:0 a.m.4 views

AlmaLinux 9 : compat-openssl11 (ALSA-2026:4472)

The remote AlmaLinux 9 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2026:4472 advisory. openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS12 processing CVE-2025-69419 Tenable has extracted the preceding description block...

7.4CVSS6.2AI score0.00444EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/03/17 12:0 a.m.8 views

EulerOS Virtualization 2.12.1 : openssl (EulerOS-SA-2026-1450)

According to the versions of the openssl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bound...

7.5CVSS6.6AI score0.01744EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/03/17 12:0 a.m.41 views

RHEL 9 : compat-openssl11 (RHSA-2026:4825)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2026:4825 advisory. The OpenSSL toolkit provides support for secure communications between machines. This version of OpenSSL package contains only the libraries from the...

7.4CVSS6.3AI score0.00444EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2026/03/16 12:0 a.m.7 views

EulerOS Virtualization 2.12.0 : openssl (EulerOS-SA-2026-1507)

According to the versions of the openssl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bound...

7.5CVSS6.6AI score0.01744EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/03/16 12:0 a.m.3 views

MiracleLinux 9 : compat-openssl11-1.1.1k-5.el9_7.1 (AXSA:2026-313:01)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2026-313:01 advisory. openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS12 processing CVE-2025-69419 Tenable has extracted the preceding description bloc...

7.4CVSS6.2AI score0.00444EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/03/16 12:0 a.m.9 views

OpenSSL 3.6.0 < 3.6.2 Multiple Vulnerabilities

The version of OpenSSL installed on the remote host is prior to 3.6.2. It is, therefore, affected by multiple vulnerabilities as referenced in the 3.6.2 advisory. - Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group...

9.8CVSS7.5AI score0.00981EPSS
Exploits0References27
Tenable Nessus
Tenable Nessus
added 2026/03/12 12:0 a.m.8 views

Oracle Linux 9 : compat-openssl11 (ELSA-2026-4472)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2026-4472 advisory. 1:1.1.1k-5.2 - Fixes CVE-2025-69419 OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS12 processing Resolves: RHEL-142722 Tenable has extracte...

7.4CVSS6.3AI score0.00444EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/03/10 12:0 a.m.4 views

RHEL 8 : openssl (RHSA-2026:4163)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:4163 advisory. OpenSSL is a toolkit that implements the Secure Sockets Layer SSL and Transport Layer Security TLS protocols, as well as a full-strength...

7.4CVSS7AI score0.00444EPSS
Exploits1References5
Rows per page
Query Builder