Lucene search
K

23343 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/06/04 3:36 p.m.12 views

Security Bulletin: IBM Watson Speech Services Cartridge v4.8.8 is vulnerable to a man-in-the-middle vulnerability in RFC7250 Raw Public Keys [CVE-2024-12797]

Summary IBM Watson Speech Services Cartridge v4.8.8 is vulnerable to a man-in-the-middle vulnerability in RFC7250 Raw Public Keys RPKs, due to server authentication failure which is susceptible to man-in-the-middle attack CVE-2024-12797. RFC7250 Raw Public Keys are used in our Speech service...

6.3CVSS6.5AI score0.02357EPSS
Exploits0Affected Software1
OPENSUSE Linux
OPENSUSE Linux
added 2025/06/04 12:0 a.m.6 views

perl-Crypt-OpenSSL-RSA-0.350.0-1.1 on GA media (moderate)

perl-Crypt-OpenSSL-RSA-0.350.0-1.1 on GA media Announcement ID: openSUSE-SU-2025:15199-1 Rating: moderate Cross-References: CVE-2024-2467 CVSS scores: CVE-2024-2467 SUSE : 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products: openSUSE Tumbleweed An update that solves one vulnerabili...

5.9CVSS7.3AI score0.00516EPSS
Exploits0
OpenVAS
OpenVAS
added 2025/06/04 12:0 a.m.6 views

SUSE: Security Advisory (SUSE-SU-2025:1550-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS6.5AI score0.00361EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2025/06/04 12:0 a.m.4 views

SUSE: Security Advisory (SUSE-SU-2024:2933-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS8.2AI score0.05582EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2025/06/04 12:0 a.m.3 views

SUSE: Security Advisory (SUSE-SU-2025:0613-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.1CVSS6.4AI score0.00601EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2025/06/04 12:0 a.m.6 views

SUSE: Security Advisory (SUSE-SU-2024:2635-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS8.2AI score0.05582EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2025/06/04 12:0 a.m.4 views

SUSE: Security Advisory (SUSE-SU-2024:3501-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.01083EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2025/06/04 12:0 a.m.9 views

SUSE: Security Advisory (SUSE-SU-2024:3943-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.2AI score0.01118EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2025/06/04 12:0 a.m.6 views

SUSE: Security Advisory (SUSE-SU-2025:0430-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.1CVSS6.4AI score0.00601EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2025/06/04 12:0 a.m.8 views

SUSE: Security Advisory (SUSE-SU-2024:2059-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.5AI score0.02945EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2025/06/04 12:0 a.m.11 views

SUSE: Security Advisory (SUSE-SU-2024:2066-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.4AI score0.02945EPSS
Exploits0References7
OSV
OSV
added 2025/06/03 1:15 p.m.4 views

SUSE-SU-2025:01807-1 Security update for 389-ds

This update for 389-ds fixes the following issues: Security fixes: - CVE-2025-3416: Fixed use-After-Free in Md::fetch and Cipher::fetch in rust-openssl crate bsc1242666 Other fixes: - Enable memory accounting as SUSE disables it by default bsc1241016. - Fix dsidm service getdn option failing...

3.7CVSS5.8AI score0.00452EPSS
Exploits0References5
OSV
OSV
added 2025/06/03 1:13 p.m.3 views

SUSE-SU-2025:01806-1 Security update for 389-ds

This update for 389-ds fixes the following issues: Security fixes: - CVE-2025-3416: Fixed use-After-Free in Md::fetch and Cipher::fetch in rust-openssl crate bsc1242666 Other fixes: - Enable memory accounting as SUSE disables it by default bsc1241016. - Fix dsidm service getdn option failing...

3.7CVSS5.8AI score0.00452EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/06/03 12:0 a.m.4 views

PT-2025-23685 · Openssl +1 · Openssl +1

Name of the Vulnerable Software and Affected Versions: Action1 affected versions not specified Description: This issue allows local attackers to escalate privileges on affected installations. An attacker must first obtain the ability to execute low-privileged code on the target system in order to...

7.8CVSS7.8AI score0.00257EPSS
Exploits0References5
Zero Day Initiative
Zero Day Initiative
added 2025/06/03 12:0 a.m.7 views

Action1 Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Action1. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the configuration of OpenSSL...

7.8CVSS7.3AI score0.00257EPSS
Exploits0References1
OSV
OSV
added 2025/06/03 12:0 a.m.7 views

OPENSUSE-SU-2025:15199-1 perl-Crypt-OpenSSL-RSA-0.350.0-1.1 on GA media

These are all security issues fixed in the perl-Crypt-OpenSSL-RSA-0.350.0-1.1 package on the GA media of openSUSE Tumbleweed...

5.9CVSS5.8AI score0.00516EPSS
Exploits0References1
OSV
OSV
added 2025/05/30 12:0 a.m.1 views

OPENSUSE-SU-2025:15183-1 libopenssl-3-devel-3.5.0-3.1 on GA media

These are all security issues fixed in the libopenssl-3-devel-3.5.0-3.1 package on the GA media of openSUSE Tumbleweed...

6.5CVSS6.7AI score0.00361EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/29 5:47 p.m.8 views

CVE-2025-48057

Icinga 2 is a monitoring system which checks the availability of network resources, notifies users of outages, and generates performance data for reporting. Prior to versions 2.12.12, 2.13.12, and 2.14.6, the VerifyCertificate function can be tricked into incorrectly treating certificates as vali...

9.3CVSS6.7AI score0.00414EPSS
Exploits0References1
SUSE Linux
SUSE Linux
added 2025/05/29 1:31 p.m.2 views

Security update for python-cryptography

This update for python-cryptography fixes the following issues: CVE-2025-3416: openssl: use-after-free in Md::fetch and Cipher::fetch when Some... value passed as properties argument to either function bsc1242631. Patch Instructions: To install this SUSE update use the SUSE recommended installati...

6.3CVSS7.4AI score0.00452EPSS
Exploits0References4
OSV
OSV
added 2025/05/29 1:31 p.m.2 views

SUSE-SU-2025:01662-2 Security update for python-cryptography

This update for python-cryptography fixes the following issues: - CVE-2025-3416: openssl: use-after-free in Md::fetch and Cipher::fetch when Some... value passed as properties argument to either function bsc1242631...

3.7CVSS5.6AI score0.00452EPSS
Exploits0References3
Rows per page
Query Builder