Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

23267 matches found

Tenable Nessus
Tenable Nessusadded 2026/04/14 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-4158

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - KeePassXC OpenSSL Configuration Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate...

7.3CVSS7.5AI score0.00226EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2026/04/14 12:0 a.m.3 views

SUSE SLES15 Security Update : openssl-1_1 (SUSE-SU-2026:1290-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1290-1 advisory. - CVE-2026-28387: Potential use-after-free in DANE client code bsc1260441. - CVE-2026-28388: NULL Pointer Dereference When Processi...

9.8CVSS6.1AI score0.00885EPSS
Exploits0References13
Tenable Nessus
Tenable Nessusadded 2026/04/14 12:0 a.m.20 views

Amazon Linux 2 : openssl11, --advisory ALAS2-2026-3249 (ALAS-2026-3249)

The version of openssl11 installed on the remote host is prior to 1.1.1zg-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2026-3249 advisory. Potential use-after-free in DANE client code CVE-2026-28387 NULL Pointer Dereference When Processing a Delta CRL NOTE:...

8.1CVSS5.9AI score0.00885EPSS
Exploits0References10
Tenable Nessus
Tenable Nessusadded 2026/04/14 12:0 a.m.2 views

SUSE SLES15 / openSUSE 15 Security Update : openssl-1_0_0 (SUSE-SU-2026:1291-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1291-1 advisory. - CVE-2026-28387: Potential use-after-free in DANE client code bsc1260441. - CVE-2026-28388: NULL Pointer Dereference...

9.8CVSS7.6AI score0.00981EPSS
Exploits0References16
IBM Security Bulletins
IBM Security Bulletinsadded 2026/04/13 6:2 p.m.9 views

Security Bulletin: IBM InfoSphere Information Server is affected by multiple vulnerabilities in OpenSSL

Summary Multiple vulnerabilities in OpenSSL that is used by IBM InfoSphere Information Server were addressed. Vulnerability Details CVEID:CVE-2026-22796 DESCRIPTION: Issue summary: A type confusion vulnerability exists in the signature verification of signed PKCS7 data where an ASN1TYPE union...

7.5CVSS7.5AI score0.00844EPSS
Exploits1Affected Software1
OSV
OSVadded 2026/04/13 3:48 p.m.1 views

SUSE-SU-2026:21186-1 Security update for openssl-3

This update for openssl-3 fixes the following issues: Security issues fixed: - CVE-2026-2673: TLS 1.3 servers may choose unexpected key agreement group bsc1259652. - CVE-2026-28387: potential use-after-free in DANE client code bsc1260441. - CVE-2026-28388: NULL pointer dereference when processing...

9.8CVSS7.6AI score0.00981EPSS
Exploits0References15
OSV
OSVadded 2026/04/13 3:48 p.m.3 views

OPENSUSE-SU-2026:20525-1 Security update for openssl-3

This update for openssl-3 fixes the following issues: Security issues fixed: - CVE-2026-2673: TLS 1.3 servers may choose unexpected key agreement group bsc1259652. - CVE-2026-28387: potential use-after-free in DANE client code bsc1260441. - CVE-2026-28388: NULL pointer dereference when processing...

9.8CVSS7.4AI score0.00981EPSS
Exploits0References14
SUSE Linux
SUSE Linuxadded 2026/04/13 8:10 a.m.2 views

Security update for openssl-1_0_0

This update for openssl-100 fixes the following issues: CVE-2026-28387: Potential use-after-free in DANE client code bsc1260441. CVE-2026-28388: NULL Pointer Dereference When Processing a Delta CRL bsc1260442. CVE-2026-28389: Possible NULL dereference when processing CMS KeyAgreeRecipientInfo...

7.3CVSS6.2AI score0.00981EPSS
Exploits0References20
OSV
OSVadded 2026/04/13 8:9 a.m.0 views

SUSE-SU-2026:1291-1 Security update for openssl-1_0_0

This update for openssl-100 fixes the following issues: - CVE-2026-28387: Potential use-after-free in DANE client code bsc1260441. - CVE-2026-28388: NULL Pointer Dereference When Processing a Delta CRL bsc1260442. - CVE-2026-28389: Possible NULL dereference when processing CMS KeyAgreeRecipientIn...

9.8CVSS6.1AI score0.00981EPSS
Exploits0References11
SUSE Linux
SUSE Linuxadded 2026/04/13 8:8 a.m.4 views

Security update for openssl-1_1

This update for openssl-11 fixes the following issues: CVE-2026-28387: Potential use-after-free in DANE client code bsc1260441. CVE-2026-28388: NULL Pointer Dereference When Processing a Delta CRL bsc1260442. CVE-2026-28389: Possible NULL dereference when processing CMS KeyAgreeRecipientInfo...

7.3CVSS6.2AI score0.00885EPSS
Exploits0References16
OSV
OSVadded 2026/04/13 8:8 a.m.2 views

SUSE-SU-2026:1290-1 Security update for openssl-1_1

This update for openssl-11 fixes the following issues: - CVE-2026-28387: Potential use-after-free in DANE client code bsc1260441. - CVE-2026-28388: NULL Pointer Dereference When Processing a Delta CRL bsc1260442. - CVE-2026-28389: Possible NULL dereference when processing CMS KeyAgreeRecipientInf...

9.8CVSS6.1AI score0.00885EPSS
Exploits0References9
RedhatCVE
RedhatCVEadded 2026/04/13 5:10 a.m.3 views

CVE-2026-31789

A flaw was found in OpenSSL. This vulnerability, a heap buffer overflow, affects 32-bit systems when processing an unusually large X.509 certificate. If an application or service attempts to print or log such a specially crafted certificate, it could lead to a system crash or potentially allow an...

9.8CVSS6.1AI score0.00225EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/04/13 12:0 a.m.17 views

Amazon Linux 2023 : openssl, openssl-devel, openssl-fips-provider-latest (ALAS2023-2026-1586)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1586 advisory. Potential use-after-free in DANE client code CVE-2026-28387 NULL Pointer Dereference When Processing a Delta CRL NOTE: https://openssl-library.org/news/secadv/20260407.txt CVE-2026-28388...

8.1CVSS7.4AI score0.00981EPSS
Exploits0References12
OpenVAS
OpenVASadded 2026/04/13 12:0 a.m.3 views

Slackware: Security Advisory (SSA:2026-101-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS5.8AI score0.00885EPSS
Exploits0References10
OpenVAS
OpenVASadded 2026/04/13 12:0 a.m.5 views

SUSE: Security Advisory (SUSE-SU-2026:1255-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS5.8AI score0.00885EPSS
Exploits0References7
Amazon
Amazonadded 2026/04/13 12:0 a.m.6 views

Important: openssl

Issue Overview: Potential use-after-free in DANE client code CVE-2026-28387 NULL Pointer Dereference When Processing a Delta CRL NOTE: https://openssl-library.org/news/secadv/20260407.txt CVE-2026-28388 Possible NULL dereference when processing CMS KeyAgreeRecipientInfo CVE-2026-28389 Possible NU...

7.5CVSS5.9AI score0.00981EPSS
Exploits0
OpenVAS
OpenVASadded 2026/04/13 12:0 a.m.4 views

Mageia: Security Advisory (MGASA-2026-0091)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS5.8AI score0.00981EPSS
Exploits0References4
OpenVAS
OpenVASadded 2026/04/13 12:0 a.m.5 views

SUSE: Security Advisory (SUSE-SU-2026:1256-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS5.8AI score0.00981EPSS
Exploits0References8
Tenable Nessus
Tenable Nessusadded 2026/04/13 12:0 a.m.14 views

Ubuntu 22.04 LTS / 24.04 LTS / 25.10 : OpenSSL vulnerabilities (USN-8155-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8155-1 advisory. Viktor Dukhovni discovered that OpenSSL incorrectly negotiated the expected preferred key exchange group when used as a TLS 1.3 serve...

9.8CVSS8.4AI score0.00981EPSS
Exploits0References8
OpenVAS
OpenVASadded 2026/04/13 12:0 a.m.4 views

SUSE: Security Advisory (SUSE-SU-2026:1257-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS5.8AI score0.00981EPSS
Exploits0References8
Rows per page
Query Builder