Lucene search
K

129 matches found

AstraLinux
AstraLinux
added 2025/11/01 10:54 a.m.7 views

Astra Linux – Vulnerability in OpenSSL

Issue summary: An application attempting to decrypt messages encrypted using password-based encryption in CMS can trigger an out-of-bounds read and write attack. Impact summary: This out-of-bounds read attack may cause a system crash, leading to a denial of service for the application. The...

7.5CVSS6.8AI score0.01744EPSS
Exploits0References3
OSV
OSV
added 2025/10/31 2:13 p.m.4 views

OESA-2025-2612 edk2 security update

EDK II is a modern, feature-rich, cross-platform firmware development environment for the UEFI and PI specifications. Security Fixes: Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read and write.Impact summary:...

7.5CVSS7.2AI score0.01744EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/10/27 12:0 a.m.3 views

Siemens SIMATIC Devices and SCALANCE Out-of-bounds Write (CVE-2025-9230)

An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read and write. Impact summary: This out-of-bounds read may trigger a crash which leads to Denial of Service for an application. The out-of-bounds write can cause a memory corrupti...

7.5CVSS6.5AI score0.01744EPSS
Exploits0References4
OSV
OSV
added 2025/10/24 2:33 p.m.7 views

OESA-2025-2505 edk2 security update

EDK II is a modern, feature-rich, cross-platform firmware development environment for the UEFI and PI specifications. Security Fixes: Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read and write. Impact summary:...

7.5CVSS7.2AI score0.01744EPSS
Exploits0References2
OSV
OSV
added 2025/10/24 2:33 p.m.2 views

OESA-2025-2506 edk2 security update

EDK II is a modern, feature-rich, cross-platform firmware development environment for the UEFI and PI specifications. Security Fixes: Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read and write. Impact summary:...

7.5CVSS7.8AI score0.01744EPSS
Exploits0References2
OSV
OSV
added 2025/10/24 2:33 p.m.5 views

OESA-2025-2504 edk2 security update

EDK II is a modern, feature-rich, cross-platform firmware development environment for the UEFI and PI specifications. Security Fixes: Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read and write. Impact summary:...

7.5CVSS7.2AI score0.01744EPSS
Exploits0References2
OSV
OSV
added 2025/10/24 2:33 p.m.5 views

OESA-2025-2503 edk2 security update

EDK II is a modern, feature-rich, cross-platform firmware development environment for the UEFI and PI specifications. Security Fixes: Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read and write. Impact summary:...

7.5CVSS7.8AI score0.01744EPSS
Exploits0References2
OSV
OSV
added 2025/10/17 2:56 p.m.4 views

OESA-2025-2490 openssl security update

OpenSSL is a robust, commercial-grade, and full-featured toolkit for the Transport Layer Security TLS and Secure Sockets Layer SSL protocols. Security Fixes: Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read an...

7.5CVSS7.2AI score0.01744EPSS
Exploits0References2
OSV
OSV
added 2025/10/17 2:56 p.m.4 views

OESA-2025-2488 openssl security update

OpenSSL is a robust, commercial-grade, and full-featured toolkit for the Transport Layer Security TLS and Secure Sockets Layer SSL protocols. Security Fixes: Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read an...

7.5CVSS7.2AI score0.01744EPSS
Exploits0References2
OSV
OSV
added 2025/10/17 2:56 p.m.5 views

OESA-2025-2487 openssl security update

OpenSSL is a robust, commercial-grade, and full-featured toolkit for the Transport Layer Security TLS and Secure Sockets Layer SSL protocols. Security Fixes: Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read an...

7.5CVSS7.2AI score0.01744EPSS
Exploits0References2
OSV
OSV
added 2025/10/17 2:56 p.m.3 views

OESA-2025-2485 openssl security update

OpenSSL is a robust, commercial-grade, and full-featured toolkit for the Transport Layer Security TLS and Secure Sockets Layer SSL protocols. Security Fixes: Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read an...

7.5CVSS7.2AI score0.01744EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/10/15 12:0 a.m.5 views

Amazon Linux 2 : edk2, --advisory ALAS2-2025-3022 (ALAS-2025-3022)

It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-3022 advisory. Issue summary: An application trying to decrypt CMS messages encrypted usingpassword based encryption can trigger an out-of-bounds read and write. Impact summary: This out-of-bounds read may trigger a cra...

7.5CVSS6.6AI score0.01744EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/10/15 12:0 a.m.8 views

Amazon Linux 2 : openssl11, --advisory ALAS2-2025-3033 (ALAS-2025-3033)

The version of openssl11 installed on the remote host is prior to 1.1.1zd-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-3033 advisory. Issue summary: An application trying to decrypt CMS messages encrypted usingpassword based encryption can trigger an...

7.5CVSS6.5AI score0.01744EPSS
Exploits0References4
Amazon
Amazon
added 2025/10/14 12:0 a.m.3 views

Medium: openssl-snapsafe

Issue Overview: Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read and write. Impact summary: This out-of-bounds read may trigger a crash which leads to Denial of Service for an application. The out-of-bounds...

7.5CVSS7.3AI score0.01744EPSS
Exploits0
Amazon
Amazon
added 2025/10/14 12:0 a.m.5 views

Medium: edk2

Issue Overview: Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read and write. Impact summary: This out-of-bounds read may trigger a crash which leads to Denial of Service for an application. The out-of-bounds...

7.5CVSS7.3AI score0.01744EPSS
Exploits0
Amazon
Amazon
added 2025/10/14 12:0 a.m.3 views

Medium: openssl

Issue Overview: Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read and write. Impact summary: This out-of-bounds read may trigger a crash which leads to Denial of Service for an application. The out-of-bounds...

7.5CVSS7.1AI score0.02234EPSS
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-7020

Malware in sbrugna...

7.5CVSS7.5AI score0.00405EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2025-31729

Malicious code in bioql PyPI...

7.5CVSS6.2AI score0.01744EPSS
Exploits0References8
Debian
Debian
added 2025/10/03 3:51 p.m.6 views

[SECURITY] [DLA 4321-1] openssl security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-4321-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort October 03, 2025 https://wiki.debian.org/LTS -...

7.5CVSS6.8AI score0.01744EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/10/03 12:0 a.m.6 views

Debian dla-4321 : libcrypto1.1-udeb - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4321 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4321-1 [email protected] https://www.debian.org/lts/security/...

7.5CVSS6.3AI score0.01744EPSS
Exploits0References4
Rows per page
Query Builder