Lucene search
+L

298 matches found

nessus
nessus
added 2026/03/16 12:0 a.m.11 views

OpenSSL 3.6.0 < 3.6.2 Multiple Vulnerabilities

The version of OpenSSL installed on the remote host is prior to 3.6.2. It is, therefore, affected by multiple vulnerabilities as referenced in the 3.6.2 advisory. - Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group...

9.8CVSS7.5AI score0.01059EPSS
Exploits0References27
nessus
nessus
added 2026/03/16 12:0 a.m.19 views

OpenSSL 3.5.0 < 3.5.6 Multiple Vulnerabilities

The version of OpenSSL installed on the remote host is prior to 3.5.6. It is, therefore, affected by multiple vulnerabilities as referenced in the 3.5.6 advisory. - Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group...

9.8CVSS7.9AI score0.01059EPSS
Exploits0References24
susecve
susecve
added 2026/03/15 12:25 a.m.6 views

SUSE CVE-2026-2673

Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group configuration includes the default by using the 'DEFAULT' keyword. Impact summary: A less preferred key exchange may be used even when a more preferred group is...

5.3CVSS5.8AI score0.00435EPSS
Exploits0References5
euvd
euvd
added 2026/03/13 9:31 p.m.6 views

EUVD-2026-12033

Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group configuration includes the default by using the 'DEFAULT' keyword. Impact summary: A less preferred key exchange may be used even when a more preferred group is...

5.8AI score0.00435EPSS
Exploits0References5
nvd
nvd
added 2026/03/13 7:54 p.m.12 views

CVE-2026-2673

Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group configuration includes the default by using the 'DEFAULT' keyword. Impact summary: A less preferred key exchange may be used even when a more preferred group is...

6.5CVSS0.00435EPSS
Exploits0References5
osv
osv
added 2026/03/13 7:54 p.m.14 views

CVE-2026-2673

Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group configuration includes the default by using the 'DEFAULT' keyword. Impact summary: A less preferred key exchange may be used even when a more preferred group is...

7.5CVSS5.8AI score
Exploits0References4
osv
osv
added 2026/03/13 7:54 p.m.5 views

ALPINE-CVE-2026-2673

Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group configuration includes the default by using the 'DEFAULT' keyword. Impact summary: A less preferred key exchange may be used even when a more preferred group is...

6.5CVSS5.8AI score0.00435EPSS
Exploits0References1
osv
osv
added 2026/03/13 7:54 p.m.15 views

UBUNTU-CVE-2026-2673

Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group configuration includes the default by using the 'DEFAULT' keyword. Impact summary: A less preferred key exchange may be used even when a more preferred group is...

6.5CVSS5.8AI score0.00435EPSS
Exploits0References5
ubuntucve
ubuntucve
added 2026/03/13 7:54 p.m.8 views

CVE-2026-2673

Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group configuration includes the default by using the 'DEFAULT' keyword. Impact summary: A less preferred key exchange may be used even when a more preferred group is...

6.5CVSS5.9AI score0.00435EPSS
Exploits0References4
redhatcve
redhatcve
added 2026/03/13 6:47 p.m.3 views

CVE-2026-2673

A key group selection preference flaw has been discovered in OpenSSL. An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group configuration includes the default by using the "DEFAULT" keyword. A less preferred key exchange may be used...

7.5CVSS5.6AI score0.00435EPSS
Exploits0References6
cvelist
cvelist
added 2026/03/13 1:23 p.m.32 views

CVE-2026-2673 OpenSSL TLS 1.3 server may choose unexpected key agreement group

Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group configuration includes the default by using the 'DEFAULT' keyword. Impact summary: A less preferred key exchange may be used even when a more preferred group is...

0.00435EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2026/03/13 1:23 p.m.2 views

CVE-2026-2673 OpenSSL TLS 1.3 server may choose unexpected key agreement group

Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group configuration includes the default by using the 'DEFAULT' keyword. Impact summary: A less preferred key exchange may be used even when a more preferred group is...

5.8AI score0.00435EPSS
Exploits0References3
attackerkb
attackerkb
added 2026/03/13 1:23 p.m.6 views

CVE-2026-2673

Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group configuration includes the default by using the 'DEFAULT' keyword. Impact summary: A less preferred key exchange may be used even when a more preferred group is...

5.8AI score0.00435EPSS
Exploits0References4Affected Software1
cve
cve
added 2026/03/13 1:23 p.m.115 views

CVE-2026-2673

OpenSSL CVE-2026-2673 affects OpenSSL 3.5 and 3.6 series. The issue arises when an OpenSSL TLS 1.3 server uses the DEFAULT keyword to interpolate a built-in/default group list into its own configuration, causing the group tuples to lose their structure. As a result, the server may treat all suppo...

6.5CVSS5.8AI score0.00435EPSS
Exploits0References5Affected Software1
alpinelinux
alpinelinux
added 2026/03/13 1:23 p.m.6 views

CVE-2026-2673

Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group configuration includes the default by using the 'DEFAULT' keyword. Impact summary: A less preferred key exchange may be used even when a more preferred group is...

6.5CVSS5.9AI score0.00435EPSS
Exploits0
nessus
nessus
added 2026/03/13 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-2673

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group configuration includes the...

6.5CVSS7.3AI score0.00435EPSS
Exploits0References3
packetstormnews
packetstormnews
added 2026/03/11 12:0 a.m.3 views

Layered Performance Analysis of TLS 1.3 Handshakes: Classical, Hybrid, and Pure Post-Quantum Key Exchange

In this paper, we present a laboratory study focused on the impact of post-quantum cryptography PQC algorithms on multiple layers of stateful HTTP over TLS transactions: the TCP handshake, the intermediate TCP-TLS layer, the TLS handshake, the intermediate TLS layer, and the HTTP application laye...

5.8AI score
Exploits0
packetstormnews
packetstormnews
added 2026/03/08 12:0 a.m.5 views

Post-Quantum Federated Learning: Secure and Scalable Threat Intelligence for Collaborative Cyber Defense

Collaborative threat intelligence via federated learning FL faces critical risks from quantum computing, which can compromise classical encryption methods. This study proposes a quantum-secure FL framework using post-quantum cryptography PQC to protect cross-organizational data sharing. We expose...

5.8AI score
Exploits0
packetstormnews
packetstormnews
added 2026/03/06 12:0 a.m.7 views

PQC-LEO: An Evaluation Framework for Post-Quantum Cryptographic Algorithms

Advances in quantum computing threaten digital communication security by undermining the foundations of current public-key cryptography through Shor's quantum algorithm. This has driven the development of Post-Quantum Cryptography PQC, a new set of algorithms resistant to quantum attacks. While...

5.8AI score
Exploits0
packetstormnews
packetstormnews
added 2026/03/06 12:0 a.m.5 views

Securing Cryptography in the Age of Quantum Computing and AI: Threats, Implementations, and Strategic Response

This review examines how quantum computing and artificial intelligence challenge current cryptographic systems. We analyze the literature to assess the resilience of algorithms against quantum attacks Shor's and Grover's algorithms and AI-enhanced cryptanalysis. RSA and elliptic curve cryptograph...

5.8AI score
Exploits0
Rows per page
Query Builder