CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

213 matches found

F5 Networks•added 2014/04/10 12:0 a.m.•29 views

SOL15151 - pyOpenSSL vulnerability CVE-2013-4314

Recommended action None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5 critical issue...

4.3CVSS2.7AI score0.0025EPSS

Exploits0References4

NVD•added 2013/09/30 9:55 p.m.•8 views

CVE-2013-4314

The X509Extension in pyOpenSSL before 0.13.1 does not properly handle a '\0' character in a domain name in the Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate...

4.3CVSS6.2AI score0.0025EPSS

Exploits0References6

OSV•added 2013/09/30 9:55 p.m.•1 views

DEBIAN-CVE-2013-4314

4.3CVSS6.8AI score0.0025EPSS

Exploits0References1

OSV•added 2013/09/30 9:55 p.m.•5 views

CVE-2013-4314

9AI score

Exploits0References6

PyPA•added 2013/09/30 9:55 p.m.•4 views

PYSEC-2013-31

4.3CVSS6.8AI score0.0025EPSS

Exploits0References6Affected Software1

Prion•added 2013/09/30 9:55 p.m.•12 views

Design/Logic Flaw

4.3CVSS6.7AI score0.0025EPSS

Exploits0References6Affected Software2

vulnersOsv•added 2013/09/30 9:55 p.m.•2 views

python-glanceclient (=0.14.3) potentially affected by CVE-2013-4314 via pyopenssl (=0.13.0)

pyopenssl PYPI version =0.13.0 is affected by a known vulnerability. The following packages have a transitive dependency on pyopenssl and may be impacted: - python-glanceclient =0.14.3 Source cves: CVE-2013-4314 Source advisory: OSV:PYSEC-2013-31...

4.3CVSS7.2AI score0.0025EPSS

Exploits0

Cvelist•added 2013/09/30 9:0 p.m.•15 views

CVE-2013-4314

6AI score0.0025EPSS

Exploits0References6

CVE•added 2013/09/30 9:0 p.m.•83 views

CVE-2013-4314

CVE-2013-4314 affects pyOpenSSL up to, but not including, 0.13.1. The X509Extension code fails to properly handle a NUL byte in a domain name inside the SAN of an X.509 certificate, enabling a MITM attacker to spoof an SSL server via a certificate issued by a trusted CA. Root cause: incorrect han...

4.3CVSS6.1AI score0.0025EPSS

Exploits0References6Affected Software1

Debian CVE•added 2013/09/30 9:0 p.m.•18 views

CVE-2013-4314

4.3CVSS6AI score0.0025EPSS

Exploits0

Tenable Nessus•added 2013/09/25 12:0 a.m.•25 views

Debian DSA-2763-1 : pyopenssl - hostname check bypassing

It was discovered that PyOpenSSL, a Python wrapper around the OpenSSL library, does not properly handle certificates with NULL characters in the Subject Alternative Name field. A remote attacker in the position to obtain a certificate for 'www.foo.org\0.example.com' from a CA that a SSL client...

4.3CVSS8.2AI score0.0025EPSS

Exploits0References5

Debian•added 2013/09/24 4:54 p.m.•19 views

[SECURITY] [DSA 2763-1] pyopenssl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2763-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso September 24, 2013 http://www.debian.org/security/faq -...

4.3CVSS5.7AI score0.0025EPSS

Exploits0

Debian•added 2013/09/24 4:54 p.m.•15 views

[SECURITY] [DSA 2763-1] pyopenssl security update

4.3CVSS2AI score0.0025EPSS

Exploits0

OSV•added 2013/09/24 12:0 a.m.•19 views

DSA-2763-1 pyopenssl - hostname check bypassing

Bulletin has no description...

4.3CVSS9.3AI score0.0025EPSS

Exploits0

OpenVAS•added 2013/09/24 12:0 a.m.•10 views

Fedora Update for pyOpenSSL FEDORA-2013-15881

Check for the Version of pyOpenSSL OpenVAS Vulnerability Test Fedora Update for pyOpenSSL FEDORA-2013-15881 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

7.4AI score

Exploits0References2

OpenVAS•added 2013/09/24 12:0 a.m.•14 views

Fedora Update for pyOpenSSL FEDORA-2013-15881

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score

Exploits0References2

OpenVAS•added 2013/09/24 12:0 a.m.•14 views

Fedora Update for pyOpenSSL FEDORA-2013-15925

Check for the Version of pyOpenSSL OpenVAS Vulnerability Test Fedora Update for pyOpenSSL FEDORA-2013-15925 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

7.4AI score

Exploits0References2

OpenVAS•added 2013/09/24 12:0 a.m.•19 views

Ubuntu Update for pyopenssl USN-1965-1

Check for the Version of pyopenssl OpenVAS Vulnerability Test $Id: gbubuntuUSN19651.nasl 7958 2017-12-01 06:47:47Z santu $ Ubuntu Update for pyopenssl USN-1965-1 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free...

4.3CVSS6.4AI score0.0025EPSS

Exploits0References2

Tenable Nessus•added 2013/09/24 12:0 a.m.•30 views

Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.04 : pyopenssl vulnerability (USN-1965-1)

It was discovered that pyOpenSSL did not properly handle certificates with NULL characters in the Subject Alternative Name field. An attacker could exploit this to perform a man in the middle attack to view sensitive information or alter encrypted communications. Note that Tenable Network Securit...

4.3CVSS8.1AI score0.0025EPSS

Exploits0References2

OpenVAS•added 2013/09/24 12:0 a.m.•14 views

Debian Security Advisory DSA 2763-1 (pyopenssl - hostname check bypassing)

4.3CVSS6.1AI score0.0025EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by