CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

968 matches found

Prion•added 2014/05/26 7:55 p.m.•18 views

Code injection

The IBMSecureRandom component in the IBMJCE and IBMSecureRandom cryptographic providers in IBM SDK Java Technology Edition 5.0 before Service Refresh 16 FP6, 6 before Service Refresh 16, 6.0.1 before Service Refresh 8, 7 before Service Refresh 7, and 7R1 before Service Refresh 1 makes it easier f...

5.8CVSS6.6AI score0.02093EPSS

Exploits0References22Affected Software1

Cvelist•added 2014/05/26 7:0 p.m.•29 views

CVE-2014-0878

5.8AI score0.02093EPSS

Exploits0References22

CVE•added 2014/05/26 7:0 p.m.•97 views

CVE-2014-0878

CVE-2014-0878 affects IBMJCE/IBMSecureRandom in IBM SDK Java Technology Edition (various service refresh levels: 5.0 SR16 FP6 and earlier; 6 SR16 and earlier; 6.0.1 SR8; 7 SR7; 7R1 SR1). The vulnerability allows context-dependent attackers to predict the RNG output, undermining cryptographic prot...

5.8CVSS7.5AI score0.02093EPSS

Exploits0References22Affected Software1

RedHat Linux•added 2014/05/15 6:19 p.m.•3 views

JDK: Vulnerability in the IBMSecureRandom implementation of the IBMJCE and IBMSecureRandom cryptographic providers

5.8CVSS7.3AI score0.02093EPSS

Exploits0References4

RedHat Linux•added 2014/05/15 5:28 p.m.•2 views

JDK: Vulnerability in the IBMSecureRandom implementation of the IBMJCE and IBMSecureRandom cryptographic providers

5.8CVSS7.3AI score0.02093EPSS

Exploits0References4

RedHat Linux•added 2014/05/13 7:47 p.m.•3 views

JDK: Vulnerability in the IBMSecureRandom implementation of the IBMJCE and IBMSecureRandom cryptographic providers

5.8CVSS7.3AI score0.02093EPSS

Exploits0References4

securityvulns•added 2014/05/07 12:0 a.m.•77 views

CVE-2014-2881 - Poor Quality Implementation of Diffie-Hellman Key Exchange in Citrix Netscaler

Vulnerability title: Poor Quality Implementation of Diffie-Hellman Key Exchange in Citrix Netscaler CVE: CVE-2014-2881 Vendor: Citrix Product: Netscaler Affected version: All prior to 10.1-122.17/9.3-66.5 Fixed version: 10.1-122.17/9.3-66.5 Reported by: Graham Sutherland Details: The remote...

10CVSS6.3AI score0.01855EPSS

Exploits0

OSV•added 2014/04/24 12:0 a.m.•38 views

DSA-2906-1 linux-2.6 - several

Bulletin has no description...

10CVSS8AI score0.10385EPSS

Exploits14

Prion•added 2014/03/24 4:31 p.m.•17 views

Code injection

stunnel before 5.00, when using fork threading, does not properly update the state of the OpenSSL pseudo-random number generator PRNG, which causes subsequent children with the same process ID to use the same entropy pool and allows remote attackers to obtain private keys for EC ECDSA or DSA...

4.3CVSS7AI score0.02155EPSS

Exploits1References5Affected Software1

NVD•added 2014/03/24 2:20 p.m.•11 views

CVE-2014-2250

The random-number generator on Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 does not have sufficient entropy, which makes it easier for remote attackers to defeat cryptographic protection mechanisms and hijack sessions via unspecified vectors, a different vulnerability than...

8.3CVSS6.6AI score0.0313EPSS

Exploits1References3

Debian CVE•added 2014/03/23 3:0 p.m.•21 views

CVE-2014-0016

4.3CVSS7.2AI score0.02155EPSS

Exploits1

Prion•added 2014/03/16 2:6 p.m.•11 views

Code injection

The random-number generator on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 does not have sufficient entropy, which makes it easier for remote attackers to defeat cryptographic protection mechanisms and hijack sessions via unspecified vectors...

8.3CVSS7AI score0.02744EPSS

Exploits0References3Affected Software1

Cvelist•added 2014/03/16 10:0 a.m.•18 views

CVE-2014-2251

6.5AI score0.02744EPSS

Exploits0References3

NVD•added 2014/03/14 3:55 p.m.•17 views

CVE-2014-0017

The RANDbytes function in libssh before 0.6.3, when forking is enabled, does not properly reset the state of the OpenSSL pseudo-random number generator PRNG, which causes the state to be shared between children processes and allows local users to obtain sensitive information by leveraging a pid...

1.9CVSS8AI score0.00356EPSS

Exploits1References8

Debian CVE•added 2014/03/14 3:0 p.m.•30 views

CVE-2014-0017

1.9CVSS6.1AI score0.00356EPSS

Exploits1

OpenVAS•added 2014/02/20 12:0 a.m.•45 views

Ubuntu Update for linux-ti-omap4 USN-2110-1

Check for the Version of linux-ti-omap4 OpenVAS Vulnerability Test $Id: gbubuntuUSN21101.nasl 7957 2017-12-01 06:40:08Z santu $ Ubuntu Update for linux-ti-omap4 USN-2110-1 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is...

7.2CVSS0.2AI score0.03181EPSS

Exploits4References2

Tenable Nessus•added 2014/02/19 12:0 a.m.•291 views

Ubuntu 12.04 LTS : linux vulnerabilities (USN-2109-1)

Vasily Kulikov reported a flaw in the Linux kernel's implementation of ptrace. An unprivileged local user could exploit this flaw to obtain sensitive information from kernel memory. CVE-2013-2929 Stephan Mueller reported an error in the Linux kernel's ansi cprng random number generator. This flaw...

7.2CVSS6.9AI score0.03181EPSS

Exploits4References17

Ubuntu•added 2014/02/18 10:19 p.m.•80 views

USN-2110-1: Linux kernel (OMAP4) vulnerabilities

7.2CVSS7.1AI score0.09408EPSS

Exploits5

Ubuntu•added 2014/02/18 10:12 p.m.•81 views

USN-2109-1: Linux kernel vulnerabilities

7.2CVSS7.1AI score0.09408EPSS

Exploits5

OpenVAS•added 2014/02/17 12:0 a.m.•18 views

Siemens Scalance X-200 Series Switches Insufficient Entropy Vulnerability

Siemens Scalance X-200 Series switches are prone to a vulnerability in the entropy of random number generator. Copyright C 2014 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier...

8.3CVSS6.6AI score0.02988EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by