Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

RedhatCVE
RedhatCVEadded 2026/05/19 7:7 p.m.8 views

CVE-2026-44662

A flaw was found in rust-openssl. When using AES key-wrap-with-padding ciphers EVPaes128,192,256wrappad with an input that is not a multiple of 8, the output buffers are incorrectly sized. This can lead to attacker-controllable heap corruption, allowing an attacker to write up to 7 bytes past the...

5.1CVSS5.7AI score0.00006EPSS
Exploits0References2
NVD
NVDadded 2026/05/14 9:16 p.m.5 views

CVE-2026-44662

rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.10.0 to before 0.10.79, CipherCtxRef::cipherupdate, CipherCtxRef::cipherupdatevec, and symm::Crypter::update incorrectly sized output buffers when used with AES key-wrap-with-padding ciphers EVPaes128,192,256wrappad...

5.1CVSS0.00006EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/04/24 5:19 p.m.28 views

CVE-2026-41681 rust-openssl: MdCtxRef::digest_final() writes past caller buffer with no length check

rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.10.39 to before 0.10.78, EVPDigestFinal always writes EVPMDCTXsizectx to the out buffer. If out is smaller than that, MdCtxRef::digestfinal writes past its end, usually corrupting the stack. This is reachable from sa...

9.3CVSS0.00062EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2026/01/13 12:0 a.m.2 views

MiracleLinux 9 : keylime-agent-rust-0.2.2-2.el9 (AXSA:2025-10290:01)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2025-10290:01 advisory. rust-openssl: rust openssl ssl::selectnextproto use after free CVE-2025-24898 Tenable has extracted the preceding description block directly from the...

6.3CVSS5.3AI score0.00116EPSS
Exploits0References2
OpenVAS
OpenVASadded 2025/11/28 12:0 a.m.1 views

Ubuntu: Security Advisory (USN-7891-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS6.8AI score0.00236EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2025/10/06 12:0 a.m.3 views

RockyLinux 9 : rust-bootupd (RLSA-2025:7241)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:7241 advisory. rust-openssl: rust openssl ssl::selectnextproto use after free CVE-2025-24898 Tenable has extracted the preceding description block directly from the RockyLinux...

6.3CVSS5.3AI score0.00116EPSS
Exploits0References3
SUSE CVE
SUSE CVEadded 2023/02/15 4:20 a.m.1 views

SUSE CVE-2018-20997

An issue was discovered in the openssl crate before 0.10.9 for Rust. A use-after-free occurs in CMS Signing...

9.8CVSS9.4AI score0.00499EPSS
Exploits0References3
Rows per page
Query Builder