Lucene search
K

83 matches found

Vulnrichment
Vulnrichment
added 2015/07/02 9:16 p.m.5 views

CVE-2015-1916

Unspecified vulnerability in IBM Java 8 before SR1 allows remote attackers to cause a denial of service via unknown vectors related to SSL/TLS and the Secure Socket Extension provider...

6.1AI score0.02696EPSS
Exploits0References3
Cvelist
Cvelist
added 2015/07/02 9:16 p.m.28 views

CVE-2015-1916

Unspecified vulnerability in IBM Java 8 before SR1 allows remote attackers to cause a denial of service via unknown vectors related to SSL/TLS and the Secure Socket Extension provider...

6AI score0.02696EPSS
Exploits0References3
CVE
CVE
added 2015/07/02 9:16 p.m.77 views

CVE-2015-1916

CVE-2015-1916 is an IBM Java SSL/TLS (JSSE) related denial-of-service vulnerability. IBM advisories (e.g., IBMs 734104A523B… and related security bulletins) indicate affected IBM Java SDK/JRE versions used in IBM SAN Volume Controller and Storwize family products. The vulnerability allows a remot...

7.5CVSS3.8AI score0.02696EPSS
Exploits0References3Affected Software1
RedHat Linux
RedHat Linux
added 2015/04/20 2:27 p.m.4 views

OpenJDK: certificate options parsing uncaught exception (JSSE, 8068720)

A flaw was found in the way the JSSE component in OpenJDK parsed X.509 certificate options. A specially crafted certificate could cause JSSE to raise an exception, possibly causing an application using JSSE to exit unexpectedly...

5CVSS6.6AI score0.04204EPSS
Exploits0References5
CNVD
CNVD
added 2015/04/19 12:0 a.m.3 views

Oracle Java SE and Jrockit JSSE Subcomponent Denial of Service Vulnerability

Oracle Java SE is used to develop and deploy Java applications for desktops, servers, and embedded devices and real-time environments.JRockit is a Java virtual machine built into Oracle Fusion Middleware. A security vulnerability exists in the JSSE subcomponent of Oracle Java SE and Jrockit, whic...

5CVSS6.7AI score0.04204EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2015/01/22 12:0 a.m.294 views

Oracle Java SE 7 < Update 77 Multiple Vulnerabilities

Binary data 8749.prm...

10CVSS6.2AI score0.07224EPSS
Exploits0References17
RedHat Linux
RedHat Linux
added 2015/01/20 10:38 p.m.6 views

OpenJDK: incorrect tracking of ChangeCipherSpec during SSL/TLS handshake (JSSE, 8057555)

It was discovered that the SSL/TLS implementation in the JSSE component in OpenJDK failed to properly check whether the ChangeCipherSpec was received during the SSL/TLS connection handshake. An MITM attacker could possibly use this flaw to force a connection to be established without encryption...

4CVSS6.7AI score0.67234EPSS
Exploits5References5
RedHat Linux
RedHat Linux
added 2014/10/14 8:47 p.m.6 views

OpenJDK: Triple Handshake attack against TLS/SSL connections (JSSE, 8037066)

It was discovered that the TLS/SSL implementation in the JSSE component in OpenJDK failed to properly verify the server identity during the renegotiation following session resumption, making it possible for malicious TLS/SSL servers to perform a Triple Handshake attack against clients using JSSE...

4CVSS6.6AI score0.03422EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2013/10/23 4:26 p.m.6 views

OpenJDK: JSSE denial of service (JSSE, 7186286)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, and 1.4.238 and earlier allows remote attackers to affect availability, related to JSSE...

5CVSS7.2AI score0.45113EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2013/02/06 12:0 a.m.46 views

Oracle Java SE Multiple Vulnerabilities -01 Feb 13 (Windows)

This host is installed with Oracle Java SE and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gboraclejavasemultvuln01feb13win.nasl 7699 2017-11-08 12:10:34Z santu $ Oracle Java SE Multiple Vulnerabilities -01 Feb 13 Windows Authors: Arun Kallavi Copyright: Copyright c 2013...

10CVSS0.7AI score0.89987EPSS
Exploits10References2
RedHat Linux
RedHat Linux
added 2012/11/15 9:13 p.m.4 views

OpenJDK: JSSE denial of service (JSSE, 7186286)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, and 1.4.238 and earlier allows remote attackers to affect availability, related to JSSE...

5CVSS7.2AI score0.45113EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2012/10/17 4:5 p.m.3 views

OpenJDK: JSSE denial of service (JSSE, 7186286)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, and 1.4.238 and earlier allows remote attackers to affect availability, related to JSSE...

5CVSS7.2AI score0.45113EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2009/05/05 12:0 a.m.14 views

HP-UX Update for Java VM (J2SE) or Java Secure Socket Extension (JSSE) Software HPSBUX00280

Check for the Version of Java VM J2SE or Java Secure Socket Extension JSSE Software OpenVAS Vulnerability Test HP-UX Update for Java VM J2SE or Java Secure Socket Extension JSSE Software HPSBUX00280 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

0.5AI score
Exploits0References2
OpenVAS
OpenVAS
added 2009/05/05 12:0 a.m.16 views

HP-UX Update for Java VM (J2SE) or Java Secure Socket Extension (JSSE) Software HPSBUX00280

Check for the Version of Java VM J2SE or Java Secure Socket Extension JSSE Software OpenVAS Vulnerability Test HP-UX Update for Java VM J2SE or Java Secure Socket Extension JSSE Software HPSBUX00280 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

0.5AI score
Exploits0References2
RedHat Linux
RedHat Linux
added 2008/03/11 2:9 p.m.9 views

Java Secure Socket Extension Does Not Correctly Process SSL/TLS Handshake Requests Resulting in a Denial of Service (DoS) Condition

The Java Secure Socket Extension JSSE in Sun JDK and JRE 6 Update 1 and earlier, JDK and JRE 5.0 Updates 7 through 11, and SDK and JRE 1.4.211 through 1.4.214, when using JSSE for SSL/TLS support, allows remote attackers to cause a denial of service CPU consumption via certain SSL/TLS handshake...

7.8CVSS5.9AI score0.03822EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2007/12/12 12:27 p.m.4 views

Java Secure Socket Extension Does Not Correctly Process SSL/TLS Handshake Requests Resulting in a Denial of Service (DoS) Condition

The Java Secure Socket Extension JSSE in Sun JDK and JRE 6 Update 1 and earlier, JDK and JRE 5.0 Updates 7 through 11, and SDK and JRE 1.4.211 through 1.4.214, when using JSSE for SSL/TLS support, allows remote attackers to cause a denial of service CPU consumption via certain SSL/TLS handshake...

7.8CVSS5.9AI score0.03822EPSS
Exploits0References4
NVD
NVD
added 2007/07/11 10:30 p.m.21 views

CVE-2007-3698

The Java Secure Socket Extension JSSE in Sun JDK and JRE 6 Update 1 and earlier, JDK and JRE 5.0 Updates 7 through 11, and SDK and JRE 1.4.211 through 1.4.214, when using JSSE for SSL/TLS support, allows remote attackers to cause a denial of service CPU consumption via certain SSL/TLS handshake...

7.8CVSS6.3AI score0.03822EPSS
Exploits0References40
Prion
Prion
added 2007/07/11 10:30 p.m.24 views

Design/Logic Flaw

The Java Secure Socket Extension JSSE in Sun JDK and JRE 6 Update 1 and earlier, JDK and JRE 5.0 Updates 7 through 11, and SDK and JRE 1.4.211 through 1.4.214, when using JSSE for SSL/TLS support, allows remote attackers to cause a denial of service CPU consumption via certain SSL/TLS handshake...

7.8CVSS6.4AI score0.03822EPSS
Exploits0References40Affected Software3
Cvelist
Cvelist
added 2005/08/17 4:0 a.m.22 views

CVE-2004-2393

Java Secure Socket Extension JSSE 1.0.3 through 1.0.32 does not properly validate the certificate chain of a client or server, which allows remote attackers to falsely authenticate peers for SSL/TLS...

6.7AI score0.02057EPSS
Exploits0References8
NVD
NVD
added 2004/12/31 5:0 a.m.23 views

CVE-2004-2393

Java Secure Socket Extension JSSE 1.0.3 through 1.0.32 does not properly validate the certificate chain of a client or server, which allows remote attackers to falsely authenticate peers for SSL/TLS...

7.5CVSS6.7AI score0.02057EPSS
Exploits0References8
Rows per page
Query Builder