Lucene search
K

27 matches found

RedHat Linux
RedHat Linux
added 2026/06/17 4:18 p.m.10 views

eclipse-vertx/vert.x: eclipse-vertx/vert.x: Denial of Service via TLS handshake with wildcard server name

A flaw was found in eclipse-vertx/vert.x. A remote attacker can exploit this vulnerability by performing a Transport Layer Security TLS handshake and presenting a server name extension with a server wildcard name. This can lead to a denial of service DoS condition, impacting the availability of t...

6.9CVSS5.3AI score0.00238EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2026/06/17 3:45 p.m.8 views

eclipse-vertx/vert.x: eclipse-vertx/vert.x: Denial of Service via TLS handshake with wildcard server name

A flaw was found in eclipse-vertx/vert.x. A remote attacker can exploit this vulnerability by performing a Transport Layer Security TLS handshake and presenting a server name extension with a server wildcard name. This can lead to a denial of service DoS condition, impacting the availability of t...

6.9CVSS5.4AI score0.00238EPSS
Exploits1References7
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/29 8:56 a.m.11 views

Security Bulletin: There is a vulnerability in vertx-core-4.5.24.jar used by IBM Maximo Manage application in IBM Maximo Application Suite (CVE-2026-6860)

Summary There is a vulnerability in vertx-core-4.5.24.jar used by IBM Maximo Manage application in IBM Maximo Application Suite. Vulnerability Details CVEID:CVE-2026-6860 DESCRIPTION: A TCP client can perform a TLS handshake and present the server name extension with a server name that is accepte...

6.9CVSS5.8AI score0.00238EPSS
Exploits1Affected Software1
RedhatCVE
RedhatCVE
added 2026/05/12 2:27 a.m.6 views

CVE-2026-6860

A TCP client can perform a TLS handshake and present the server name extension with a server name that is accepted by a server wildcard name, e.g. if the server is configured with a certificate accepting .example.com, any XYZ.example.com where xyz is a valid name can be used...

6.9CVSS5.8AI score0.00238EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/05/06 9:55 a.m.33 views

CVE-2026-6860

A TCP client can perform a TLS handshake and present the server name extension with a server name that is accepted by a server wildcard name, e.g. if the server is configured with a certificate accepting .example.com, any XYZ.example.com where xyz is a valid name can be used...

6.9CVSS0.00238EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/05/06 9:55 a.m.5 views

CVE-2026-6860

A TCP client can perform a TLS handshake and present the server name extension with a server name that is accepted by a server wildcard name, e.g. if the server is configured with a certificate accepting .example.com, any XYZ.example.com where xyz is a valid name can be used...

6.9CVSS5.8AI score0.00238EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/05/06 9:55 a.m.6 views

CVE-2026-6860

A TCP client can perform a TLS handshake and present the server name extension with a server name that is accepted by a server wildcard name, e.g. if the server is configured with a certificate accepting .example.com, any XYZ.example.com where xyz is a valid name can be used...

6.9CVSS5.8AI score0.00238EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2026/05/06 9:55 a.m.28 views

CVE-2026-6860

CVE-2026-6860 describes a TLS SNI handling weakness where a TCP client can present an SNI that matches a server wildcard certificate (e.g., *.example.com) and be accepted by the server, allowing any XYZ.example.com under the wildcard to be used. The CVSS 4.0 vector yields a NETWORK, LOW complexit...

6.9CVSS5.8AI score0.00238EPSS
Exploits1References3Affected Software1
EUVD
EUVD
added 2026/05/06 9:55 a.m.6 views

EUVD-2026-27655

A TCP client can perform a TLS handshake and present the server name extension with a server name that is accepted by a server wildcard name, e.g. if the server is configured with a certificate accepting .example.com, any XYZ.example.com where xyz is a valid name can be used...

6.9CVSS5.8AI score0.00238EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.10 views

PT-2026-37437

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description A TCP client can perform a TLS handshake and present the server name extension with a server name that is accepted by a server wildcard name. For example, if the...

6.9CVSS5.8AI score0.00238EPSS
Exploits1References12
OSV
OSV
added 2026/03/23 1:8 p.m.4 views

USN-8115-1 pyopenssl vulnerabilities

It was discovered that pyOpenSSL incorrectly handled exceptions in the tlsextservername callback. This could result in connections being accepted after an exception, contrary to expectations. CVE-2026-27448 It was discovered that pyOpenSSL incorrectly handled the DTLS cookie generation callback. ...

9.8CVSS6AI score0.00704EPSS
Exploits0References3
F5 Networks
F5 Networks
added 2023/02/21 7:3 p.m.18 views

K8870: OpenSSL Server Name extension Denial of Service VU#661475

Security Advisory Description Note : Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of the F...

6.8AI score
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 6:8 a.m.4 views

SUSE CVE-2008-1948

The gnutlsservernamerecvparams function in lib/extservername.c in libgnutls in gnutls-serv in GnuTLS before 2.2.4 does not properly calculate the number of Server Names in a TLS 1.0 Client Hello message during extension handling, which allows remote attackers to cause a denial of service crash or...

10CVSS8.3AI score0.12018EPSS
Exploits2References5
SUSE CVE
SUSE CVE
added 2023/02/15 5:56 a.m.2 views

SUSE CVE-2010-3864

Multiple race conditions in ssl/t1lib.c in OpenSSL 0.9.8f through 0.9.8o, 1.0.0, and 1.0.0a, when multi-threading and internal caching are enabled on a TLS server, might allow remote attackers to execute arbitrary code via client data that triggers a heap-based buffer overflow, related to 1 the T...

7.6CVSS9.2AI score0.22145EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2021/08/13 12:0 a.m.22 views

OpenSSL: Multiple Vulnerabilities (20080528) - Windows

OpenSSL is prone to multiple vulnerabilities. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

4.3CVSS6.4AI score0.05EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2021/08/13 12:0 a.m.23 views

OpenSSL: Multiple Vulnerabilities (20080528) - Linux

OpenSSL is prone to multiple vulnerabilities. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

4.3CVSS6.4AI score0.05EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2011/12/02 12:0 a.m.19 views

OpenSSL < 0.9.8h Multiple Vulnerabilities

Binary data 801061.prm...

7.5CVSS7.8AI score0.05EPSS
Exploits1References7
OSV
OSV
added 2010/11/17 4:0 p.m.0 views

DEBIAN-CVE-2010-3864

Multiple race conditions in ssl/t1lib.c in OpenSSL 0.9.8f through 0.9.8o, 1.0.0, and 1.0.0a, when multi-threading and internal caching are enabled on a TLS server, might allow remote attackers to execute arbitrary code via client data that triggers a heap-based buffer overflow, related to 1 the T...

7.6CVSS8.5AI score0.22145EPSS
Exploits0References1
Prion
Prion
added 2010/11/17 4:0 p.m.24 views

Race condition

Multiple race conditions in ssl/t1lib.c in OpenSSL 0.9.8f through 0.9.8o, 1.0.0, and 1.0.0a, when multi-threading and internal caching are enabled on a TLS server, might allow remote attackers to execute arbitrary code via client data that triggers a heap-based buffer overflow, related to 1 the T...

7.6CVSS8.1AI score0.22145EPSS
Exploits0References39Affected Software1
RedHat Linux
RedHat Linux
added 2010/11/16 4:17 p.m.4 views

OpenSSL TLS extension parsing race condition

Multiple race conditions in ssl/t1lib.c in OpenSSL 0.9.8f through 0.9.8o, 1.0.0, and 1.0.0a, when multi-threading and internal caching are enabled on a TLS server, might allow remote attackers to execute arbitrary code via client data that triggers a heap-based buffer overflow, related to 1 the T...

7.6CVSS7.5AI score0.22145EPSS
Exploits0References4
Rows per page
Query Builder