Lucene search
K

33 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.8 views

MiracleLinux 4 : stunnel-4.29-3.AXS4 (AXSA:2013-374:01)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2013-374:01 advisory. Stunnel is a socket wrapper which can provide SSL Secure Sockets Layer support to ordinary applications. For example, it can be used in conjunction with imapd...

6.6CVSS8.5AI score0.02932EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2008-2415

Malware in sbrugna...

6.8CVSS6AI score0.01364EPSS
Exploits0References14
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2015-3682

Malware in sbrugna...

5.8CVSS6.1AI score0.02136EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-0117

Malware in sbrugna...

4.3CVSS8.9AI score0.02155EPSS
Exploits1References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2002-1545

Malware in sbrugna...

1.2CVSS6.1AI score0.00337EPSS
Exploits0References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-2395

Malware in sbrugna...

7.2CVSS6.4AI score0.00346EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2021-7669

Malicious code in bioql PyPI...

7.5CVSS7.4AI score0.01179EPSS
Exploits0References9
Redos
Redos
added 2025/08/13 12:0 a.m.7 views

ROS-20250813-06

A vulnerability in a software wrapper that allows arbitrary traffic to be hidden in an encrypted ssl tunnel Stunnel is related to incorrect client certificate validation when using the parameters redirection and VerifyChain parameters. Exploitation of the vulnerability could allow an attacker...

7.5CVSS7.3AI score0.01179EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.3 views

TencentOS Server 3: stunnel (TSSA-2022:0220)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2022:0220 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

7.5CVSS7.1AI score0.01179EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.5 views

Alibaba Cloud Linux 3 : 0011: stunnel (ALINUX3-SA-2021:0011)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2021:0011 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2021-20230: A flaw was found in stunnel before...

7.5CVSS7.1AI score0.01179EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 6:8 a.m.4 views

SUSE CVE-2008-2420

The OCSP functionality in stunnel before 4.24 does not properly search certificate revocation lists CRL, which allows remote attackers to bypass intended access restrictions by using revoked certificates...

6.8CVSS7AI score0.01364EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:18 a.m.2 views

SUSE CVE-2015-3644

Stunnel 5.00 through 5.13, when using the redirect option, does not redirect client connections to the expected server after the initial connection, which allows remote attackers to bypass authentication...

5.8CVSS7AI score0.02136EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2022/01/19 8:0 a.m.4 views

A flaw was found in stunnel before 5.57 where it improperly validates client certificates when it is configured to use both redirect and verifyChain options. This flaw allows an attacker with a certificate signed by a Certificate Authority which is not the one accepted by the stunnel server to access the tunneled service instead of being redirected to the address specified in the redirect option. The highest threat from this vulnerability is to confidentiality.

...

7.5CVSS7AI score0.01179EPSS
Exploits0
OSV
OSV
added 2021/02/23 5:15 p.m.5 views

AZL-7375 CVE-2021-20230 affecting package stunnel for versions less than 5.70-1

A flaw was found in stunnel before 5.57, where it improperly validates client certificates when it is configured to use both redirect and verifyChain options. This flaw allows an attacker with a certificate signed by a Certificate Authority, which is not the one accepted by the stunnel server, to...

7.5CVSS7.1AI score0.01179EPSS
Exploits0References1
OSV
OSV
added 2021/02/23 5:15 p.m.2 views

UBUNTU-CVE-2021-20230

A flaw was found in stunnel before 5.57, where it improperly validates client certificates when it is configured to use both redirect and verifyChain options. This flaw allows an attacker with a certificate signed by a Certificate Authority, which is not the one accepted by the stunnel server, to...

7.5CVSS5.8AI score0.01179EPSS
Exploits0References6
OSV
OSV
added 2015/05/14 12:59 a.m.3 views

CVE-2015-3644

Stunnel 5.00 through 5.13, when using the redirect option, does not redirect client connections to the expected server after the initial connection, which allows remote attackers to bypass authentication...

5.8CVSS6.5AI score0.02136EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.7 views

The vulnerability of the Gentoo Linux operating system allows a malicious intruder to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the stunnel package up to version 4.24 in the Gentoo Linux operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. This vulnerability can be exploited remotely...

6.8CVSS5.4AI score0.01364EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.6 views

The vulnerability of the Gentoo Linux operating system allows a malicious intruder to compromise the confidentiality of protected information.

The vulnerability of the stunnel package up to version 5.02 of the Gentoo Linux operating system can lead to a violation of the confidentiality of protected information. This vulnerability can be exploited remotely...

4.3CVSS7.6AI score0.02155EPSS
Exploits1References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.6 views

The vulnerability of the Gentoo Linux operating system allows a malicious intruder to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the stunnel package up to version 4.44 of the Gentoo Linux operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. This vulnerability can be exploited remotely...

9.3CVSS7.6AI score0.05711EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.7 views

The vulnerability of the CentOS operating system allows a malicious attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the stunnel-4.29 package for the CentOS operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. Exploitation of this vulnerability can be carried out remotely...

6.6CVSS7.6AI score0.02932EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder