Lucene search
+L

12 matches found

osv
osv
added 2026/06/04 4:30 p.m.8 views

MINI-RH2M-43MP-5VMP

Bulletin has no description...

9.1CVSS5.7AI score0.00466EPSS
Exploits0
osv
osv
added 2026/05/10 2:35 p.m.5 views

MINI-M389-4C4H-2M55

Bulletin has no description...

7.5CVSS5.7AI score0.00813EPSS
Exploits0
osv
osv
added 2025/02/11 4:9 p.m.4 views

USN-7264-1 openssl vulnerabilities

It was discovered that OpenSSL clients incorrectly handled authenticating servers using RFC7250 Raw Public Keys. In certain cases, the connection will not abort as expected, possibly causing the communication to be intercepted. CVE-2024-12797 George Pantelakis and Alicja Kario discovered that...

6.3CVSS7AI score0.05966EPSS
Exploits0References4
osv
osv
added 2024/11/29 11:56 a.m.4 views

OESA-2024-2480 openssl security update

OpenSSL is a robust, commercial-grade, and full-featured toolkit for the Transport Layer Security TLS and Secure Sockets Layer SSL protocols. Security Fixes: Issue summary: Use of the low-level GF2^m elliptic curve APIs with untrusted explicit values for the field polynomial can lead to...

4.3CVSS7.4AI score0.05966EPSS
Exploits0References2
bdu_fstec
bdu_fstec
added 2024/10/30 12:0 a.m.6 views

Vulnerability of the functions EC_GROUP_new_curve_GF2m(), EC_GROUP_new_from_params(), and BN_GF2m_*() in the Elliptic Curve API of the OpenSSL cryptographic library, which allows a hacker to execute arbitrary code.

The vulnerabilities of the functions ECGROUPnewcurveGF2m, ECGROUPnewfromparams, and BNGF2m in the Elliptic Curve API of the OpenSSL cryptographic library are exploited due to a buffer overflow in the queue. Exploiting these vulnerabilities could allow a remote attacker to execute arbitrary code...

7.5CVSS7.7AI score0.05966EPSS
Exploits0References11Affected Software5
redhat
redhat
added 2024/07/25 7:26 p.m.6 views

org.bouncycastle: Importing an EC certificate with crafted F2m parameters may lead to Denial of Service

A vulnerability was found in Bouncy Castle. An issue was discovered in ECCurve.java and ECCurve.cs in Bouncy Castle Java BC Java. Importing an EC certificate with crafted F2m parameters can lead to excessive CPU consumption during the evaluation of the curve parameters...

7.5CVSS7.3AI score0.011EPSS
Exploits0References4
susecve
susecve
added 2024/05/16 2:21 a.m.5 views

SUSE CVE-2024-29857

An issue was discovered in ECCurve.java and ECCurve.cs in Bouncy Castle Java BC Java before 1.78, BC Java LTS before 2.73.6, BC-FJA before 1.0.2.5, and BC C .Net before 2.3.1. Importing an EC certificate with crafted F2m parameters can lead to excessive CPU consumption during the evaluation of th...

5.8CVSS7AI score0.011EPSS
Exploits0References3
susecve
susecve
added 2023/12/20 2:6 a.m.3 views

SUSE CVE-2023-50980

gf2n.cpp in Crypto++ aka cryptopp through 8.9.0 allows attackers to cause a denial of service application crash via DER public-key data for an F2^m curve, if the degree of each term in the polynomial is not strictly decreasing...

5.3CVSS6.8AI score0.00829EPSS
Exploits1References5
osv
osv
added 2023/12/18 4:15 a.m.2 views

DEBIAN-CVE-2023-50980

gf2n.cpp in Crypto++ aka cryptopp through 8.9.0 allows attackers to cause a denial of service application crash via DER public-key data for an F2^m curve, if the degree of each term in the polynomial is not strictly decreasing...

7.5CVSS7.2AI score0.00829EPSS
Exploits1References1
ptsecurity
ptsecurity
added 2023/08/03 12:0 a.m.4 views

PT-2023-26580 · Omron · Cj2H Cpu Unit +2

Name of the Vulnerable Software and Affected Versions: CJ2M CPU Unit versions 2.18 and earlier CJ2H CPU Unit versions 3.04 and earlier CS/CJ Series EtherNet/IP Unit CS1W-EIP21 versions 3.04 and earlier CS/CJ Series EtherNet/IP Unit CJ1W-EIP21 versions 3.04 and earlier Description: A...

7.5CVSS7.1AI score0.00653EPSS
Exploits0References6
attackerkb
attackerkb
added 2022/04/12 9:15 a.m.6 views

CVE-2022-25753

A vulnerability has been identified in SCALANCE X302-7 EEC 230V, SCALANCE X302-7 EEC 230V, coated, SCALANCE X302-7 EEC 24V, SCALANCE X302-7 EEC 24V, coated, SCALANCE X302-7 EEC 2x 230V, SCALANCE X302-7 EEC 2x 230V, coated, SCALANCE X302-7 EEC 2x 24V, SCALANCE X302-7 EEC 2x 24V, coated, SCALANCE...

8.8CVSS7.8AI score0.01598EPSS
Exploits0References2
bdu_fstec
bdu_fstec
added 2018/01/25 12:0 a.m.11 views

The vulnerability of the development environment for CX-Programmers and microprogramming software of PLC Omron CJ2M and Omron CJ2H, related to the transmission of passwords in an open manner, allows attackers to intercept the passwords.

The vulnerability of the development environment CX-Programmer, which is part of the CX-One software suite designed for programming and configuring Omron PLCs, as well as Omron microcontrollers like CJ2M and CJ2H, stems from the transmission of passwords in an open manner. Exploiting this...

5CVSS7.2AI score0.01162EPSS
Exploits1References2Affected Software3
Rows per page
Query Builder