Lucene search
K

96 matches found

Debian
Debian
added 2026/06/16 5:9 p.m.7 views

[SECURITY] [DLA 4631-1] asterisk security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-4631-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz June 16, 2026 https://wiki.debian.org/LTS -...

9.8CVSS5.6AI score0.01927EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2026/06/16 12:0 a.m.7 views

Alibaba Cloud Linux 3 : 0152: samba (ALINUX3-SA-2026:0152)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2026:0152 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2026-3012: A flaw was found in Sambas...

9.8CVSS6.4AI score0.12797EPSS
Exploits7References4
Positive Technologies
Positive Technologies
added 2026/06/10 12:0 a.m.11 views

PT-2026-48428

Improper comparison with the certificates trusted list in S2OPC allows an attacker well-formed untrusted certificate to be considered trusted...

7.3CVSS5.4AI score0.00119EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/06/10 12:0 a.m.14 views

S2OPC OPC UA Toolkit 信任管理问题漏洞

S2OPC OPC UA Toolkit is an open-source development toolkit for OPC UA communication, developed by Systerel. The S2OPC OPC UA Toolkit has a trust management vulnerability, which stems from improper comparison with a list of trusted certificates. This vulnerability may cause well-formatted, untrust...

7.3CVSS5.2AI score0.00119EPSS
Exploits0References2
OSV
OSV
added 2026/06/05 5:44 a.m.9 views

BIT-GOLANG-2026-27145 Inefficient candidate hostname parsing in crypto/x509

x509.Certificate.VerifyHostname previously called matchHostnames in a loop over all DNS Subject Alternative Name SAN entries. This caused strings.Splithost, "." to execute repeatedly on the same input hostname. With a large DNS SAN list, verification costs scaled quadratically based on the number...

7.5CVSS5.6AI score0.00904EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2026/06/04 2:27 a.m.10 views

SUSE CVE-2026-27145

x509.Certificate.VerifyHostname previously called matchHostnames in a loop over all DNS Subject Alternative Name SAN entries. This caused strings.Splithost, "." to execute repeatedly on the same input hostname. With a large DNS SAN list, verification costs scaled quadratically based on the number...

3.3CVSS5.9AI score0.00904EPSS
Exploits0References8
EUVD
EUVD
added 2026/06/03 12:30 a.m.13 views

EUVD-2026-34038

x509.Certificate.VerifyHostname previously called matchHostnames in a loop over all DNS Subject Alternative Name SAN entries. This caused strings.Splithost, "." to execute repeatedly on the same input hostname. With a large DNS SAN list, verification costs scaled quadratically based on the number...

5.9AI score0.00904EPSS
Exploits0References5
OSV
OSV
added 2026/06/02 11:16 p.m.7 views

DEBIAN-CVE-2026-27145

x509.Certificate.VerifyHostname previously called matchHostnames in a loop over all DNS Subject Alternative Name SAN entries. This caused strings.Splithost, "." to execute repeatedly on the same input hostname. With a large DNS SAN list, verification costs scaled quadratically based on the number...

6.5CVSS5.9AI score0.00904EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/06/02 10:1 p.m.14 views

CVE-2026-27145

x509.Certificate.VerifyHostname previously called matchHostnames in a loop over all DNS Subject Alternative Name SAN entries. This caused strings.Splithost, "." to execute repeatedly on the same input hostname. With a large DNS SAN list, verification costs scaled quadratically based on the number...

7.5CVSS5.9AI score0.00904EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/06/02 10:1 p.m.5 views

CVE-2026-27145

x509.Certificate.VerifyHostname previously called matchHostnames in a loop over all DNS Subject Alternative Name SAN entries. This caused strings.Splithost, "." to execute repeatedly on the same input hostname. With a large DNS SAN list, verification costs scaled quadratically based on the number...

7.5CVSS5.8AI score0.00904EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/06/02 10:1 p.m.7 views

CVE-2026-27145

x509.Certificate.VerifyHostname previously called matchHostnames in a loop over all DNS Subject Alternative Name SAN entries. This caused strings.Splithost, "." to execute repeatedly on the same input hostname. With a large DNS SAN list, verification costs scaled quadratically based on the number...

5.9AI score0.00904EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2026/06/02 10:1 p.m.93 views

CVE-2026-27145

CVE-2026-27145 is reported in IBM Operator for PostgreSQL security bulletin for versions v28.3.0–v28.3.1. Description: the function (*x509.Certificate).VerifyHostname previously called matchHostnames in a loop over all DNS SAN entries, causing repeated string splits on the same hostname and quadr...

7.5CVSS5.9AI score0.00904EPSS
Exploits0References10
Cvelist
Cvelist
added 2026/06/02 10:1 p.m.31 views

CVE-2026-27145 Inefficient candidate hostname parsing in crypto/x509

x509.Certificate.VerifyHostname previously called matchHostnames in a loop over all DNS Subject Alternative Name SAN entries. This caused strings.Splithost, "." to execute repeatedly on the same input hostname. With a large DNS SAN list, verification costs scaled quadratically based on the number...

0.00904EPSS
Exploits0References4
OSV
OSV
added 2026/06/02 9:39 p.m.10 views

GO-2026-5037 Inefficient candidate hostname parsing in crypto/x509

x509.Certificate.VerifyHostname previously called matchHostnames in a loop over all DNS Subject Alternative Name SAN entries. This caused strings.Splithost, "." to execute repeatedly on the same input hostname. With a large DNS SAN list, verification costs scaled quadratically based on the number...

7.5CVSS5.9AI score0.00904EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/02 12:0 a.m.9 views

PT-2026-45873

Name of the Vulnerable Software and Affected Versions Go versions prior to 1.25-1.25.11-1.1 Go versions prior to 1.26-1.26.4-1.1 Description Inefficient candidate hostname parsing occurs in the crypto/x509 package. The x509.Certificate.VerifyHostname function previously called matchHostnames in a...

9.8CVSS5.6AI score0.00904EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/25 12:0 a.m.13 views

PT-2026-43045

Name of the Vulnerable Software and Affected Versions Szafir SDK versions prior to 463 Description The software returns a success status code from the cryptographic digital signature verification process when the trust status of the signer's certificate cannot be established. Specifically, the pa...

9.3CVSS5.9AI score0.00307EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/05/22 5:7 p.m.19 views

CVE-2026-32253 Sunshine: Authentication bypass via improper client certificate validation

Sunshine is a self-hosted game stream host for Moonlight. In versions prior to 2026.516.143833, the client-certificate authentication can be bypassed because of how OpenSSL verification results are handled. In src/crypto.cpp, the custom verify callback treats X509VERRUNABLETOGETISSUERCERTLOCALLY,...

9.8CVSS0.00291EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/05/22 12:0 a.m.16 views

Sunshine 信任管理问题漏洞

Sunshine is an Open Source Moonlight-based autonomous gaming streaming host developed by LizardByte. Earlier versions of Sunshine, such as 2026.516.143833, had vulnerabilities related to trust management. These vulnerabilities stemmed from improper handling of OpenSSL verification results. Custom...

9.8CVSS5.8AI score0.00291EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/05/22 12:0 a.m.22 views

PT-2026-42801

Sunshine is a self-hosted game stream host for Moonlight. In versions prior to 2026.516.143833, the client-certificate authentication can be bypassed because of how OpenSSL verification results are handled. In src/crypto.cpp, the custom verify callback treats X509 V ERR UNABLE TO GET ISSUER CERT...

9.8CVSS5.7AI score0.00291EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2026/05/14 5:16 p.m.7 views

CVE-2026-44312

cssparser is a Ruby CSS parser. Prior to 2.1.0 and 1.22.0, the CSS Parser gem does not validate HTTPS connections, allowing a Man-in-the-Middle MITM attacker to inject or modify CSS content when stylesheets are loaded via HTTPS. The connection is established with OpenSSL::SSL::VERIFYNONE, meaning...

5.8CVSS5.8AI score0.00146EPSS
Exploits0References5
Rows per page
Query Builder