Lucene search
K

17 matches found

Tenable Nessus
Tenable Nessus
added 2024/11/05 12:0 a.m.19 views

RHEL 7 : erlang (RHSA-2018:0242)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:0242 advisory. Erlang is a general-purpose programming language and runtime environment. Erlang has built-in support for concurrency, distribution and fault...

5.9CVSS6.6AI score0.22098EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/04/27 12:0 a.m.23 views

RHEL 7 : erlang (RHSA-2018:0528)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:0528 advisory. Erlang is a general-purpose programming language and runtime environment. Erlang has built-in support for concurrency, distribution and fault...

5.9CVSS6.6AI score0.22098EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2023/09/07 12:0 a.m.34 views

Oracle Linux 7 : nss, / nss-softokn, / nss-util, / and / nspr (ELSA-2019-2237)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-2237 advisory. nspr 4.21.0-1 - Rebase to NSPR 4.21 nss 3.44.0-4 - Fix certutil man page - Fix extracting a public key from a private key for dh, ec, and dsa 3.44.0-3 ...

5.9CVSS6.4AI score0.44398EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.21 views

Debian: Security Advisory (DLA-1207-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.1AI score0.22098EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2020/04/07 11:9 a.m.38 views

CVE-2018-12404

A cached side channel attack during handshakes using RSA encryption could allow for the decryption of encrypted content. This is a variant of the Adaptive Chosen Ciphertext attack AKA Bleichenbacher attack and affects all NSS versions prior to NSS 3.41...

5.9CVSS4.4AI score0.44398EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/03/19 12:0 a.m.64 views

Amazon Linux AMI : nss, nss-softokn, nss-util, nspr (ALAS-2020-1355)

The version of nspr installed on the remote host is prior to 4.21.0-1.43. The version of nss installed on the remote host is prior to 3.44.0-7.84. The version of nss-softokn installed on the remote host is prior to 3.44.0-8.44. The version of nss-util installed on the remote host is prior to...

8.8CVSS7.8AI score0.44398EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2019/11/12 12:0 a.m.48 views

EulerOS 2.0 SP5 : nss (EulerOS-SA-2019-2174)

According to the version of the nss packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - A cached side channel attack during handshakes using RSA encryption could allow for the decryption of encrypted content. This is a variant of the...

5.9CVSS6.6AI score0.44398EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/09/24 12:0 a.m.39 views

EulerOS 2.0 SP5 : nss-softokn (EulerOS-SA-2019-1979)

According to the version of the nss-softokn packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - A cached side channel attack during handshakes using RSA encryption could allow for the decryption of encrypted content. This is a variant of...

5.9CVSS6.6AI score0.44398EPSS
Exploits0References2
OSV
OSV
added 2019/05/02 5:29 p.m.30 views

CVE-2018-12404

A cached side channel attack during handshakes using RSA encryption could allow for the decryption of encrypted content. This is a variant of the Adaptive Chosen Ciphertext attack AKA Bleichenbacher attack and affects all NSS versions prior to NSS 3.41...

5.9CVSS7AI score0.44398EPSS
Exploits0References8
Metasploit
Metasploit
added 2018/02/02 10:29 p.m.36 views

Scanner for Bleichenbacher Oracle in RSA PKCS #1 v1.5

Some TLS implementations handle errors processing RSA key exchanges and encryption PKCS 1 v1.5 messages in a broken way that leads an adaptive chosen-chiphertext attack. Attackers cannot recover a server's private key, but they can decrypt and sign messages with it. A strong oracle occurs when th...

0.3AI score
Exploits0
Mageia
Mageia
added 2018/01/04 4:48 p.m.36 views

Updated erlang packages fix security vulnerabilities

It was discovered that the TLS server in Erlang is vulnerable to an adaptive chosen ciphertext attack against RSA keys CVE-2017-1000385...

5.9CVSS2.9AI score0.22098EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/12/26 12:0 a.m.40 views

Debian DSA-4072-1 : bouncycastle - security update

Hanno Boeck, Juraj Somorovsky and Craig Young discovered that the TLS implementation in Bouncy Castle is vulnerable to an adaptive chosen ciphertext attack against RSA keys. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

7.5CVSS6.8AI score0.24282EPSS
Exploits0References4
Prion
Prion
added 2017/11/17 7:29 p.m.35 views

Code injection

On BIG-IP versions 11.6.0-11.6.2 fixed in 11.6.2 HF1, 12.0.0-12.1.2 HF1 fixed in 12.1.2 HF2, or 13.0.0-13.0.0 HF2 fixed in 13.0.0 HF3 a virtual server configured with a Client SSL profile may be vulnerable to an Adaptive Chosen Ciphertext attack AKA Bleichenbacher attack against RSA, which when...

4.3CVSS7.2AI score0.21552EPSS
Exploits1References5Affected Software9
OpenVAS
OpenVAS
added 2012/04/30 12:0 a.m.41 views

FreeBSD Ports: openssl

The remote host is missing an update to the system as announced in the referenced advisory. VID 60eb344e-6eb1-11e1-8ad7-00e0815b8da8 OpenVAS Vulnerability Test $ Description: Auto generated from VID 60eb344e-6eb1-11e1-8ad7-00e0815b8da8 Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...

5CVSS7.7AI score0.13075EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2012/04/11 12:0 a.m.42 views

SuSE 11.1 Security Update : OpenSSL (SAT Patch Number 6054)

The following security issues have been fixed : - Specially crafted MIME headers could cause openssl's ans1 parser to dereference a NULL pointer leading to a Denial of Service CVE-2006-7250 or fail verfication. CVE-2012-1165 - The implementation of Cryptographic Message Syntax CMS and PKCS 7 in...

5CVSS8AI score0.13075EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2012/03/27 12:0 a.m.37 views

Mandriva Linux Security Advisory : openssl (MDVSA-2012:038)

Multiple vulnerabilities has been found and corrected in openssl : The implementation of Cryptographic Message Syntax CMS and PKCS 7 in OpenSSL before 0.9.8u and 1.x before 1.0.0h does not properly restrict certain oracle behavior, which makes it easier for context-dependent attackers to decrypt...

5CVSS7.9AI score0.13075EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2006/09/12 12:0 a.m.14 views

FreeBSD : gnutls -- Adaptive Chosen Ciphertext Attack (831) (deprecated)

The remote host is missing an update to the system The following package is affected: gnutls-devel This plugin has been deprecated since the advisory has been canceled. %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the VuXML entry has been cancelled. Disabled on 2011/10/02....

0.2AI score
Exploits0
Rows per page
Query Builder