Lucene search
K

33 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 8 : openssl-1.1.1k-9.el8 (AXSA:2023-5236:03)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5236:03 advisory. openssl: X.400 address type confusion in X.509 GeneralName CVE-2023-0286 openssl: timing attack in RSA Decryption implementation CVE-2022-4304...

7.5CVSS7.4AI score0.59501EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.8 views

MiracleLinux 9 : openssl-3.0.1-47.el9 (AXSA:2023-5192:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5192:01 advisory. openssl: read buffer overflow in X.509 certificate verification CVE-2022-4203 openssl: timing attack in RSA Decryption implementation CVE-2022-4304...

7.5CVSS7.7AI score0.59501EPSS
Exploits0References9
Rockylinux
Rockylinux
added 2025/10/04 12:11 a.m.7 views

compat-openssl11 security update

An update is available for compat-openssl11. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The OpenSSL toolkit provides support for secure communications betwe...

7.4CVSS7.2AI score0.59501EPSS
Exploits0
OSV
OSV
added 2025/07/29 1:38 p.m.6 views

RLSA-2025:7895 Important: compat-openssl10 security update

The OpenSSL toolkit provides support for secure communications between machines. This version of OpenSSL package contains only the libraries and is provided for compatibility with previous releases and software that does not support compilation with OpenSSL-1.1. Security Fixes: openssl: X.400...

7.4CVSS8.3AI score0.59501EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/05/27 12:0 a.m.15 views

RHEL 8 : compat-openssl10 (RHSA-2025:7895)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:7895 advisory. The OpenSSL toolkit provides support for secure communications between machines. This version of OpenSSL package contains only the libraries and is...

7.4CVSS7.8AI score0.59501EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/05/19 8:51 a.m.22 views

Important: Red Hat Security Advisory: compat-openssl11 security update

An update for compat-openssl11 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabili...

7.4CVSS7.1AI score0.59501EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/05/19 6:21 a.m.5 views

openssl: X.400 address type confusion in X.509 GeneralName

A type confusion vulnerability was found in OpenSSL when OpenSSL X.400 addresses processing inside an X.509 GeneralName. When CRL checking is enabled for example, the application sets the X509VFLAGCRLCHECK flag, this vulnerability may allow an attacker to pass arbitrary pointers to a memcmp call,...

7.4CVSS6.9AI score0.59501EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/09/05 12:0 a.m.117 views

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-6.5.6.6)

The version of AOS installed on the remote host is prior to 6.5.6.6. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-6.5.6.6 advisory. - ASN.1 strings are represented internally within OpenSSL as an ASN1STRING structure which contains a buffer holding the stri...

8.6CVSS7.7AI score0.70561EPSS
Exploits5References8
RedHat Linux
RedHat Linux
added 2024/08/08 2:33 p.m.33 views

Important: Red Hat Security Advisory: openssl security update

An update for openssl is now available for Red Hat Enterprise Linux 7.7 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.4CVSS7.1AI score0.59501EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/06/05 4:29 p.m.7 views

openssl: X.400 address type confusion in X.509 GeneralName

A type confusion vulnerability was found in OpenSSL when OpenSSL X.400 addresses processing inside an X.509 GeneralName. When CRL checking is enabled for example, the application sets the X509VFLAGCRLCHECK flag, this vulnerability may allow an attacker to pass arbitrary pointers to a memcmp call,...

7.4CVSS6.8AI score0.59501EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/04/26 8:10 a.m.40 views

Important: Red Hat Security Advisory: edk2 security update

An update for edk2 is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...

7.4CVSS7.1AI score0.59501EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/03/23 11:14 a.m.49 views

Important: Red Hat Security Advisory: openssl security update

An update for openssl is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.4CVSS7.1AI score0.59501EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/03/23 11:10 a.m.98 views

Important: Red Hat Security Advisory: openssl security update

An update for openssl is now available for Red Hat Enterprise Linux 6 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available fo...

7.4CVSS7.1AI score0.59501EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/03/23 10:57 a.m.84 views

Important: Red Hat Security Advisory: openssl security update

An update for openssl is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.4CVSS7.1AI score0.59501EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2023/03/22 12:0 a.m.42 views

openssl security update

1:1.0.2k-26 - Fixes CVE-2023-0286 X.400 address type confusion in X.509 GeneralName - Resolves: rhbz2176790...

7.4CVSS8AI score0.59501EPSS
Exploits0
Oracle linux
Oracle linux
added 2023/03/22 12:0 a.m.413 views

openssl security update

1.0.2k-26fips - Change Epoch from 1 to 10 - Fix DH self-test to add shared secret comparison Orabug: 32467026 - Add DH support changes for SP 800-56A rev3 requirements Orabug: 32467059 - Add TLS KDF self-test Orabug: 32467193 - Add EC keys pairwise consistency test Orabug: 32467059 1:1.0.2k-26 -...

7.4CVSS8AI score0.59501EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2023/03/14 1:57 p.m.68 views

Important: Red Hat Security Advisory: openssl security and bug fix update

An update for openssl is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.5CVSS7.2AI score0.59501EPSS
Exploits0References20
OSV
OSV
added 2023/03/09 10:13 a.m.13 views

SUSE-SU-2023:0684-1 Security update for openssl

This update for openssl fixes the following issues: - CVE-2023-0286: Fixed X.400 address type confusion in X.509 GeneralNameFixed bsc1207533. - CVE-2023-0215: Fixed a use-after-free following BIOnewNDEF bsc1207536. - CVE-2022-4304: Fixed a timing oracle in RSA decryption bsc1207534. The following...

7.5CVSS6.9AI score0.59501EPSS
Exploits0References9
OSV
OSV
added 2023/02/23 9:0 a.m.7 views

SUSE-SU-2023:0482-1 Security update for openssl-1_1-livepatches

This update for openssl-11-livepatches fixes the following issues: - CVE-2023-0286: Fixed X.400 address type confusion in X.509 GeneralName via livepatch bsc1207533...

7.4CVSS7.7AI score0.59501EPSS
Exploits0References3
FreeBSD
FreeBSD
added 2023/02/16 12:0 a.m.46 views

FreeBSD -- Multiple vulnerabilities in OpenSSL

Problem Description: X.400 address type confusion in X.509 GeneralName CVE-2023-0286 There is a type confusion vulnerability relating to X.400 address processing inside an X.509 GeneralName. X.400 addresses were parsed as an ASN1STRING but the public structure definition for GENERALNAME incorrect...

7.5CVSS7AI score0.59501EPSS
Exploits0
Rows per page
Query Builder