CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9341 matches found

OpenVAS•added 2016/02/17 12:0 a.m.•43 views

Amazon Linux: Security Advisory (ALAS-2016-653)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.3AI score0.89557EPSS

Exploits17References2

OpenVAS•added 2016/02/11 12:0 a.m.•34 views

Amazon Linux: Security Advisory (ALAS-2016-652)

7.3CVSS6.9AI score0.09327EPSS

Exploits0References2

OpenVAS•added 2016/02/11 12:0 a.m.•16 views

Amazon Linux: Security Advisory (ALAS-2016-650)

9.8CVSS6.7AI score0.02725EPSS

Exploits0References2

OpenVAS•added 2016/02/11 12:0 a.m.•16 views

Amazon Linux: Security Advisory (ALAS-2016-646)

9.8CVSS9.6AI score0.02191EPSS

Exploits0References2

OpenVAS•added 2016/02/11 12:0 a.m.•44 views

Amazon Linux: Security Advisory (ALAS-2016-648)

7CVSS7.6AI score0.006EPSS

Exploits0References2

OpenVAS•added 2016/02/11 12:0 a.m.•47 views

Amazon Linux: Security Advisory (ALAS-2016-649)

7.7CVSS7.2AI score0.17245EPSS

Exploits3References2

OpenVAS•added 2016/02/11 12:0 a.m.•28 views

Amazon Linux: Security Advisory (ALAS-2016-644)

5.3CVSS5.7AI score0.07054EPSS

Exploits1References2

OpenVAS•added 2016/02/11 12:0 a.m.•35 views

Amazon Linux: Security Advisory (ALAS-2016-643)

10CVSS6.7AI score0.14714EPSS

Exploits0References2

OpenVAS•added 2016/02/11 12:0 a.m.•27 views

Amazon Linux: Security Advisory (ALAS-2016-651)

5.9CVSS6.9AI score0.0288EPSS

Exploits0References2

OpenVAS•added 2016/02/11 12:0 a.m.•51 views

Amazon Linux: Security Advisory (ALAS-2016-645)

5.9CVSS6.9AI score0.0288EPSS

Exploits0References2

OpenVAS•added 2016/02/11 12:0 a.m.•32 views

Amazon Linux: Security Advisory (ALAS-2016-647)

10CVSS6.7AI score0.14714EPSS

Exploits0References2

Tenable Nessus•added 2016/02/10 12:0 a.m.•28 views

Amazon Linux AMI : python-rsa (ALAS-2016-644)

It was found that python-rsa is vulnerable to Bleichenbacher'06 attack, allowing attacker to fake signatures for any public key with low exponent. CVE-2016-1494 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Amazon Linux AMI Security...

5.3CVSS6.2AI score0.07054EPSS

Exploits1References2

Tenable Nessus•added 2016/02/10 12:0 a.m.•18 views

Amazon Linux AMI : pngcrush (ALAS-2016-646)

A double-free bug was discovered in pngcrush's handling of the sPLT chunk. A malicious PNG could crash the pngcrush process. CVE-2015-7700 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Amazon Linux AMI Security Advisory ALAS-2016-646...

9.8CVSS8.3AI score0.02191EPSS

Exploits0References2

Tenable Nessus•added 2016/02/10 12:0 a.m.•18 views

Amazon Linux AMI : mod24_nss (ALAS-2016-650)

It was found that the parsing of the NSSCipherSuite option of mod24nss, which accepts OpenSSL-style cipherstrings, is flawed. If the option is used to disable insecure ciphersuites using the common '!' syntax, it will actually enable those insecure ciphersuites. CVE-2015-5244 C Tenable Network...

9.8CVSS8.2AI score0.02725EPSS

Exploits0References2

Tenable Nessus•added 2016/02/10 12:0 a.m.•260 views

Amazon Linux AMI : ntp (ALAS-2016-649)

It was discovered that ntpd as a client did not correctly check the originate timestamp in received packets. A remote attacker could use this flaw to send a crafted packet to an ntpd client that would effectively disable synchronization with the server, or push arbitrary offset/delay measurements...

7.7CVSS7.2AI score0.17245EPSS

Exploits3References8

Tenable Nessus•added 2016/02/10 12:0 a.m.•33 views

Amazon Linux AMI : curl (ALAS-2016-652)

The ConnectionExists function in lib/url.c in libcurl before 7.47.0 does not properly re-use NTLM-authenticated proxy connections, which might allow remote attackers to authenticate as other users via a request, a similar issue to CVE-2014-0015 . CVE-2016-0755 C Tenable Network Security, Inc. The...

7.3CVSS6.5AI score0.09327EPSS

Exploits0References2

Tenable Nessus•added 2016/02/10 12:0 a.m.•209 views

Amazon Linux AMI : gnutls (ALAS-2016-651) (SLOTH)

A flaw was found in the way TLS 1.2 could use the MD5 hash function for signing ServerKeyExchange and Client Authentication packets during a TLS handshake. A man-in-the-middle attacker able to force a TLS connection to use the MD5 hash function could use this flaw to conduct collision attacks to...

5.9CVSS7.4AI score0.0288EPSS

Exploits0References2

Tenable Nessus•added 2016/02/10 12:0 a.m.•227 views

Amazon Linux AMI : nss (ALAS-2016-645) (SLOTH)

5.9CVSS7.4AI score0.0288EPSS

Exploits0References2

OpenVAS•added 2016/01/20 12:0 a.m.•39 views

Amazon Linux: Security Advisory (ALAS-2016-638)

8.1CVSS7.2AI score0.63468EPSS

Exploits3References2

OpenVAS•added 2016/01/20 12:0 a.m.•33 views

Amazon Linux: Security Advisory (ALAS-2016-642)