Lucene search
+L

7 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2018/09/14 6:45 p.m.48 views

Security Bulletin: Aspera OnDemand is affected by openSSL vulnerabilities (CVE-2017-3738)

Summary Aspera OnDemand has addressed the following openSSL vulnerabilities. Vulnerability Details CVEID: CVE-2017-3738 DESCRIPTION: OpenSSL could allow a remote attacker to obtain sensitive information, caused by an overflow bug in the AVX2 Montgomery multiplication procedure used in...

5.9CVSS1.7AI score0.83645EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2018/07/03 12:0 a.m.259 views

EulerOS 2.0 SP3 : openssl (EulerOS-SA-2018-1179)

According to the versions of the openssl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - There is a carry propagating bug in the x8664 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms...

6.5CVSS6.9AI score0.78675EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2018/03/30 12:0 a.m.46 views

Debian DSA-4157-1 : openssl - security update

Multiple vulnerabilities have been discovered in OpenSSL, a Secure Sockets Layer toolkit. The Common Vulnerabilities and Exposures project identifies the following issues : - CVE-2017-3738 David Benjamin of Google reported an overflow bug in the AVX2 Montgomery multiplication procedure used in...

6.5CVSS6.2AI score0.19295EPSS
Exploits0References10
OpenVAS
OpenVAS
added 2017/12/17 12:0 a.m.44 views

openSUSE: Security Advisory for openssl (openSUSE-SU-2017:3345-1)

The remote host is missing an update for the Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.2AI score0.83645EPSS
Exploits2References1
OPENSUSE Linux
OPENSUSE Linux
added 2017/12/16 3:7 p.m.111 views

Security update for openssl (important)

This update for openssl fixes the following issues: - OpenSSL Security Advisory 07 Dec 2017 CVE-2017-3737: OpenSSL 1.0.2 starting from version 1.0.2b introduced an "error state" mechanism. The intent was that if a fatal error occurred during a handshake then OpenSSL would move into the error...

5CVSS1.2AI score0.83645EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2017/12/15 12:0 a.m.123 views

OpenSSL 1.1.0 < 1.1.0h Multiple Vulnerabilities

The version of OpenSSL installed on the remote host is prior to 1.1.0h. It is, therefore, affected by multiple vulnerabilities as referenced in the 1.1.0h advisory. - Constructed ASN.1 types with a recursive definition such as can be found in PKCS7 could eventually exceed the stack given maliciou...

6.5CVSS6.7AI score0.19295EPSS
Exploits0References11
OpenVAS
OpenVAS
added 2017/12/08 12:0 a.m.47 views

OpenSSL Overflow Vulnerability (20171207, 20180327) - Windows

OpenSSL is prone to an overflow bug. Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it...

5.9CVSS7AI score0.13411EPSS
Exploits0References3
Rows per page
Query Builder