CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

Veracode•added 2019/01/15 9:4 a.m.•29 views

Weak Cryptographic Protection Mechanisms

OpenSSL has weak cryptographic protection mechanism. The way that the BNsqr function in OpenSSL is implemented is incorrect. It doesn't not calculate the square of a BIGNUM value making it easier for attackers to get past the protection mechanism...

5CVSS5.8AI score0.07282EPSS

Exploits0References43Affected Software1

Veracode•added 2017/02/06 7:21 a.m.•43 views

Weak Cryptographic Protection Mechanisms

5CVSS5.8AI score0.07282EPSS

Exploits0References42Affected Software1

Oracle linux•added 2015/01/20 12:0 a.m.•75 views

openssl security update

1.0.1e-34.7 - fix CVE-2014-3570 - incorrect computation in BNsqr - fix CVE-2014-3571 - possible crash in dtls1getrecord - fix CVE-2014-3572 - possible downgrade of ECDH ciphersuite to non-PFS state - fix CVE-2014-8275 - various certificate fingerprint issues - fix CVE-2015-0204 - remove support f...

5CVSS3.2AI score0.91945EPSS

Exploits0

Tenable Nessus•added 2015/01/16 12:0 a.m.•54 views

OpenSSL 0.9.8 < 0.9.8zd Multiple Vulnerabilities

The version of OpenSSL installed on the remote host is prior to 0.9.8zd. It is, therefore, affected by multiple vulnerabilities as referenced in the 0.9.8zd advisory. - The BNsqr implementation in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k does not properly calculate the...

5CVSS7.5AI score0.91945EPSS

Exploits0References13

NVD•added 2015/01/09 2:59 a.m.•17 views

CVE-2014-3570

The BNsqr implementation in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k does not properly calculate the square of a BIGNUM value, which might make it easier for remote attackers to defeat cryptographic protection mechanisms via unspecified vectors, related to...

5CVSS5.6AI score0.07282EPSS

Exploits0References41