Lucene search
K

18 matches found

RedhatCVE
RedhatCVE
added 2025/06/13 5:34 p.m.5 views

CVE-2024-38825

The salt.auth.pki module does not properly authenticate callers. The "password" field contains a public certificate which is validated against a CA certificate by the module. This is not pki authentication, as the caller does not need access to the corresponding private key for the authentication...

6.4CVSS6.3AI score0.00129EPSS
Exploits0References2
OPENSUSE Linux
OPENSUSE Linux
added 2021/07/20 12:0 a.m.93 views

Security update for nodejs10 (important)

openSUSE Security Update: Security update for nodejs10 Announcement ID: openSUSE-SU-2021:1061-1 Rating: important References: 1183155 1183851 1183852 1184450 1187973 1187976 1187977 Cross-References: CVE-2020-7774 CVE-2021-22918 CVE-2021-23362 CVE-2021-27290 CVE-2021-3449 CVE-2021-3450 CVSS score...

7.5CVSS8AI score0.69062EPSS
Exploits8References7
OpenVAS
OpenVAS
added 2021/07/15 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2021:2327-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.1AI score0.69062EPSS
Exploits8References2
OpenVAS
OpenVAS
added 2021/07/15 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2021:2326-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.1AI score0.69062EPSS
Exploits8References2
Tenable Nessus
Tenable Nessus
added 2021/04/15 12:0 a.m.374 views

RHEL 7 : Red Hat JBoss Core Services Apache HTTP Server 2.4.37 SP7 (RHSA-2021:1199)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:1199 advisory. This release adds the new Apache HTTP Server 2.4.37 Service Pack 7 packages that are part of the JBoss Core Services offering. This release...

7.4CVSS8AI score0.62906EPSS
Exploits4References6
RedHat Linux
RedHat Linux
added 2021/04/14 3:56 p.m.85 views

Important: Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 SP7 security update

Updated packages that provide Red Hat JBoss Core Services Pack Apache Server 2.4.37 and fix several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability...

7.4CVSS7.1AI score0.62906EPSS
Exploits4References3
Tenable Nessus
Tenable Nessus
added 2021/04/14 12:0 a.m.35 views

RHEL 8 : Red Hat Virtualization (RHSA-2021:1189)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:1189 advisory. The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host,...

7.4CVSS7.9AI score0.62906EPSS
Exploits4References17
Tenable Nessus
Tenable Nessus
added 2021/04/14 12:0 a.m.243 views

FreeBSD : Node.js -- April 2021 Security Releases (c0c1834c-9761-11eb-acfd-0022489ad614)

Node.js reports : OpenSSL - CA certificate check bypass with X509VFLAGX509STRICT High CVE-2021-3450 This is a vulnerability in OpenSSL which may be exploited through Node.js. You can read more about it in https://www.openssl.org/news/secadv/20210325.txt OpenSSL - NULL pointer deref in...

9.8CVSS7.3AI score0.69062EPSS
Exploits5References7
FreeBSD
FreeBSD
added 2021/04/06 12:0 a.m.97 views

Node.js -- April 2021 Security Releases

Node.js reports: OpenSSL - CA certificate check bypass with X509VFLAGX509STRICT High CVE-2021-3450 This is a vulnerability in OpenSSL which may be exploited through Node.js. You can read more about it in https://www.openssl.org/news/secadv/20210325.txt OpenSSL - NULL pointer deref in...

9.8CVSS0.6AI score0.69062EPSS
Exploits5References3
Node JS Blog
Node JS Blog
added 2021/04/06 12:0 a.m.41 views

April 2021 Security Releases

April 2021 Security Releases Update 6-Apr-2021 Security releases available Updates are now available for v10,x, v12.x, v14.x and v15.x Node.js release lines for the following issues. OpenSSL - CA certificate check bypass with X509VFLAGX509STRICT High CVE-2021-3450 This is a vulnerability in OpenS...

9.8CVSS6.7AI score0.69062EPSS
Exploits5
Oracle linux
Oracle linux
added 2021/04/01 12:0 a.m.99 views

openssl security update

1.1.1g-15 - version bump 1.1.1g-14 - CVE-2021-3450 openssl: CA certificate check bypass with X509VFLAGX509STRICT 1.1.1g-13 - Fix CVE-2021-3449 NULL pointer deref in signaturealgorithms processing...

7.4CVSS3.5AI score0.62906EPSS
Exploits4
RedHat Linux
RedHat Linux
added 2021/03/30 2:40 p.m.175 views

Important: Red Hat Security Advisory: openssl security update

An update for openssl is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

7.4CVSS7.1AI score0.62906EPSS
Exploits4References3
Tenable Nessus
Tenable Nessus
added 2021/03/30 12:0 a.m.151 views

RHEL 8 : openssl (RHSA-2021:1024)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:1024 advisory. OpenSSL is a toolkit that implements the Secure Sockets Layer SSL and Transport Layer Security TLS protocols, as well as a full-strength...

7.4CVSS8AI score0.62906EPSS
Exploits4References6
AlmaLinux
AlmaLinux
added 2021/03/29 7:3 p.m.62 views

Important: openssl security update

OpenSSL is a toolkit that implements the Secure Sockets Layer SSL and Transport Layer Security TLS protocols, as well as a full-strength general-purpose cryptography library. Security Fixes: openssl: NULL pointer dereference in signaturealgorithms processing CVE-2021-3449 openssl: CA certificate...

5.8CVSS1.5AI score0.62906EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2021/03/29 12:0 a.m.219 views

FreeBSD : OpenSSL -- Multiple vulnerabilities (5a668ab3-8d86-11eb-b8d6-d4c9ef517024)

The OpenSSL project reports : High: CA certificate check bypass with X509VFLAGX509STRICT CVE-2021-3450The X509VFLAGX509STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. High: NULL pointer deref in signaturealgorithms...

7.4CVSS7.7AI score0.62906EPSS
Exploits4References4
OpenVAS
OpenVAS
added 2021/03/26 12:0 a.m.28 views

OpenSSL: CA Certificate Check Bypass Vulnerability (CVE-2021-3450) - Linux

OpenSSL is prone to a CA certificate check bypass vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

7.4CVSS7.7AI score0.18339EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2021/03/26 12:0 a.m.19 views

OpenSSL: CA Certificate Check Bypass Vulnerability (CVE-2021-3450) - Windows

OpenSSL is prone to a CA certificate check bypass vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

7.4CVSS7.7AI score0.18339EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2021/03/25 12:0 a.m.51 views

OpenSSL -- Multiple vulnerabilities

The OpenSSL project reports: High: CA certificate check bypass with X509VFLAGX509STRICT CVE-2021-3450The X509VFLAGX509STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. High: NULL pointer deref in signaturealgorithms...

7.4CVSS1.6AI score0.62906EPSS
Exploits4References1
Rows per page
Query Builder