Lucene search
K

22 matches found

CNNVD
CNNVD
added 2026/06/09 12:0 a.m.9 views

OpenSSL 加密问题漏洞

OpenSSL is an open-source encryption library developed by the OpenSSL team that enables secure implementation of Secure Sockets Layer SSLv2/v3 and Secure Transport Layer TLSv1 protocols. This product supports various encryption algorithms, including symmetric ciphers, hash algorithms, and secure...

5.3CVSS5.8AI score0.00262EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-4718

Malware in sbrugna...

5.5CVSS6.4AI score0.00352EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-51611

Malicious code in bioql PyPI...

5.3CVSS5.5AI score0.00081EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2020-28053

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HashiCorp Consul and Consul Enterprise 1.2.0 up to 1.8.5 allowed operators with operator:read ACL permissions to read the Connect CA private key configuration...

6.5CVSS6.9AI score0.01379EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/01/22 4:3 a.m.2 views

SUSE CVE-2024-13454

Weak encryption algorithm in Easy-RSA version 3.0.5 through 3.1.7 allows a local attacker to more easily bruteforce the private CA key when created using OpenSSL 3...

5.3CVSS6.7AI score0.00081EPSS
Exploits0References3
NVD
NVD
added 2025/01/20 9:15 p.m.10 views

CVE-2024-13454

Weak encryption algorithm in Easy-RSA version 3.0.5 through 3.1.7 allows a local attacker to more easily bruteforce the private CA key when created using OpenSSL 3...

5.3CVSS0.00081EPSS
Exploits0References1
OSV
OSV
added 2025/01/20 9:15 p.m.6 views

CVE-2024-13454

Weak encryption algorithm in Easy-RSA version 3.0.5 through 3.1.7 allows a local attacker to more easily bruteforce the private CA key when created using OpenSSL 3...

5.3CVSS6.8AI score0.00081EPSS
Exploits0References1
OSV
OSV
added 2025/01/20 9:15 p.m.2 views

UBUNTU-CVE-2024-13454

Weak encryption algorithm in Easy-RSA version 3.0.5 through 3.1.7 allows a local attacker to more easily bruteforce the private CA key when created using OpenSSL 3...

5.3CVSS5.8AI score0.00081EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/01/20 9:7 p.m.9 views

CVE-2024-13454

Weak encryption algorithm in Easy-RSA version 3.0.5 through 3.1.7 allows a local attacker to more easily bruteforce the private CA key when created using OpenSSL 3...

0.00081EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/20 9:7 p.m.6 views

CVE-2024-13454

Weak encryption algorithm in Easy-RSA version 3.0.5 through 3.1.7 allows a local attacker to more easily bruteforce the private CA key when created using OpenSSL 3...

5.2AI score0.00081EPSS
Exploits0References1
CVE
CVE
added 2025/01/20 9:7 p.m.79 views

CVE-2024-13454

CVE-2024-13454 affects Easy-RSA versions 3.0.5 through 3.1.7. The root cause is a weak encryption algorithm when the private CA key is created using OpenSSL 3, enabling a local attacker to more easily bruteforce the private CA key. Impact is limited to confidentiality/integrity of the CA key as i...

5.3CVSS6.8AI score0.00081EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2020/11/23 2:15 p.m.2 views

DEBIAN-CVE-2020-28053

HashiCorp Consul and Consul Enterprise 1.2.0 up to 1.8.5 allowed operators with operator:read ACL permissions to read the Connect CA private key configuration. Fixed in 1.6.10, 1.7.10, and 1.8.6...

6.5CVSS6.9AI score0.01379EPSS
Exploits0References1
Prion
Prion
added 2017/06/13 4:29 p.m.19 views

Code injection

The pulp-qpid-ssl-cfg script in Pulp before 2.8.5 allows local users to obtain the CA key...

2.1CVSS6.4AI score0.00352EPSS
Exploits0References5Affected Software2
OSV
OSV
added 2017/06/13 4:29 p.m.14 views

CVE-2016-3696

The pulp-qpid-ssl-cfg script in Pulp before 2.8.5 allows local users to obtain the CA key...

5.5CVSS6.2AI score0.00352EPSS
Exploits0References5
NVD
NVD
added 2017/06/13 4:29 p.m.20 views

CVE-2016-3696

The pulp-qpid-ssl-cfg script in Pulp before 2.8.5 allows local users to obtain the CA key...

5.5CVSS6AI score0.00352EPSS
Exploits0References5
Cvelist
Cvelist
added 2017/06/13 4:0 p.m.27 views

CVE-2016-3696

The pulp-qpid-ssl-cfg script in Pulp before 2.8.5 allows local users to obtain the CA key...

6.1AI score0.00352EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2017/06/13 12:0 a.m.3 views

PT-2017-8411 · Pulp · Pulp

Name of the Vulnerable Software and Affected Versions: Pulp versions prior to 2.8.5 Description: The issue allows local users to obtain the CA key due to a problem in the pulp-qpid-ssl-cfg script. Recommendations: For versions prior to 2.8.5, update to version 2.8.5 or later to resolve the issue...

5.5CVSS6AI score0.00352EPSS
Exploits0References7
NVD
NVD
added 2017/04/13 2:59 p.m.24 views

CVE-2016-3106

Pulp before 2.8.3 creates a temporary directory during CA key generation in an insecure manner...

5.3CVSS5.3AI score0.00938EPSS
Exploits0References4
Prion
Prion
added 2017/04/13 2:59 p.m.13 views

Information disclosure

Pulp before 2.8.3 creates a temporary directory during CA key generation in an insecure manner...

5CVSS7AI score0.00938EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2017/04/13 2:0 p.m.19 views

CVE-2016-3106

Pulp before 2.8.3 creates a temporary directory during CA key generation in an insecure manner...

5.3AI score0.00938EPSS
Exploits0References4
Rows per page
Query Builder