Lucene search
K

22 matches found

Tenable Nessus
Tenable Nessus
added 2024/01/23 12:0 a.m.53 views

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-6.7.1.5)

The version of AOS installed on the remote host is prior to 6.7.1.5. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-6.7.1.5 advisory. - There is a carry propagating bug in the x8664 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0...

7.5CVSS7.3AI score0.99999EPSS
Exploits26References15
SUSE CVE
SUSE CVE
added 2023/02/15 4:51 a.m.4 views

SUSE CVE-2017-3736

There is a carry propagating bug in the x8664 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely...

7.4CVSS8.8AI score0.10133EPSS
Exploits0References33
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.33 views

Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2018-1179)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.9AI score0.78675EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.43 views

Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2018-1115)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.9AI score0.78675EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.49 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : openssl Multiple Vulnerabilities (NS-SA-2019-0033)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has openssl packages installed that are affected by multiple vulnerabilities: - OpenSSL 1.0.2 starting from version 1.0.2b introduced an error state mechanism. The intent was that if a fatal error occurred during a handshake th...

10CVSS9.1AI score0.99999EPSS
Exploits153References33
Tenable Nessus
Tenable Nessus
added 2018/10/26 12:0 a.m.34 views

EulerOS Virtualization 2.5.0 : openssl (EulerOS-SA-2018-1339)

According to the version of the openssl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - There is a carry propagating bug in the x8664 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC...

6.5CVSS7.3AI score0.10133EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/07/03 12:0 a.m.259 views

EulerOS 2.0 SP3 : openssl (EulerOS-SA-2018-1179)

According to the versions of the openssl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - There is a carry propagating bug in the x8664 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms...

6.5CVSS6.9AI score0.78675EPSS
Exploits1References4
FreeBSD Advisory
FreeBSD Advisory
added 2017/11/29 12:0 a.m.15 views

FreeBSD-SA-17:11.openssl

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-17:11.openssl Security Advisory The FreeBSD Project Topic: OpenSSL multiple vulnerabilities Category: contrib Module: openssl Announced: 2017-11-29 Affects: All...

6.5CVSS6.8AI score0.17699EPSS
Exploits0
OSV
OSV
added 2017/11/08 10:43 p.m.6 views

MGASA-2017-0405 Updated openssl packages fix security vulnerabilities

If an X.509 certificate has a malformed IPAddressFamily extension, OpenSSL could do a one-byte buffer overread. The most likely result would be an erroneous display of the certificate in text format CVE-2017-3735. There is a carry propagating bug in the x8664 Montgomery squaring procedure...

6.5CVSS6.4AI score0.17699EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2017/11/06 12:0 a.m.343 views

OpenSSL 1.1.0 < 1.1.0g Multiple Vulnerabilities

The version of OpenSSL installed on the remote host is prior to 1.1.0g. It is, therefore, affected by multiple vulnerabilities as referenced in the 1.1.0g advisory. - There is a carry propagating bug in the x8664 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No E...

6.5CVSS6.7AI score0.17699EPSS
Exploits0References8
OSV
OSV
added 2017/11/02 5:29 p.m.30 views

CVE-2017-3736

There is a carry propagating bug in the x8664 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely...

6.5CVSS6.4AI score
Exploits0References27
Debian CVE
Debian CVE
added 2017/11/02 5:0 p.m.34 views

CVE-2017-3736

There is a carry propagating bug in the x8664 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely...

6.5CVSS7.2AI score0.10133EPSS
Exploits0
CVE
CVE
added 2017/11/02 5:0 p.m.397 views

CVE-2017-3736

OpenSSL CVE-2017-3736 is a carry-propagation bug in the x86_64 Montgomery squaring path that affects OpenSSL releases before 1.0.2m and before 1.1.0g. The issue could allow information disclosure and, under certain conditions, private-key recovery for DH (offline work, with persistent DH paramete...

6.5CVSS6.5AI score0.10133EPSS
Exploits0References27Affected Software1
AlpineLinux
AlpineLinux
added 2017/11/02 5:0 p.m.42 views

CVE-2017-3736

There is a carry propagating bug in the x8664 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely...

6.5CVSS6.6AI score0.10133EPSS
Exploits0
Prion
Prion
added 2017/05/04 8:29 p.m.34 views

Design/Logic Flaw

There is a carry propagating bug in the Broadwell-specific Montgomery multiplication procedure in OpenSSL 1.0.2 and 1.1.0 before 1.1.0c that handles input lengths divisible by, but longer than 256 bits. Analysis suggests that attacks against RSA, DSA and DH private keys are impossible. This is...

2.6CVSS7.5AI score0.14225EPSS
Exploits1References15Affected Software2
NVD
NVD
added 2017/05/04 8:29 p.m.28 views

CVE-2016-7055

There is a carry propagating bug in the Broadwell-specific Montgomery multiplication procedure in OpenSSL 1.0.2 and 1.1.0 before 1.1.0c that handles input lengths divisible by, but longer than 256 bits. Analysis suggests that attacks against RSA, DSA and DH private keys are impossible. This is...

5.9CVSS6.5AI score0.14225EPSS
Exploits1References15
CVE
CVE
added 2017/05/04 8:0 p.m.236 views

CVE-2016-7055

CVE-2016-7055 describes a carry-propagating bug in the Broadwell-specific Montgomery multiplication inside OpenSSL 1.0.2 and 1.1.0 before 1.1.0c. The issue can cause transient authentication and key‑negotiation failures or incorrect public-key results; among EC algorithms, Brainpool P-512 curves ...

5.9CVSS6.8AI score0.14225EPSS
Exploits1References15Affected Software1
Prion
Prion
added 2017/05/04 7:29 p.m.40 views

Design/Logic Flaw

There is a carry propagating bug in the x8664 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed...

4.3CVSS6.4AI score0.25137EPSS
Exploits1References18Affected Software2
Tenable Nessus
Tenable Nessus
added 2017/02/17 12:0 a.m.37 views

F5 Networks BIG-IP : OpenSSL vulnerability (K44512851)

There is a carry propagating bug in the x8664 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed...

7.5CVSS7AI score0.25137EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2017/02/09 12:0 a.m.54 views

OpenSSL Multiple Vulnerabilities (Feb 2017)

OpenSSL is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:openssl:openssl"; ifdescription...

7.5CVSS7.5AI score0.57595EPSS
Exploits1References3
Rows per page
Query Builder