Lucene search
K

64 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.2 views

Astra Linux – Vulnerability in Linux

The Linux kernel up to version 5.8.13 does not properly enforce the Secure Boot Forbidden Signature Database also known as dbx protection mechanism. This issue affects the certs/blacklist.c and certs/systemkeyring.c files...

6.9CVSS6.6AI score0.00528EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 8 : java-11-openjdk-11.0.9.11-0.el8 (AXSA:2020-784:09)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-784:09 advisory. OpenJDK: Credentials sent over unencrypted LDAP connection JNDI, 8237990 CVE-2020-14781 OpenJDK: Certificate blacklist bypass via alternate certifica...

5.8CVSS6.5AI score0.03713EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 4 : java-1.8.0-openjdk-1.8.0.272.b10-0.AXS4 (AXSA:2020-821:17)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-821:17 advisory. OpenJDK: Credentials sent over unencrypted LDAP connection JNDI, 8237990 CVE-2020-14781 OpenJDK: Certificate blacklist bypass via alternate certifica...

5.8CVSS6.5AI score0.03713EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2023/04/26 12:0 a.m.6 views

Debian: Security Advisory (DSA-2199)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References3
F5 Networks
F5 Networks
added 2023/02/21 7:29 p.m.54 views

K16136: OpenSSL vulnerability CVE-2014-8275

Security Advisory Description OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k does not enforce certain constraints on certificate data, which allows remote attackers to defeat a fingerprint-based certificate-blacklist protection mechanism by including crafted data within a...

5CVSS6.4AI score0.1653EPSS
Exploits0Affected Software16
SUSE CVE
SUSE CVE
added 2023/02/15 5:25 a.m.3 views

SUSE CVE-2014-8275

OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k does not enforce certain constraints on certificate data, which allows remote attackers to defeat a fingerprint-based certificate-blacklist protection mechanism by including crafted data within a certificate's unsigned portion,...

5CVSS8.7AI score0.1653EPSS
Exploits0References20
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.24 views

Mageia: Security Advisory (MGASA-2020-0418)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.8CVSS6AI score0.03713EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2021/07/20 9:30 p.m.2 views

kernel: security bypass in certs/blacklist.c and certs/system_keyring.c

A flaw was found in the Linux kernel in certs/blacklist.c, When signature entries for EFICERTX509GUID are contained in the Secure Boot Forbidden Signature Database, the entries are skipped. This can cause a security threat and breach system integrity, confidentiality and even lead to a denial of...

6.9CVSS6.6AI score0.00528EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2021/06/29 4:34 p.m.3 views

kernel: security bypass in certs/blacklist.c and certs/system_keyring.c

A flaw was found in the Linux kernel in certs/blacklist.c, When signature entries for EFICERTX509GUID are contained in the Secure Boot Forbidden Signature Database, the entries are skipped. This can cause a security threat and breach system integrity, confidentiality and even lead to a denial of...

6.9CVSS6.6AI score0.00528EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2021/03/05 12:0 a.m.70 views

RHEL 7 : java-1.8.0-ibm (RHSA-2021:0717)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:0717 advisory. IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE ...

9.8CVSS7.1AI score0.03625EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2021/03/05 12:0 a.m.288 views

RHEL 8 : java-1.8.0-ibm (RHSA-2021:0736)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:0736 advisory. IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE ...

9.8CVSS7.1AI score0.03625EPSS
Exploits0References13
RedHat Linux
RedHat Linux
added 2021/03/04 5:44 p.m.148 views

Critical: Red Hat Security Advisory: java-1.8.0-ibm security update

An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

9.8CVSS6.9AI score0.03625EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2021/03/04 5:44 p.m.2 views

OpenJDK: Certificate blacklist bypass via alternate certificate encodings (Libraries, 8237995)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multipl...

4.3CVSS7.1AI score0.02245EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/03/04 5:5 p.m.243 views

Critical: Red Hat Security Advisory: java-1.8.0-ibm security update

An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 7 Supplementary. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS6.9AI score0.03625EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2021/03/04 5:5 p.m.4 views

OpenJDK: Certificate blacklist bypass via alternate certificate encodings (Libraries, 8237995)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multipl...

4.3CVSS7.1AI score0.02245EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/02/01 12:0 a.m.26 views

CentOS 8 : java-1.8.0-openjdk (CESA-2020:4347)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:4347 advisory. - OpenJDK: High memory usage during deserialization of Proxy class with many interfaces Serialization, 8236862 CVE-2020-14779 - OpenJDK: Credentials se...

5.8CVSS6.4AI score0.03713EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2021/02/01 12:0 a.m.32 views

CentOS 8 : java-11-openjdk (CESA-2020:4305)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:4305 advisory. - OpenJDK: High memory usage during deserialization of Proxy class with many interfaces Serialization, 8236862 CVE-2020-14779 - OpenJDK: Credentials se...

5.8CVSS6.4AI score0.03713EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2020/12/18 12:0 a.m.251 views

RHEL 7 : java-1.7.1-ibm (RHSA-2020:5586)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:5586 advisory. IBM Java SE version 7 Release 1 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IB...

4.3CVSS6.5AI score0.03713EPSS
Exploits0References13
RedHat Linux
RedHat Linux
added 2020/12/16 3:21 p.m.3 views

OpenJDK: Certificate blacklist bypass via alternate certificate encodings (Libraries, 8237995)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multipl...

4.3CVSS7.1AI score0.02245EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/12/16 3:21 p.m.73 views

Moderate: Red Hat Security Advisory: java-1.7.1-ibm security update

An update for java-1.7.1-ibm is now available for Red Hat Enterprise Linux 7 Supplementary. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

4.3CVSS6.4AI score0.03713EPSS
Exploits0References6
Rows per page
Query Builder