Lucene search
+L

18 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/19 12:0 a.m.7 views

MiracleLinux 8 : openssl-1.1.1g-15.el8 (AXSA:2021-1621:02)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-1621:02 advisory. openssl: NULL pointer dereference in signaturealgorithms processing CVE-2021-3449 openssl: CA certificate check bypass with X509VFLAGX509STRICT...

7.4CVSS7.9AI score0.62906EPSS
Exploits4References3
Tenable Nessus
Tenable Nessus
added 2024/05/07 12:0 a.m.53 views

RHEL 7 / 8 : Red Hat JBoss Core Services Apache HTTP Server 2.4.57 SP4 (RHSA-2024:2693)

The remote Redhat Enterprise Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:2693 advisory. Red Hat JBoss Core Services is a set of supplementary software for Red Hat JBoss middleware products. This software, such as Apache HTTP...

8.6CVSS7.1AI score0.91327EPSS
Exploits6References16
OSV
OSV
added 2024/03/27 8:15 a.m.11 views

AZL-37077 CVE-2024-2466 affecting package curl for versions less than 8.8.0-1

libcurl did not check the server certificate of TLS connections done to a host specified as an IP address, when built to use mbedTLS. libcurl would wrongly avoid using the set hostname function when the specified hostname was given as an IP address, therefore completely skipping the certificate...

6.5CVSS7.2AI score0.01299EPSS
Exploits1References1
OPENSUSE Linux
OPENSUSE Linux
added 2021/07/20 12:0 a.m.94 views

Security update for nodejs10 (important)

openSUSE Security Update: Security update for nodejs10 Announcement ID: openSUSE-SU-2021:1061-1 Rating: important References: 1183155 1183851 1183852 1184450 1187973 1187976 1187977 Cross-References: CVE-2020-7774 CVE-2021-22918 CVE-2021-23362 CVE-2021-27290 CVE-2021-3449 CVE-2021-3450 CVSS score...

7.5CVSS8AI score0.69062EPSS
Exploits8References7
OpenVAS
OpenVAS
added 2021/07/15 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2021:2327-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.1AI score0.69062EPSS
Exploits8References2
OpenVAS
OpenVAS
added 2021/07/15 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2021:2326-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.1AI score0.69062EPSS
Exploits8References2
Tenable Nessus
Tenable Nessus
added 2021/04/15 12:0 a.m.375 views

RHEL 7 : Red Hat JBoss Core Services Apache HTTP Server 2.4.37 SP7 (RHSA-2021:1199)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:1199 advisory. This release adds the new Apache HTTP Server 2.4.37 Service Pack 7 packages that are part of the JBoss Core Services offering. This release...

7.4CVSS8AI score0.62906EPSS
Exploits4References6
RedHat Linux
RedHat Linux
added 2021/04/14 3:56 p.m.86 views

Important: Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 SP7 security update

Updated packages that provide Red Hat JBoss Core Services Pack Apache Server 2.4.37 and fix several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability...

7.4CVSS7.1AI score0.62906EPSS
Exploits4References3
Tenable Nessus
Tenable Nessus
added 2021/04/14 12:0 a.m.36 views

RHEL 8 : Red Hat Virtualization (RHSA-2021:1189)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:1189 advisory. The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host,...

7.4CVSS7.9AI score0.62906EPSS
Exploits4References17
Tenable Nessus
Tenable Nessus
added 2021/04/14 12:0 a.m.243 views

FreeBSD : Node.js -- April 2021 Security Releases (c0c1834c-9761-11eb-acfd-0022489ad614)

Node.js reports : OpenSSL - CA certificate check bypass with X509VFLAGX509STRICT High CVE-2021-3450 This is a vulnerability in OpenSSL which may be exploited through Node.js. You can read more about it in https://www.openssl.org/news/secadv/20210325.txt OpenSSL - NULL pointer deref in...

9.8CVSS7.3AI score0.69062EPSS
Exploits5References7
Node JS Blog
Node JS Blog
added 2021/04/06 12:0 a.m.42 views

April 2021 Security Releases

April 2021 Security Releases Update 6-Apr-2021 Security releases available Updates are now available for v10,x, v12.x, v14.x and v15.x Node.js release lines for the following issues. OpenSSL - CA certificate check bypass with X509VFLAGX509STRICT High CVE-2021-3450 This is a vulnerability in OpenS...

9.8CVSS6.7AI score0.69062EPSS
Exploits5
FreeBSD
FreeBSD
added 2021/04/06 12:0 a.m.98 views

Node.js -- April 2021 Security Releases

Node.js reports: OpenSSL - CA certificate check bypass with X509VFLAGX509STRICT High CVE-2021-3450 This is a vulnerability in OpenSSL which may be exploited through Node.js. You can read more about it in https://www.openssl.org/news/secadv/20210325.txt OpenSSL - NULL pointer deref in...

9.8CVSS0.6AI score0.69062EPSS
Exploits5References3
OSV
OSV
added 2021/04/01 6:15 p.m.3 views

ALPINE-CVE-2021-22890

curl 7.63.0 to and including 7.75.0 includes vulnerability that allows a malicious HTTPS proxy to MITM a connection due to bad handling of TLS 1.3 session tickets. When using a HTTPS proxy and TLS 1.3, libcurl can confuse session tickets arriving from the HTTPS proxy but work as if they arrived...

3.7CVSS6.9AI score0.03141EPSS
Exploits1References1
OSV
OSV
added 2021/03/31 6:0 a.m.9 views

UBUNTU-CVE-2021-22890

curl 7.63.0 to and including 7.75.0 includes vulnerability that allows a malicious HTTPS proxy to MITM a connection due to bad handling of TLS 1.3 session tickets. When using a HTTPS proxy and TLS 1.3, libcurl can confuse session tickets arriving from the HTTPS proxy but work as if they arrived...

4.3CVSS6.7AI score0.03141EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2021/03/30 2:40 p.m.176 views

Important: Red Hat Security Advisory: openssl security update

An update for openssl is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

7.4CVSS7.1AI score0.62906EPSS
Exploits4References3
Tenable Nessus
Tenable Nessus
added 2021/03/30 12:0 a.m.151 views

RHEL 8 : openssl (RHSA-2021:1024)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:1024 advisory. OpenSSL is a toolkit that implements the Secure Sockets Layer SSL and Transport Layer Security TLS protocols, as well as a full-strength...

7.4CVSS8AI score0.62906EPSS
Exploits4References6
AlmaLinux
AlmaLinux
added 2021/03/29 7:3 p.m.64 views

Important: openssl security update

OpenSSL is a toolkit that implements the Secure Sockets Layer SSL and Transport Layer Security TLS protocols, as well as a full-strength general-purpose cryptography library. Security Fixes: openssl: NULL pointer dereference in signaturealgorithms processing CVE-2021-3449 openssl: CA certificate...

5.8CVSS1.5AI score0.62906EPSS
Exploits4References2
securityvulns
securityvulns
added 2013/12/23 12:0 a.m.34 views

Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities

Multiple memory corruptions, XSS, information leakage, certificate check bypass...

10CVSS2.1AI score0.11076EPSS
Exploits13Affected Software4
Rows per page
Query Builder