Lucene search
+L

59 matches found

Vulnrichment
Vulnrichment
added 2026/04/08 1:6 a.m.3 views

CVE-2026-32281 Inefficient policy validation in crypto/x509

Validating certificate chains which use policies is unexpectedly inefficient when certificates in the chain contain a very large number of policy mappings, possibly causing denial of service. This only affects validation of otherwise trusted certificate chains, issued by a root CA in the...

5.8AI score0.00349EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/04/08 1:6 a.m.24 views

CVE-2026-32281 Inefficient policy validation in crypto/x509

Validating certificate chains which use policies is unexpectedly inefficient when certificates in the chain contain a very large number of policy mappings, possibly causing denial of service. This only affects validation of otherwise trusted certificate chains, issued by a root CA in the...

0.00349EPSS
Exploits0References4
Rosalinux
Rosalinux
added 2025/04/30 8:30 a.m.27 views

Advisory ROSA-SA-2025-2858

Software: openssl 1.1.1k OS: ROSA Virtualization 3.0 packageevrstring: openssl-1.1.1k-14.0.2.rv30 CVE-ID: CVE-2020-1971 BDU-ID: 2021-00872 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the GENERALNAMEcmp function of the OpenSSL library is related to pointer dereferencing errors. Exploitation of...

7.5CVSS7.8AI score0.62906EPSS
Exploits6
IBM Security Bulletins
IBM Security Bulletins
added 2024/10/25 8:48 p.m.34 views

Security Bulletin: IBM Master Data Management vulnerable to remote attacker due to flaws found in OpenSSL (CVE-2023-0466, CVE-2023-0465)

Summary IBM Master Data Management v11.6, and v12.0 are vulnerable to remote attackers due to flaws found in OpenSSL. OpenSSL could allow a remote attacker to bypass security restrictions, caused by a flaw in the X509VERIFYPARAMadd0policy function. By using invalid certificate policies, an attack...

5.3CVSS6.8AI score0.01625EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/07/03 12:0 a.m.30 views

CBL Mariner 2.0 Security Update: edk2 / hvloader / openssl / nodejs18 (CVE-2023-0465)

The version of edk2 / hvloader / openssl / nodejs18 installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-0465 advisory. - Applications that use a non-default option when verifying certificates May be...

5.3CVSS6.4AI score0.01583EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2024/03/28 7:47 p.m.52 views

Security Bulletin: Vulnerability in NX-OS Firmware used by IBM c-type SAN directors and switches.

Summary Public disclosed OpenSSL vulnerability in NX-OS Firmware used by IBM c-type SAN directors and switches. The vulnerability has been addressed and can be resolved by applying the NX-OS code level listed below. Vulnerability Details CVEID:CVE-2023-0466 DESCRIPTION: OpenSSL could allow a remo...

5.3CVSS6.3AI score0.01625EPSS
Exploits0Affected Software1
OSV
OSV
added 2024/03/01 11:7 a.m.3 views

OESA-2024-1238 edk2 security update

EDK II is a modern, feature-rich, cross-platform firmware development environment for the UEFI and PI specifications. Security Fixes: A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that include policy...

7.5CVSS8.5AI score0.75116EPSS
Exploits0References7
OSV
OSV
added 2024/03/01 11:7 a.m.6 views

OESA-2024-1227 shim security update

Initial UEFI bootloader that handles chaining to a trusted full \ bootloader under secure boot environments. Security Fixes: Applications that use a non-default option when verifying certificates may be vulnerable to an attack from a malicious CA to circumvent certain checks. Invalid certificate...

6.5CVSS8.7AI score0.75116EPSS
Exploits0References4
OSV
OSV
added 2024/03/01 11:7 a.m.5 views

OESA-2024-1223 shim security update

Initial UEFI bootloader that handles chaining to a trusted full \ bootloader under secure boot environments. Security Fixes: Applications that use a non-default option when verifying certificates may be vulnerable to an attack from a malicious CA to circumvent certain checks. Invalid certificate...

6.5CVSS8.6AI score0.75116EPSS
Exploits0References5
OSV
OSV
added 2024/03/01 11:7 a.m.4 views

OESA-2024-1224 shim security update

Initial UEFI bootloader that handles chaining to a trusted full \ bootloader under secure boot environments. Security Fixes: Applications that use a non-default option when verifying certificates may be vulnerable to an attack from a malicious CA to circumvent certain checks. Invalid certificate...

6.5CVSS8.6AI score0.75116EPSS
Exploits0References5
OSV
OSV
added 2024/02/08 11:6 a.m.4 views

OESA-2024-1136 nodejs security update

Node.js is an open-source, cross-platform, JavaScript runtime environment, it executes JavaScript code outside of a browser. Security Fixes: A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that include polic...

7.5CVSS8.9AI score0.03658EPSS
Exploits0References3
OSV
OSV
added 2024/02/08 11:6 a.m.7 views

OESA-2024-1135 nodejs security update

Node.js is an open-source, cross-platform, JavaScript runtime environment, it executes JavaScript code outside of a browser. Security Fixes: A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that include polic...

7.5CVSS8.9AI score0.03658EPSS
Exploits0References3
OSV
OSV
added 2024/02/08 11:6 a.m.4 views

OESA-2024-1134 nodejs security update

Node.js is an open-source, cross-platform, JavaScript runtime environment, it executes JavaScript code outside of a browser. Security Fixes: A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that include polic...

7.5CVSS8.9AI score0.03658EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.27 views

EulerOS 2.0 SP11 : openssl (EulerOS-SA-2023-2660)

According to the versions of the openssl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that...

7.5CVSS6.3AI score0.03658EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2023/12/11 9:45 a.m.42 views

Security Bulletin: IBM Spectrum Control is vulnerable to multiple weaknesses related to OpenSSL

Summary Vulnerabilities in OpenSSL such as remote attacker bypass security restrictions, denial of service may affect IBM Spectrum Control. These vulnerabilities have been addressed. Vulnerability Details CVEID:CVE-2023-0466 DESCRIPTION: OpenSSL could allow a remote attacker to bypass security...

7.8CVSS7.5AI score0.05533EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2023/12/07 1:53 p.m.3 views

openssl: Invalid certificate policies in leaf certificates are silently ignored

A flaw was found in OpenSSL. Applications that use a non-default option when verifying certificates may be vulnerable to an attack from a malicious CA to circumvent certain checks. OpenSSL and other certificate policy checks silently ignore invalid certificate policies in leaf certificates that a...

5.3CVSS6.5AI score0.01583EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/12/07 12:37 p.m.7 views

openssl: Invalid certificate policies in leaf certificates are silently ignored

A flaw was found in OpenSSL. Applications that use a non-default option when verifying certificates may be vulnerable to an attack from a malicious CA to circumvent certain checks. OpenSSL and other certificate policy checks silently ignore invalid certificate policies in leaf certificates that a...

5.3CVSS6.5AI score0.01583EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2023/09/11 12:0 a.m.20 views

Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2023-2774)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS7AI score0.01583EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/09/05 12:0 a.m.20 views

Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2023-2711)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS7AI score0.01583EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/09/05 12:0 a.m.27 views

Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2023-2669)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS7AI score0.01583EPSS
Exploits0References2
Rows per page
Query Builder