Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

55 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2020-18313

Malware in sbrugna...

7.5CVSS8.5AI score0.00099EPSS
Exploits0References19
RedhatCVE
RedhatCVEadded 2025/05/22 5:51 p.m.4 views

CVE-2020-12457

An issue was discovered in wolfSSL before 4.5.0. It mishandles the changecipherspec CCS message processing logic for TLS 1.3. If an attacker sends ChangeCipherSpec messages in a crafted way involving more than one in a row, the server becomes stuck in the ProcessReply loop, i.e., a denial of...

7.5CVSS6.8AI score0.00468EPSS
Exploits0
Packet Storm
Packet Stormadded 2024/08/31 12:0 a.m.142 views

OpenSSL DTLS ChangeCipherSpec Remote Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'OpenSSL DTLS ChangeCipherSpec Remote DoS', 'Description' = %q This module performs a Denial of Service Attack against Datagram TLS in OpenSSL...

5CVSS7AI score0.47628EPSS
Exploits9
Packet Storm
Packet Stormadded 2024/08/31 12:0 a.m.395 views

OpenSSL Server-Side ChangeCipherSpec Injection Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule Msf::Auxiliary include Msf::Exploit::Remote::Tcp include Msf::Auxiliary::Scanner include Msf::Auxiliary::Report CIPHERSUITES = 0xc014,...

7.4CVSS7.5AI score0.89694EPSS
Exploits9
VulnCheck KEV
VulnCheck KEVadded 2024/05/06 12:0 a.m.1 views

VulnCheck KEV: CVE-2014-0224

OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly restrict processing of ChangeCipherSpec messages, which allows man-in-the-middle attackers to trigger use of a zero-length master key in certain OpenSSL-to-OpenSSL communications, and consequently hijack...

7.4CVSS6.9AI score0.89694EPSS
Exploits9References1
F5 Networks
F5 Networksadded 2023/02/21 8:1 p.m.34 views

K15351: OpenSSL DTLS ChangeCipherSpec vulnerability CVE-2009-1386

Security Advisory Description ssl/s3pkt.c in OpenSSL before 0.9.8i allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a DTLS ChangeCipherSpec packet that occurs before ClientHello. CVE-2009-1386 Impact None Security Advisory Status To determine if...

5CVSS6.9AI score0.47628EPSS
Exploits9
Tenable Nessus
Tenable Nessusadded 2021/07/06 12:0 a.m.34 views

EulerOS Virtualization 3.0.2.2 : nss (EulerOS-SA-2021-2150)

According to the versions of the nss packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In Network Security Services NSS before 3.36.7 and before 3.41.1, a malformed signature can cause a crash due to a null dereference,...

7.5CVSS6.5AI score0.00434EPSS
Exploits1References4
Amazon
Amazonadded 2021/06/23 12:0 a.m.33 views

Medium: nss

Issue Overview: A flaw was found in the way NSS handled CCS ChangeCipherSpec messages in TLS 1.3. This flaw allows a remote attacker to send multiple CCS messages, causing a denial of service for servers compiled with the NSS library. The highest threat from this vulnerability is to system...

7.5CVSS8.7AI score0.00099EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2021/03/04 12:0 a.m.45 views

EulerOS Virtualization 3.0.6.6 : nss (EulerOS-SA-2021-1502)

According to the versions of the nss packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the way NSS handled CCS ChangeCipherSpec messages in TLS 1.3. This flaw allows a remote attacker to send multipl...

7.5CVSS6.5AI score0.00434EPSS
Exploits1References4
Gentoo Linux
Gentoo Linuxadded 2020/12/23 12:0 a.m.31 views

Mozilla Network Security Service (NSS): Denial of service

Background The Mozilla Network Security Service NSS is a library implementing security features like SSL v.2/v.3, TLS, PKCS 5, PKCS 7, PKCS 11, PKCS 12, S/MIME and X.509 certificates. Description A flaw was found in the way Mozilla Network Security Service NSS handled CCS ChangeCipherSpec message...

7.5CVSS2.6AI score0.00099EPSS
Exploits0
Veracode
Veracodeadded 2020/12/04 4:26 p.m.35 views

Denial Of Service (DoS)

nss is vulnerable to denial of service DoS. The vulnerability exists through the way NSS handled CCS ChangeCipherSpec messages in TLS 1.3...

7.5CVSS2.8AI score0.00099EPSS
Exploits0References15Affected Software1
OSV
OSVadded 2020/10/20 10:15 p.m.1 views

ALPINE-CVE-2020-25648

A flaw was found in the way NSS handled CCS ChangeCipherSpec messages in TLS 1.3. This flaw allows a remote attacker to send multiple CCS messages, causing a denial of service for servers compiled with the NSS library. The highest threat from this vulnerability is to system availability. This fla...

7.5CVSS8.5AI score0.00099EPSS
Exploits0References1
OSV
OSVadded 2020/10/20 10:15 p.m.1 views

UBUNTU-CVE-2020-25648

A flaw was found in the way NSS handled CCS ChangeCipherSpec messages in TLS 1.3. This flaw allows a remote attacker to send multiple CCS messages, causing a denial of service for servers compiled with the NSS library. The highest threat from this vulnerability is to system availability. This fla...

7.5CVSS7.2AI score0.00099EPSS
Exploits0References4
Cvelist
Cvelistadded 2020/10/20 12:0 a.m.13 views

CVE-2020-25648

A flaw was found in the way NSS handled CCS ChangeCipherSpec messages in TLS 1.3. This flaw allows a remote attacker to send multiple CCS messages, causing a denial of service for servers compiled with the NSS library. The highest threat from this vulnerability is to system availability. This fla...

7.2AI score0.00099EPSS
Exploits0References10
CNVD
CNVDadded 2020/09/01 12:0 a.m.1 views

wolfSSL Denial of Service Vulnerability (CNVD-2020-50284)

wolfSSL formerly known as CyaSSL is the United States wolfSSL company for embedded systems developers to use a small, portable embedded SSL programming library. A security vulnerability exists in wolfSSL versions prior to 4.5.0, which can be exploited by an attacker to send a constructed...

7.5CVSS6.7AI score0.00468EPSS
Exploits0References1
OSV
OSVadded 2020/08/21 2:15 p.m.10 views

CVE-2020-12457

An issue was discovered in wolfSSL before 4.5.0. It mishandles the changecipherspec CCS message processing logic for TLS 1.3. If an attacker sends ChangeCipherSpec messages in a crafted way involving more than one in a row, the server becomes stuck in the ProcessReply loop, i.e., a denial of...

7.5CVSS6.8AI score
Exploits0References2
UbuntuCve
UbuntuCveadded 2020/08/21 2:15 p.m.18 views

CVE-2020-12457

An issue was discovered in wolfSSL before 4.5.0. It mishandles the changecipherspec CCS message processing logic for TLS 1.3. If an attacker sends ChangeCipherSpec messages in a crafted way involving more than one in a row, the server becomes stuck in the ProcessReply loop, i.e., a denial of...

7.5CVSS7.1AI score0.00468EPSS
Exploits0References3
CVE
CVEadded 2020/08/21 1:6 p.m.54 views

CVE-2020-12457

The vulnerability CVE-2020-12457 affects wolfSSL prior to 4.5.0. It mishandles the ChangeCipherSpec (CCS) processing for TLS 1.3, allowing an attacker to craft CCS messages (more than one in a row) that cause the server to stall in the ProcessReply() loop, resulting in a denial of service. The is...

7.5CVSS7.4AI score0.00468EPSS
Exploits0References2Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2018/06/15 7:0 a.m.34 views

Security Bulletin: Websphere DataPower vulnerability in SSL ChangeCipherSpec processing (CVE-2014-0224)

Summary A security vulnerability in ChangeCipherSpec processing allows intermediate nodes to intercept encrypted data and decrypt them and can force the use of weak keying material in SSL/TLS clients and servers. Vulnerability Details CVE ID: CVE-2014-0224 DESCRIPTION: An attacker using a careful...

7.4CVSS1.3AI score0.89694EPSS
Exploits9Affected Software1
Tenable Nessus
Tenable Nessusadded 2015/12/30 12:0 a.m.130 views

VMware ESXi Multiple OpenSSL Vulnerabilities (VMSA-2014-0006)

The remote VMware ESXi host is affected by multiple vulnerabilities in the OpenSSL third-party library : - A use-after-free error exists in the ssl3readbytes function in file ssl/s3pkt.c that is triggered when a second read is done to the function by multiple threads when SSLMODERELEASEBUFFERS is...

7.4CVSS7.7AI score0.91395EPSS
Exploits9References6
Rows per page
Query Builder