Lucene search
K

7652 matches found

CVE
CVE
added 2023/02/08 7:1 p.m.1330 views

CVE-2023-0286

CVE-2023-0286 is a type-confusion bug in OpenSSL related to X.400 address processing inside X.509 GeneralName. The public GENERAL_NAME.x400Address was defined as ASN1_TYPE instead of ASN1_STRING, causing GeneralName_cmp to treat it as a pointer, which under CRL_CHECK can allow an attacker to pass...

7.4CVSS7.7AI score0.59501EPSS
Exploits0References8Affected Software1
AlpineLinux
AlpineLinux
added 2023/02/08 7:1 p.m.528 views

CVE-2023-0286

There is a type confusion vulnerability relating to X.400 address processing inside an X.509 GeneralName. X.400 addresses were parsed as an ASN1STRING but the public structure definition for GENERALNAME incorrectly specified the type of the x400Address field as ASN1TYPE. This field is subsequentl...

7.4CVSS7.8AI score0.59501EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2023/02/08 7:1 p.m.2 views

CVE-2023-0286 X.400 address type confusion in X.509 GeneralName

There is a type confusion vulnerability relating to X.400 address processing inside an X.509 GeneralName. X.400 addresses were parsed as an ASN1STRING but the public structure definition for GENERALNAME incorrectly specified the type of the x400Address field as ASN1TYPE. This field is subsequentl...

7.5AI score0.59501EPSS
Exploits0References7
Cvelist
Cvelist
added 2023/02/08 7:1 p.m.216 views

CVE-2023-0286 X.400 address type confusion in X.509 GeneralName

There is a type confusion vulnerability relating to X.400 address processing inside an X.509 GeneralName. X.400 addresses were parsed as an ASN1STRING but the public structure definition for GENERALNAME incorrectly specified the type of the x400Address field as ASN1TYPE. This field is subsequentl...

7.7AI score0.59501EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2023/02/08 7:1 p.m.102 views

CVE-2023-0286

There is a type confusion vulnerability relating to X.400 address processing inside an X.509 GeneralName. X.400 addresses were parsed as an ASN1STRING but the public structure definition for GENERALNAME incorrectly specified the type of the x400Address field as ASN1TYPE. This field is subsequentl...

7.4CVSS7.3AI score0.59501EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/02/08 12:0 a.m.96 views

Amazon Linux 2 : openssl (ALAS-2023-1935)

The version of openssl installed on the remote host is prior to 1.0.2k-24. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-1935 advisory. A timing-based side channel exists in the OpenSSL RSA Decryption implementation, which could be sufficient to recover a...

7.5CVSS7.8AI score0.59501EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2023/02/08 12:0 a.m.99 views

Amazon Linux AMI : openssl (ALAS-2023-1683)

The version of openssl installed on the remote host is prior to 1.0.2k-16.162. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2023-1683 advisory. A timing-based side channel exists in the OpenSSL RSA Decryption implementation, which could be sufficient to recover...

7.5CVSS7.8AI score0.59501EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2023/02/08 12:0 a.m.56 views

SUSE SLES12: libopenssl-1_0_0-devel / libopenssl-1_0_0-devel-32bit / etc (SUSE-SU-2023:0306-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0306-1 advisory. - CVE-2023-0286: Fixed X.400 address type confusion in X.509 GENERALNAMEcmp for x400Address bsc1207533. - CVE-2023-0215: Fixed...

7.5CVSS7.1AI score0.59501EPSS
Exploits0References11
RedhatCVE
RedhatCVE
added 2023/02/07 5:30 p.m.231 views

CVE-2023-0286

A type confusion vulnerability was found in OpenSSL when OpenSSL X.400 addresses processing inside an X.509 GeneralName. When CRL checking is enabled for example, the application sets the X509VFLAGCRLCHECK flag, this vulnerability may allow an attacker to pass arbitrary pointers to a memcmp call,...

7.4CVSS7.7AI score0.59501EPSS
Exploits0References4
OSV
OSV
added 2023/02/07 12:0 p.m.41 views

RUSTSEC-2023-0006 X.400 address type confusion in X.509 `GeneralName`

There is a type confusion vulnerability relating to X.400 address processing inside an X.509 GeneralName. X.400 addresses were parsed as an ASN1STRING but the public structure definition for GENERALNAME incorrectly specified the type of the x400Address field as ASN1TYPE. This field is subsequentl...

7.4CVSS7.6AI score0.59501EPSS
Exploits0References3
RustSec
RustSec
added 2023/02/07 12:0 p.m.104 views

X.400 address type confusion in X.509 `GeneralName`

There is a type confusion vulnerability relating to X.400 address processing inside an X.509 GeneralName. X.400 addresses were parsed as an ASN1STRING but the public structure definition for GENERALNAME incorrectly specified the type of the x400Address field as ASN1TYPE. This field is subsequentl...

7.4CVSS6.7AI score0.59501EPSS
Exploits0Affected Software1
Amazon
Amazon
added 2023/02/07 12:0 a.m.129 views

Important: openssl

Issue Overview: A timing-based side channel exists in the OpenSSL RSA Decryption implementation, which could be sufficient to recover a ciphertext across a network in a Bleichenbacher style attack. To achieve a successful decryption, an attacker would have to be able to send a very large number o...

7.5CVSS7.3AI score0.59501EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2023/02/07 12:0 a.m.27 views

CVE-2022-4203

A read buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either a CA to have signed the malicious certificate or for the application to continue certificate...

4.9CVSS7.1AI score0.01481EPSS
Exploits0References3
OpenSSL
OpenSSL
added 2023/02/07 12:0 a.m.76 views

Vulnerability in OpenSSL - X.509 Name Constraints Read Buffer Overflow

A read buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either a CA to have signed the malicious certificate or for the application to continue certificate...

6.7AI score0.01481EPSS
Exploits0Affected Software1
UbuntuCve
UbuntuCve
added 2023/02/07 12:0 a.m.52 views

CVE-2023-0286

There is a type confusion vulnerability relating to X.400 address processing inside an X.509 GeneralName. X.400 addresses were parsed as an ASN1STRING but the public structure definition for GENERALNAME incorrectly specified the type of the x400Address field as ASN1TYPE. This field is subsequentl...

7.4CVSS7AI score0.59501EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2023/02/07 12:0 a.m.67 views

Ubuntu 18.04 LTS : OpenSSL vulnerabilities (USN-5845-1)

The remote Ubuntu 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5845-1 advisory. David Benjamin discovered that OpenSSL incorrectly handled X.400 address processing. A remote attacker could possibly use this issue to read arbitrary...

7.5CVSS8.2AI score0.59501EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2023/02/06 5:5 p.m.4 views

Mozilla: Revocation status of S/Mime signature certificates was not checked

The Mozilla Foundation Security Advisory describes this flaw as: Certificate OCSP revocation status was not checked when verifying S/Mime signatures. Mail signed with a revoked certificate would be displayed as having a valid signature. Thunderbird versions from 68 to 102.7.0 were affected by thi...

6.5CVSS7.3AI score0.00372EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/02/06 12:0 a.m.4 views

MediaTek 芯片缓冲区错误漏洞

MediaTek chips are a variety of chips from MediaTek, a Chinese company MediaTek. A security vulnerability exists in MediaTek keyinstall, which is caused due to a lack of boundary checking and possible out-of-bounds reads...

4.4CVSS5.1AI score0.00098EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/02/06 12:0 a.m.5 views

MediaTek 芯片安全漏洞

MediaTek chips are a variety of chips from MediaTek, a Chinese company. A security vulnerability exists in the MediaTek chips, which stems from a lack of privilege checking. An attacker could exploit the vulnerability to escalate privileges...

9.8CVSS8.4AI score0.01147EPSS
Exploits0References2
Huntr
Huntr
added 2023/02/03 7:34 a.m.14 views

Phar Deserialization of Untrusted Data

Description snappy is vulnerable to PHAR deserialization due to a lack of checking on the protocol before passing it into the fileexists function. If an attacker can upload files of any type to the server he can pass in the phar:// protocol to unserialize the uploaded file and instantiate arbitra...

0.5AI score
Exploits0References1
Rows per page
Query Builder