Lucene search
K

2876 matches found

Tenable Nessus
Tenable Nessus
added 2021/05/14 12:0 a.m.45 views

FreeBSD : ImageMagick7 -- multiple vulnerabilities (a7c60af1-b3f1-11eb-a5f7-a0f3c100ae18)

CVE reports : Several vulnerabilities have been discovered in ImageMagick : - CVE-2021-20313: A flaw was found in ImageMagick in versions before 7.0.11. A potential cipher leak when the calculate signatures in TransformSignature is possible. - CVE-2021-20312: A flaw was found in ImageMagick in...

7.8CVSS6.6AI score0.0703EPSS
Exploits1References14
NVD
NVD
added 2021/05/11 11:15 p.m.19 views

CVE-2021-20313

A flaw was found in ImageMagick in versions before 7.0.11. A potential cipher leak when the calculate signatures in TransformSignature is possible. The highest threat from this vulnerability is to data confidentiality...

7.5CVSS0.01782EPSS
Exploits0References3
OSV
OSV
added 2021/05/11 11:15 p.m.1 views

DEBIAN-CVE-2021-20313

A flaw was found in ImageMagick in versions before 7.0.11. A potential cipher leak when the calculate signatures in TransformSignature is possible. The highest threat from this vulnerability is to data confidentiality...

7.5CVSS6.3AI score0.01782EPSS
Exploits0References1
OSV
OSV
added 2021/05/11 11:15 p.m.23 views

CVE-2021-20313

A flaw was found in ImageMagick in versions before 7.0.11. A potential cipher leak when the calculate signatures in TransformSignature is possible. The highest threat from this vulnerability is to data confidentiality...

7.5CVSS6.2AI score
Exploits0References3
Prion
Prion
added 2021/05/11 11:15 p.m.26 views

Design/Logic Flaw

A flaw was found in ImageMagick in versions before 7.0.11. A potential cipher leak when the calculate signatures in TransformSignature is possible. The highest threat from this vulnerability is to data confidentiality...

5CVSS6.9AI score0.01782EPSS
Exploits0References3Affected Software2
UbuntuCve
UbuntuCve
added 2021/05/11 11:15 p.m.30 views

CVE-2021-20313

A flaw was found in ImageMagick in versions before 7.0.11. A potential cipher leak when the calculate signatures in TransformSignature is possible. The highest threat from this vulnerability is to data confidentiality...

7.5CVSS6.7AI score0.01782EPSS
Exploits0References5
OSV
OSV
added 2021/05/11 11:15 p.m.1 views

UBUNTU-CVE-2021-20313

A flaw was found in ImageMagick in versions before 7.0.11. A potential cipher leak when the calculate signatures in TransformSignature is possible. The highest threat from this vulnerability is to data confidentiality...

7.5CVSS6.7AI score0.01782EPSS
Exploits0References6
Cvelist
Cvelist
added 2021/05/11 12:0 a.m.21 views

CVE-2021-20313

A flaw was found in ImageMagick in versions before 7.0.11. A potential cipher leak when the calculate signatures in TransformSignature is possible. The highest threat from this vulnerability is to data confidentiality...

7.5AI score0.01782EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2021/05/11 12:0 a.m.36 views

CVE-2021-20313

A flaw was found in ImageMagick in versions before 7.0.11. A potential cipher leak when the calculate signatures in TransformSignature is possible. The highest threat from this vulnerability is to data confidentiality...

7.5CVSS7.4AI score0.01782EPSS
Exploits0
CVE
CVE
added 2021/05/11 12:0 a.m.248 views

CVE-2021-20313

CVE-2021-20313 is a vulnerability in ImageMagick prior to 7.0.11 describing a potential cipher leak when calculating signatures in TransformSignature, with data confidentiality as the highest concern. The connected advisories (Astra Linux, Debian LTS, Cloud Foundry USNs) confirm ImageMagick invol...

7.5CVSS7.2AI score0.01782EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2021/05/11 12:0 a.m.36 views

CVE-2021-20313

A flaw was found in ImageMagick in versions before 7.0.11. A potential cipher leak when the calculate signatures in TransformSignature is possible. The highest threat from this vulnerability is to data confidentiality...

7.5CVSS6.7AI score0.01782EPSS
Exploits0
OSV
OSV
added 2021/04/30 5:35 p.m.122 views

GHSA-XRX6-FMXQ-RJJ2 Timing attacks in python-rsa

It was found that python-rsa is vulnerable to Bleichenbacher timing attacks. An attacker can use this flaw via the RSA decryption API to decrypt parts of the cipher text encrypted with RSA...

8.2CVSS6.3AI score0.01631EPSS
Exploits1References18
Hacker One
Hacker One
added 2021/04/28 4:6 p.m.130 views

Ruby: imap: StartTLS stripping attack (CVE-2016-0772).

net/imap does not seem to raise an exception when the remote end imap server fails to respond with taggedresponse NO/BAD or OK to an explicit call of imap.starttls. This may allow a malicious MITM to perform a starttls stripping attack if the client code does not explicitly set usessl = true on...

5.8CVSS0.1AI score0.14524EPSS
Exploits4
RedHat Linux
RedHat Linux
added 2021/04/27 11:49 a.m.4 views

nss: TLS 1.3 CCS flood remote DoS Attack

A flaw was found in the way NSS handled CCS ChangeCipherSpec messages in TLS 1.3. This flaw allows a remote attacker to send multiple CCS messages, causing a denial of service for servers compiled with the NSS library. The highest threat from this vulnerability is to system availability...

7.5CVSS7.3AI score0.03854EPSS
Exploits0References5
OSV
OSV
added 2021/04/23 4:5 p.m.6 views

OPENSUSE-SU-2021:0606-1 Security update for ImageMagick

This update for ImageMagick fixes the following issues: - CVE-2021-20309: Division by zero in WaveImage of MagickCore/visual-effects. bsc1184624 - CVE-2021-20311: Division by zero in sRGBTransformImage in MagickCore/colorspace.c bsc1184626 - CVE-2021-20312: Integer overflow in WriteTHUMBNAILImage...

7.8CVSS7.7AI score0.0238EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2021/04/23 12:0 a.m.14 views

PT-2021-5860 · Libcurl +1 · Libcurl +1

Name of the Vulnerable Software and Affected Versions: libcurl versions 7.61.0 through 7.76.1 Description: The issue is related to the implementation of the Transport Layer Security TLS protocol in the libcurl library, specifically with errors in security settings when using the CURLOPT SSL CIPHE...

9.8CVSS7.3AI score0.88077EPSS
Exploits27References462
Hacker One
Hacker One
added 2021/04/22 10:39 p.m.37 views

curl: CVE-2021-22897: schannel cipher selection surprise

Summary: Commit "schannel: support selecting ciphers" added support for selecting the ciphers with SCHANNEL. However, due to use of a static algIds array for ciphers in setsslciphers the last configured cipher list will override configuration used by other connections, leading to potential wrong...

4.3CVSS5.8AI score0.02979EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2021/04/21 12:0 a.m.34 views

SUSE SLED15 / SLES15 Security Update : ImageMagick (SUSE-SU-2021:1276-1)

This update for ImageMagick fixes the following issues : CVE-2021-20309: Division by zero in WaveImage of MagickCore/visual-effects. bsc1184624 CVE-2021-20311: Division by zero in sRGBTransformImage in MagickCore/colorspace.c bsc1184626 CVE-2021-20312: Integer overflow in WriteTHUMBNAILImage of...

7.8CVSS7.5AI score0.0238EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2021/04/21 12:0 a.m.34 views

SUSE SLES12 Security Update : ImageMagick (SUSE-SU-2021:1277-1)

This update for ImageMagick fixes the following issues : CVE-2021-20309: Division by zero in WaveImage of MagickCore/visual-effects. bsc1184624 CVE-2021-20311: Division by zero in sRGBTransformImage in MagickCore/colorspace.c bsc1184626 CVE-2021-20312: Integer overflow in WriteTHUMBNAILImage of...

7.8CVSS7.5AI score0.0238EPSS
Exploits0References13
OSV
OSV
added 2021/04/20 12:33 p.m.6 views

SUSE-SU-2021:1277-1 Security update for ImageMagick

This update for ImageMagick fixes the following issues: - CVE-2021-20309: Division by zero in WaveImage of MagickCore/visual-effects. bsc1184624 - CVE-2021-20311: Division by zero in sRGBTransformImage in MagickCore/colorspace.c bsc1184626 - CVE-2021-20312: Integer overflow in WriteTHUMBNAILImage...

7.8CVSS7.7AI score0.0238EPSS
Exploits0References9
Rows per page
Query Builder