Lucene search
K

8 matches found

RedHat Linux
RedHat Linux
added 2024/11/12 9:20 a.m.5 views

openssl: denial of service via null dereference

A flaw was found in OpenSSL. The optional ContentInfo fields can be set to null, even if the "type" is a valid value, which can lead to a null dereference error that may cause a denial of service...

5.5CVSS7.1AI score0.03174EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/04/30 10:36 a.m.3 views

openssl: denial of service via null dereference

A flaw was found in OpenSSL. The optional ContentInfo fields can be set to null, even if the "type" is a valid value, which can lead to a null dereference error that may cause a denial of service...

5.5CVSS7.1AI score0.03174EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2024/01/25 5:20 p.m.99 views

CVE-2024-0727

A flaw was found in OpenSSL. The optional ContentInfo fields can be set to null, even if the "type" is a valid value, which can lead to a null dereference error that may cause a denial of service. Mitigation Mitigation for this issue is either not available or the currently available options don'...

5.5CVSS5.8AI score0.03174EPSS
Exploits0References5
IBM Security Bulletins
IBM Security Bulletins
added 2022/02/23 7:48 p.m.49 views

Security Bulletin: Vulnerabilities in OpenSSL affect Network Intrusion Prevention System (CVE-2015-0209, CVE-2015-0286, CVE-2015-0287, CVE-2015-0288, CVE-2015-0289, CVE-2015-0292, CVE-2015-0293)

Summary OpenSSL vulnerabilities were disclosed on March 19, 2015 by the OpenSSL Project. OpenSSL is used by IBM Security Intrusion Prevention System. IBM Security Intrusion Prevention System has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2015-0209 DESCRIPTION: OpenSSL could...

7.5CVSS8.2AI score0.44503EPSS
Exploits1Affected Software1
OpenVAS
OpenVAS
added 2020/09/29 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for openssl098e (EulerOS-SA-2020-2076)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS7.5AI score0.98685EPSS
Exploits0References2
OSV
OSV
added 2019/12/05 1:15 a.m.0 views

DEBIAN-CVE-2019-19553

In Wireshark 3.0.0 to 3.0.6 and 2.6.0 to 2.6.12, the CMS dissector could crash. This was addressed in epan/dissectors/asn1/cms/packet-cms-template.c by ensuring that an object identifier is set to NULL after a ContentInfo dissection...

7.5CVSS7.5AI score0.04128EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2019/12/05 1:15 a.m.26 views

CVE-2019-19553

In Wireshark 3.0.0 to 3.0.6 and 2.6.0 to 2.6.12, the CMS dissector could crash. This was addressed in epan/dissectors/asn1/cms/packet-cms-template.c by ensuring that an object identifier is set to NULL after a ContentInfo dissection...

7.5CVSS7.1AI score0.04128EPSS
Exploits0References4
OSV
OSV
added 2015/03/17 12:0 a.m.1 views

UBUNTU-CVE-2015-0289

The PKCS7 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not properly handle a lack of outer ContentInfo, which allows attackers to cause a denial of service NULL pointer dereference and application crash by leveraging an applicati...

5CVSS6.8AI score0.0837EPSS
Exploits0References3
Rows per page
Query Builder