Lucene search
K

96 matches found

RedHat Linux
RedHat Linux
added 2020/12/15 2:59 p.m.5 views

kernel: Buffer over-read in crypto_authenc_extractkeys() when a payload longer than 4 bytes is not aligned.

A buffer over-read flaw was found in cryptoauthencextractkeys in crypto/authenc.c in the IPsec Cryptographic algorithm's module, authenc. When a payload longer than 4 bytes, and is not following 4-byte alignment boundary guidelines, it causes a buffer over-read threat, leading to a system crash...

5.5CVSS7.2AI score0.00491EPSS
Exploits1References4
Citrix
Citrix
added 2020/10/22 12:0 a.m.5 views

Citrix ADC FIPS Compliance/Validation FAQ

General Overview 1. What are Federal Information Processing Standards FIPS? FIPS are standards and guidelines for federal computer systems that are developed by National Institute of Standards and Technology NIST in accordance with the Federal Information Security Management Act FISMA and approve...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2020/01/08 12:0 a.m.31 views

CentOS Update for nss-softokn CESA-2019:4190 centos7

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.2AI score0.02994EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/12/27 12:0 a.m.151 views

CentOS 7 : nss / nss-softokn / nss-util (CESA-2019:4190)

An update for nss, nss-softokn, and nss-util is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...

8.8CVSS7.5AI score0.02994EPSS
Exploits0References5
Cent OS
Cent OS
added 2019/12/24 3:55 p.m.367 views

nss security update

CentOS Errata and Security Advisory CESA-2019:4190 An update for nss, nss-softokn, and nss-util is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which...

8.8CVSS6.8AI score0.02994EPSS
Exploits0References7
Cent OS
Cent OS
added 2019/12/11 5:44 p.m.494 views

nss security update

CentOS Errata and Security Advisory CESA-2019:4152 An update for nss-softokn is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

8.8CVSS6.8AI score0.02994EPSS
Exploits0References7
BDU FSTEC
BDU FSTEC
added 2019/06/06 12:0 a.m.6 views

The vulnerability of the CAPICOM cryptographic module, related to errors in code generation, allows a perpetrator to execute arbitrary code.

The vulnerability of the CAPICOM cryptographic module is related to errors in code generation control. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9.3CVSS6AI score0.75678EPSS
Exploits0References4Affected Software1
Fedora
Fedora
added 2018/09/21 5:42 a.m.21 views

[SECURITY] Fedora 29 Update: nss-softokn-3.39.0-2.fc29

Network Security Services Softoken Cryptographic Module...

5.9CVSS2.2AI score0.01496EPSS
Exploits0
Fedora
Fedora
added 2018/09/18 7:52 a.m.32 views

[SECURITY] Fedora 27 Update: nss-softokn-3.39.0-1.0.fc27

Network Security Services Softoken Cryptographic Module...

5.9CVSS2.2AI score0.01496EPSS
Exploits0
Fedora
Fedora
added 2018/09/14 11:14 p.m.24 views

[SECURITY] Fedora 28 Update: nss-softokn-3.39.0-1.0.fc28

Network Security Services Softoken Cryptographic Module...

5.9CVSS2.2AI score0.01496EPSS
Exploits0
Carbon Black Blog
Carbon Black Blog
added 2018/03/08 2:0 p.m.52 views

What Is FIPS 140-2 & Why Does It Matter?

Editor's Note: Ray Potter, the blog's author, is the CEO and Co-founder of SafeLogic. Carbon Black has just announced the successful FIPS 140-2 validation of their Carbon Black Cryptographic Module and availability within their Cb Response and Cb Protection products. Our team at SafeLogic is...

6.8AI score
Exploits0
CNVD
CNVD
added 2018/01/04 12:0 a.m.1 views

CRYPTO module null pointer reference vulnerability in multiple Huawei products

Huawei DP300, RP200, TE30/40/50/60, TP3106/3206, and ViewPoint 9030 are Huawei's all-in-one Desktop Intelligence products and HD video conferencing terminals for high-end customers. A buffer overflow vulnerability exists in the CRYPTO module of multiple Huawei products, which is due to the progra...

7AI score
Exploits0References1
Fedora
Fedora
added 2015/11/10 12:51 a.m.16 views

[SECURITY] Fedora 21 Update: nss-softokn-3.20.1-1.0.fc21

Network Security Services Softoken Cryptographic Module...

7.1AI score
Exploits0
Fedora
Fedora
added 2015/11/04 10:25 p.m.12 views

[SECURITY] Fedora 22 Update: nss-softokn-3.20.1-1.0.fc22

Network Security Services Softoken Cryptographic Module...

7.1AI score
Exploits0
Fedora
Fedora
added 2015/11/04 8:56 p.m.15 views

[SECURITY] Fedora 23 Update: nss-softokn-3.20.1-1.0.fc23

Network Security Services Softoken Cryptographic Module...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2015/10/07 12:0 a.m.19 views

Cisco ASA Unauthorized Modification Vulnerability (Cisco-SA-20150714-CVE-2015-4458)

This VT has been deprecated and replaced by the VT SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.6AI score0.00982EPSS
Exploits0References1
CVE
CVE
added 2015/07/18 10:0 a.m.87 views

CVE-2015-4458

CVE-2015-4458 affects Cisco ASA and related products where the Cavium cryptographic-module TLS code fails to verify the MAC field. The root cause is an error in the Cavium firmware that allows a remote attacker to modify TLS packets without detection, enabling MITM content spoofing. Connected sou...

4.3CVSS6.5AI score0.00982EPSS
Exploits0References2Affected Software1
OpenVAS
OpenVAS
added 2015/07/15 12:0 a.m.41 views

Cisco ASA Message Authentication Code Vulnerability (Cisco-SA-20150714-CVE-2015-4458)

Cisco ASA is prone to a Message Authentication Code checking vulnerability. Copyright C 2015 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is...

4.3CVSS6.8AI score0.00982EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2015/07/09 12:0 a.m.7 views

The vulnerability of Cisco ASA network firewalls allows attackers to gain access to traffic transmitted via IPSec and IKEv2 protocols.

The vulnerability of the Cisco ASA firewall’s cryptographic module is related to errors in cryptographic transformations. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain access to traffic transmitted via IPSec and IKEv2 protocols through a “man-in-the-middle...

4.3CVSS5.5AI score0.0129EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2015/06/29 4:43 p.m.4 views

postgresql: pgcrypto has multiple error messages for decryption with an incorrect key.

It was discovered that the pgcrypto module could return different error messages when decrypting certain data with an incorrect key. This could potentially help an authenticated user to launch a possible cryptographic attack, although no suitable attack is currently known...

7.5CVSS7.3AI score0.03965EPSS
Exploits0References4
Rows per page
Query Builder