Lucene search
K

42 matches found

Microsoft CVE
Microsoft CVE
added 2025/09/13 1:3 a.m.6 views

crypto: x86/aegis - Add missing error checks

...

5.5CVSS7AI score0.00119EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2025/09/11 6:15 p.m.5 views

Security Bulletin: IBM Fusion HCI is vulnerable to Authorization Bypass due to Golang x/crypto (CVE-2024-45337, CVE-2025-22869)

Summary IBM Fusion HCI includes, but does not run or call, an SSH Server that is part of the Golang x/crypto module. This SSH Server is vulnerable to Denial of Service and Authorization Bypass. CVE-2024-45337, CVE-2025-22869 Vulnerability Details CVEID:CVE-2025-22869 DESCRIPTION: SSH servers whic...

9.1CVSS7.6AI score0.03092EPSS
Exploits2Affected Software2
OSV
OSV
added 2025/09/07 4:15 p.m.4 views

UBUNTU-CVE-2025-39729

In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - Fix dereferencing uninitialized error pointer Fix below smatch warnings: drivers/crypto/ccp/sev-dev.c:1312 sevplatforminitlocked error: we previously assumed 'error' could be null...

5.5CVSS5.7AI score0.00119EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/08/22 12:0 a.m.9 views

SUSE SLES15 Security Update : kernel (Live Patch 59 for SLE 15 SP3) (SUSE-SU-2025:02933-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:02933-1 advisory. This update for the Linux Kernel 5.3.18-15030059211 fixes several issues. The following security issues were fixed: - CVE-2025-38494: HID: cor...

7.8CVSS7.3AI score0.002EPSS
Exploits0References10
OSV
OSV
added 2025/08/19 5:15 p.m.15 views

AZL-66500 CVE-2025-38581 affecting package kernel for versions less than 6.6.104.2-1

In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - Fix crash when rebind ccp device for ccp.ko When CONFIGCRYPTODEVCCPDEBUGFS is enabled, rebinding the ccp device causes the following crash: $ echo '0000:0a:00.2' /sys/bus/pci/drivers/ccp/unbind $ echo '0000:0a:00.2'...

5.5CVSS5.6AI score0.00159EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/04/09 12:0 a.m.5 views

The vulnerability of the crypto/xilinx/zynqmp-aes-gcm.c component in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the crypto/xilinx/zynqmp-aes-gcm.c component in the Linux operating system is related to incorrect locking of resources. Exploiting this vulnerability could allow an attacker to cause a service failure...

3.3CVSS5.7AI score0.00231EPSS
Exploits0References16Affected Software4
Microsoft CVE
Microsoft CVE
added 2024/11/09 8:0 a.m.7 views

crypto: hisilicon/qm - inject error before stopping queue

...

7.8CVSS7.1AI score0.00259EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2024/09/11 7:0 a.m.5 views

crypto: hisilicon/sec - Fix memory leak for sec resource release

...

5.5CVSS7.3AI score0.00272EPSS
Exploits0
OSV
OSV
added 2024/07/12 1:15 p.m.5 views

UBUNTU-CVE-2024-41002

In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/sec - Fix memory leak for sec resource release The AIV is one of the SEC resources. When releasing resources, it need to release the AIV resources at the same time. Otherwise, memory leakage occurs. The aiv...

5.5CVSS6.2AI score0.00272EPSS
Exploits0References21
SUSE CVE
SUSE CVE
added 2024/07/11 3:13 a.m.5 views

SUSE CVE-2024-39493

In the Linux kernel, the following vulnerability has been resolved: crypto: qat - Fix ADFDEVRESETSYNC memory leak Using completiondone to determine whether the caller has gone away only works after a complete call. Furthermore it's still possible that the caller has not yet called...

6.1CVSS6.6AI score0.00237EPSS
Exploits0References13
Positive Technologies
Positive Technologies
added 2022/09/17 12:0 a.m.4 views

PT-2022-33885 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.61 Description: The issue is related to a problem in the crypto: hisilicon/sec module where the system does not sleep when in softirq. The actual impact and attack plausibility have not yet been proven...

7.1AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2022/06/27 12:0 a.m.5 views

The vulnerability of the CLS_PK_KeyGenMT() function in the Rambus SafeZone basic crypto module allows a hacker to calculate private RSA keys from a public key of a TLS certificate.

The vulnerability of the CLSPKKeyGenMT function in the Rambus SafeZone base crypto module is related to the use of insufficiently random values. Exploiting this vulnerability could allow an attacker, operating remotely, to calculate secret RSA keys from the public key of a TLS certificate...

9.4CVSS7.7AI score0.00862EPSS
Exploits0References7Affected Software91
OSV
OSV
added 2021/07/16 1:15 p.m.5 views

CVE-2021-1422

A vulnerability in the software cryptography module of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an authenticated, remote attacker or an unauthenticated attacker in a man-in-the-middle position to cause an unexpected reload of the...

7.7CVSS7.1AI score0.01188EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2021/04/06 12:0 a.m.10 views

The vulnerability of the p11_rpc_buffer_get_byte_array_value function in the library for working with PKCS P11-kit modules, related to writing beyond the buffer’s boundaries, allows a hacker to cause a service failure.

The vulnerability of the p11rpcbuffergetbytearrayvalue function in the library for working with PKCS P11-kit modules is related to writing beyond the buffer’s boundaries. Exploiting this vulnerability allows a remote attacker to cause service interruptions...

7.5CVSS7.2AI score0.03515EPSS
Exploits0References9Affected Software6
OSV
OSV
added 2020/08/21 9:15 p.m.2 views

ALPINE-CVE-2020-8623

In BIND 9.10.0 - 9.11.21, 9.12.0 - 9.16.5, 9.17.0 - 9.17.3, also affects 9.10.5-S1 - 9.11.21-S1 of the BIND 9 Supported Preview Edition, An attacker that can reach a vulnerable system with a specially crafted query packet can trigger a crash. To be vulnerable, the system must: be running BIND tha...

7.5CVSS6.8AI score0.06348EPSS
Exploits0References1
CNVD
CNVD
added 2020/06/08 12:0 a.m.2 views

Crypt::Perl Data Forgery Issue Vulnerability

Perl is a general-purpose, interpreted, dynamic, cross-platform programming language from the Perl community.Crypt:: Perl is one of the cryptographic modules. A data forgery issue vulnerability exists in Crypt::Perl::ECDSA in versions of Crypt::Perl prior to 0.32 Perl, which stems from a program...

8.8CVSS6.8AI score0.00709EPSS
Exploits0References1
CNVD
CNVD
added 2019/09/19 12:0 a.m.4 views

Dell RSA BSAFE Crypto-J Encryption Issue Vulnerability

Dell RSA BSAFE Crypto-J is RSA's FIPS-validated Java cryptographic module. A security vulnerability exists in Dell RSA BSAFE Crypto-J versions prior to 6.2.5. An attacker could exploit this vulnerability to force both parties to compute the same predictable shared key...

6.5CVSS9.1AI score0.01681EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2019/05/14 8:26 p.m.2 views

kernel: crypto: privilege escalation in skcipher_recvmsg function

A flaw was found in the Linux kernel's skcipher component, which affects the skcipherrecvmsg function. Attackers using a specific input can lead to a privilege escalation...

7.8CVSS7.1AI score0.00308EPSS
Exploits0References4
NVD
NVD
added 2019/05/03 4:29 p.m.30 views

CVE-2019-1706

A vulnerability in the software cryptography module of the Cisco Adaptive Security Virtual Appliance ASAv and Firepower 2100 Series running Cisco Adaptive Security Appliance ASA Software could allow an unauthenticated, remote attacker to cause an unexpected reload of the device that results in a...

8.6CVSS8.5AI score0.0107EPSS
Exploits0References1
Prion
Prion
added 2019/05/03 4:29 p.m.18 views

Race condition

A vulnerability in the software cryptography module of the Cisco Adaptive Security Virtual Appliance ASAv and Firepower 2100 Series running Cisco Adaptive Security Appliance ASA Software could allow an unauthenticated, remote attacker to cause an unexpected reload of the device that results in a...

7.8CVSS8.3AI score0.0107EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder