Lucene search
K

56 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/03 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2010-4180

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenSSL before 0.9.8q, and 1.0.x before 1.0.0c, when SSLOPNETSCAPEREUSECIPHERCHANGEBUG is enabled, does not properly prevent modification of the ciphersuite in...

4.3CVSS7AI score0.09497EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/07 12:0 a.m.23 views

OpenSSL 0.9.8 < 0.9.8q Vulnerability

The version of OpenSSL installed on the remote host is prior to 0.9.8q. It is, therefore, affected by a vulnerability as referenced in the 0.9.8q advisory. - OpenSSL before 0.9.8q, and 1.0.x before 1.0.0c, when SSLOPNETSCAPEREUSECIPHERCHANGEBUG is enabled, does not properly prevent modification o...

4.3CVSS7AI score0.09497EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.24 views

Debian: Security Advisory (DSA-2141-2)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.2AI score0.87264EPSS
Exploits14References4
F5 Networks
F5 Networks
added 2023/02/21 6:30 p.m.62 views

K12543: OpenSSL vulnerability CVE-2010-4180

Security Advisory Description Note : For information about signing up to receive security notice updates from F5, refer to K9970: Subscribe to email notifications regarding F5 products and security announcements. Note : Versions that are not listed in this article have not been evaluated for...

4.3CVSS7.2AI score0.09497EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/03/12 12:0 a.m.26 views

Solaris 10 (sparc) : 146857-01

SunOS 5.10: ssl patch for wanboot. Date this patch was last updated by Sun : Mar/23/11 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

4.3CVSS7.2AI score0.09497EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.24 views

Oracle: Security Advisory (ELSA-2010-0978)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS7.2AI score0.09497EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.37 views

Oracle: Security Advisory (ELSA-2010-0979)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.6CVSS8AI score0.22145EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.46 views

openSUSE Security Update : compat-openssl097g (openSUSE-SU-2011:0845-1)

This update adds openssl patches since 2007 for : - CVE-2008-5077 - CVE-2009-0590 - CVE-2009-0789 - CVE-2009-3555 - CVE-2010-4180 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

9.8CVSS8.1AI score0.87264EPSS
Exploits15References7
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.44 views

openSUSE Security Update : libopenssl-devel (openSUSE-SU-2011:0014-1)

Malicious clients could downgrade a connection to a low strength cipher suite on session resumption if the server offers such ciphers CVE-2010-4180. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security...

4.3CVSS7AI score0.09497EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.24 views

openSUSE Security Update : curl (openSUSE-2012-76) (BEAST)

Fix IMAP, POP3 and SMTP URL sanitization bnc740452, CVE-2012-0036 - Disable SSLOPNETSCAPEREUSECIPHERCHANGEBUG option when built against an older OpenSSL version CVE-2010-4180. - Don't enable SSLOPDONTINSERTEMPTYFRAGMENTS bnc742306, CVE-2011-3389. %NASLMINLEVEL 70300 C Tenable Network Security,...

7.5CVSS6.9AI score0.73327EPSS
Exploits4References5
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.39 views

openSUSE Security Update : curl (openSUSE-SU-2012:0229-1) (BEAST)

The following vulnerabilities have been fixed in curl : - IMAP, POP3 and SMTP URL sanitization vulnerability CVE-2012-0036 - disable SSLOPDONTINSERTEMPTYFRAGMENTS CVE-2011-3389 - disable SSLOPNETSCAPEREUSECIPHERCHANGEBUG option for older openssl versions CVE-2010-4180 %NASLMINLEVEL 70300 C Tenabl...

7.5CVSS7AI score0.73327EPSS
Exploits4References6
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.37 views

openSUSE Security Update : compat-openssl097g (openSUSE-SU-2011:0845-1)

This update adds openssl patches since 2007 for : - CVE-2008-5077 - CVE-2009-0590 - CVE-2009-0789 - CVE-2009-3555 - CVE-2010-4180 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

9.8CVSS8.1AI score0.87264EPSS
Exploits15References7
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.33 views

Oracle Linux 6 : openssl (ELSA-2010-0979)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2010-0979 advisory. - disable code for SSLOPNETSCAPEREUSECIPHERCHANGEBUG - CVE-2010-3864 649304 Tenable has extracted the preceding description block directly from the...

7.6CVSS7.8AI score0.22145EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.42 views

Oracle Linux 5 : openssl (ELSA-2010-0978)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2010-0978 advisory. 0.9.8e-12.7 - fix CVE-2010-4180 - completely disable code for SSLOPNETSCAPEREUSECIPHERCHANGEBUG 659462 Tenable has extracted the preceding description...

4.3CVSS7.3AI score0.09497EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2013/07/10 12:0 a.m.30 views

SuSE 10 Security Update : libcurl4 (ZYPP Patch Number 8618) (BEAST)

This update of curl fixes several security issues : - libcurl URL decode buffer boundary flaw. bnc824517 / CVE-2013-2174 - cookie domain tailmatch. bnc814655 / CVE-2013-1944 - curl sets SSLOPALL. bnc742306 / CVE-2011-3389 - When SSLOPNETSCAPEREUSECIPHERCHANGEBUG is enabled, does not properly...

6.8CVSS7.2AI score0.73327EPSS
Exploits7References8
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.20 views

Scientific Linux Security Update : openssl on SL6.x i386/x86_64

A ciphersuite downgrade flaw was found in the OpenSSL SSL/TLS server code. A remote attacker could possibly use this flaw to change the ciphersuite associated with a cached session stored on the server, if the server enabled the SSLOPNETSCAPEREUSECIPHERCHANGEBUG option, possibly forcing the clien...

4.3CVSS6.9AI score0.09497EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.35 views

Scientific Linux Security Update : openssl on SL4.x, SL5.x i386/x86_64

A ciphersuite downgrade flaw was found in the OpenSSL SSL/TLS server code. A remote attacker could possibly use this flaw to change the ciphersuite associated with a cached session stored on the server, if the server enabled the SSLOPNETSCAPEREUSECIPHERCHANGEBUG option, possibly forcing the clien...

10CVSS6.9AI score0.09497EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2011/12/13 12:0 a.m.39 views

SuSE 10 Security Update : compat-openssl097g (ZYPP Patch Number 7645)

This update adds openssl patches since 2007 for : - CVE-2009-0590 - CVE-2008-5077 - CVE-2009-0789 - CVE-2009-3555 - CVE-2010-4180 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. if NASLLEVEL 3000 exit0; include'deprecatednasllevel.inc';...

9.8CVSS8.1AI score0.87264EPSS
Exploits15References10
Tenable Nessus
Tenable Nessus
added 2011/12/13 12:0 a.m.32 views

SuSE 10 Security Update : OpenSSL (ZYPP Patch Number 7462)

Malicious clients could have downgraded a connection to a low strength cipher suite on session resumption if the server offers such ciphers CVE-2010-4180. This has been fixed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...

4.3CVSS6.8AI score0.09497EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2011/10/28 12:0 a.m.50 views

VMSA-2011-0013 : VMware third-party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX

a. ESX third-party update for Service Console openssl RPM The Service Console openssl RPM is updated to openssl-0.9.8e.12.el55.7 resolving two security issues. The Common Vulnerabilities and Exposures project cve.mitre.org has assigned the names CVE-2008-7270 and CVE-2010-4180 to these issues. b...

10CVSS8.1AI score0.8425EPSS
Exploits29References65
Rows per page
Query Builder