Lucene search
K

6 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2022/09/26 5:45 a.m.52 views

Security Bulletin: IBM Tivoli Netcool System Service Monitors/Application Service Monitors is affected by multiple OpenSSL vulnerabilities

Abstract A number of security vulnerabilities have been discovered in the OpenSSL libraries included in IBM Tivoli Netcool System Service Monitors/Application Service Monitors. Content VULNERABILITY DETAILS: CVE Ids: CVE-2012-2131 CVE-2012-2110 CVE-2012-0884 CVE-2012-0050 CVE-2011-4108...

9.3CVSS7.2AI score0.54372EPSS
Exploits12Affected Software1
OpenVAS
OpenVAS
added 2021/08/16 12:0 a.m.37 views

OpenSSL: JPAKE validation error (20101202) - Linux

OpenSSL is prone to a JPAKE validation error. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS9.1AI score0.08076EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2015/10/14 12:0 a.m.91 views

F5 BIG-IP - OpenSSL vulnerability CVE-2010-4252

The remote host is missing a security patch. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/h:f5:big-ip"; if description...

7.5CVSS8.2AI score0.08076EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2015/10/12 12:0 a.m.74 views

F5 Networks BIG-IP : OpenSSL vulnerability (K17382)

OpenSSL before 1.0.0c, when J-PAKE is enabled, does not properly validate the public parameters in the J-PAKE protocol, which allows remote attackers to bypass the need for knowledge of the shared secret, and successfully authenticate, by sending crafted values in each round of the protocol...

7.5CVSS8.1AI score0.08076EPSS
Exploits1References2
Prion
Prion
added 2010/12/06 10:30 p.m.426 views

Design/Logic Flaw

OpenSSH 5.6 and earlier, when J-PAKE is enabled, does not properly validate the public parameters in the J-PAKE protocol, which allows remote attackers to bypass the need for knowledge of the shared secret, and successfully authenticate, by sending crafted values in each round of the protocol, a...

7.5CVSS6.8AI score0.08076EPSS
Exploits2References7Affected Software1
CVE
CVE
added 2010/12/06 9:0 p.m.470 views

CVE-2010-4252

OpenSSL CVE-2010-4252: When J-PAKE is enabled, OpenSSL

7.5CVSS8.9AI score0.08076EPSS
In wildExploits1References16Affected Software1
Rows per page
Query Builder