Lucene search
K

69 matches found

OpenVAS
OpenVAS
added 2021/11/11 12:0 a.m.11 views

Mozilla Firefox Security Advisory (MFSA2014-73) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

7.5CVSS6.9AI score0.1617EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.11 views

SUSE: Security Advisory (SUSE-SU-2014:1220-4)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.2AI score0.1617EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2014:1220-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.9AI score0.1617EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.8 views

SUSE: Security Advisory (SUSE-SU-2014:1220-3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.2AI score0.1617EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.16 views

SUSE: Security Advisory (SUSE-SU-2014:1510-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.3AI score0.1617EPSS
Exploits1References2
CVE
CVE
added 2018/11/07 8:0 p.m.57 views

CVE-2018-16253

CVE-2018-16253 describes a flaw in axTLS 2.1.3 and earlier where PKCS#1 v1.5 signature verification in sig_verify() of x509.c does not properly verify ASN.1 metadata, enabling a remote attacker to forge signatures under small public exponents and impersonate via fake X.509 certificates. The issue...

5.9CVSS5.7AI score0.00618EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2018/09/26 9:29 p.m.30 views

CVE-2018-16152

In verifyemsapkcs1signature in gmprsapublickey.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data in the digestAlgorithm.parameters field during PKCS1 v1.5 signature verification. Consequently, a remote attacker can forge...

7.5CVSS5.8AI score0.01888EPSS
Exploits0References8
Prion
Prion
added 2018/09/26 9:29 p.m.23 views

Design/Logic Flaw

In verifyemsapkcs1signature in gmprsapublickey.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data in the digestAlgorithm.parameters field during PKCS1 v1.5 signature verification. Consequently, a remote attacker can forge...

5CVSS6.6AI score0.1617EPSS
Exploits0References8Affected Software3
AlpineLinux
AlpineLinux
added 2018/09/26 9:0 p.m.59 views

CVE-2018-16152

In verifyemsapkcs1signature in gmprsapublickey.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data in the digestAlgorithm.parameters field during PKCS1 v1.5 signature verification. Consequently, a remote attacker can forge...

7.5CVSS7.1AI score0.01888EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2018/09/24 2:0 p.m.33 views

CVE-2018-16152

In verifyemsapkcs1signature in gmprsapublickey.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data in the digestAlgorithm.parameters field during PKCS1 v1.5 signature verification. Consequently, a remote attacker can forge...

7.5CVSS6.8AI score0.01888EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 2:55 p.m.36 views

Security Bulletin: Tivoli Common Reporting iFixes for multiple Security Vulnerabilities (CVE-2014-3566,CVE-2014-6145,CVE-2014-1568,CVE-2014-4263,CVE-2014-3513,CVE-2014-3567,CVE-2014-3568,CVE-2014-0107,CVE-2014-0075,CVE-2014-0096,CVE-2014-0099,CVE-2014-011

Summary Tivoli Common Reporting TCR interim fixes addresses Security Vulnerability and Exposure - CVE-2014-3566, CVE-2014-6145, CVE-2014-1568, CVE-2014-4263, CVE-2014-3513, CVE-2014-3567, CVE-2014-3568, CVE-2014-0107, CVE-2014-0075, CVE-2014-0096, CVE-2014-0099, CVE-2014-0119, CVE-2014-0878 and...

7.5CVSS0.5AI score0.99999EPSS
Exploits19Affected Software1
OpenVAS
OpenVAS
added 2015/10/16 12:0 a.m.28 views

SUSE: Security Advisory for mozilla-nss (SUSE-SU-2014:1220-3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.1617EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2015/10/16 12:0 a.m.22 views

SUSE: Security Advisory for mozilla-nss (SUSE-SU-2014:1220-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.1617EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.24 views

Oracle: Security Advisory (ELSA-2014-1948)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.1617EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.15 views

Oracle: Security Advisory (ELSA-2014-1307)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.4AI score0.1617EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/05/27 12:0 a.m.28 views

SUSE SLED12 / SLES12 Security Update : MozillaFirefox / mozilla-nss (SUSE-SU-2014:1510-1)

update to Firefox 31.2.0 ESR bnc900941 - MFSA 2014-74/CVE-2014-1574/CVE-2014-1575 bmo1001994, bmo1011354, bmo1018916, bmo1020034, bmo1023035, bmo1032208, bmo1033020, bmo1034230, bmo1061214, bmo1061600, bmo1064346, bmo1072044, bmo1072174 Miscellaneous memory safety hazards rv:33.0/rv:31.2 - MFSA...

7.5CVSS7.6AI score0.1617EPSS
Exploits1References23
Tenable Nessus
Tenable Nessus
added 2014/11/08 12:0 a.m.19 views

RHEL 4 / 5 / 6 : nss (RHSA-2014:1371)

Updated nss packages that fix one security issue are now available for Red Hat Enterprise Linux 4 Extended Life Cycle Support, Red Hat Enterprise Linux 5.6 Long Life, Red Hat Enterprise Linux 5.9 Extended Update Support, Red Hat Enterprise Linux 6.2 Advanced Update Support, and Red Hat Enterprise...

7.5CVSS6.9AI score0.1617EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2014/11/08 12:0 a.m.293 views

RHEL 6 : rhev-hypervisor6 (RHSA-2014:1354) (Shellshock)

An updated rhev-hypervisor6 package that fixes several security issues is now available. Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available for each...

10CVSS8.5AI score0.99999EPSS
Exploits142References11
Check Point Advisories
Check Point Advisories
added 2014/10/19 12:0 a.m.2 views

Mozilla Network Security Services RSA Signature Forgery (CVE-2014-1568)

An RSA signature forgery vulnerability exists in Mozilla Network Security Services NSS, the cryptographic library used in many applications including Firefox and Google Chrome. The vulnerability is a result of improper verification of RSA signatures due to incorrect ASN.1 parsing of the DigestInf...

7.5CVSS2AI score0.1617EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/10/12 12:0 a.m.15 views

Amazon Linux AMI : nss-util (ALAS-2014-422)

A flaw was found in the way NSS parsed ASN.1 Abstract Syntax Notation One input from certain RSA signatures. A remote attacker could use this flaw to forge RSA certificates by providing a specially crafted signature to an application using NSS. C Tenable Network Security, Inc. The descriptive tex...

7.5CVSS6.9AI score0.1617EPSS
Exploits0References2
Rows per page
Query Builder