Lucene search
K

265 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/06/18 7:42 p.m.65 views

Security Bulletin: Securing your products against OpenSSL and TLS vulnerabilities

Question Security Bulletin: Securing your products against OpenSSL and TLS vulnerabilities "Business Unit":"code":"BU059","label":"IBM Software w/o TPS","Product":"code":"SS8NDZ","label":"IBM Aspera","Component":"","Platform":"code":"PF025","label":"Platform Independent","Version":"All...

5.4AI score
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.6 views

MiracleLinux 4 : nss-3.19.1-3.AXS4, nss-util-3.19.1-1.AXS4 (AXSA:2015-196:01)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2015-196:01 advisory. Description: nss Network Security Services NSS is a set of libraries designed to support cross-platform development of security-enabled client and server...

4.3CVSS7.3AI score0.9986EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/03/13 12:0 a.m.9 views

Siemens SCALANCE X-200RNA Switch Devices Cryptographic Issues (CVE-2015-4000)

The TLS protocol 1.2 and earlier, when a DHEEXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHEEXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHEEXPORT and then...

4.3CVSS7.2AI score0.9986EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.29 views

openSUSE: Security Advisory for java (SUSE-SU-2023:4506-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS6.5AI score0.9986EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2023/11/22 12:0 a.m.31 views

SUSE: Security Advisory (SUSE-SU-2023:4506-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS9.1AI score0.9986EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2023/11/22 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2023:4507-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS9.1AI score0.9986EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2023/11/22 12:0 a.m.28 views

SUSE SLES15: java-1_8_0-openjdk / java-1_8_0-openjdk-accessibility / etc (SUSE-SU-2023:4506-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:4506-1 advisory. Update to version jdk8u392 icedtea-3.29.0 October 2023 CPU: - CVE-2023-22067: Fixed IOR deserialization issue in CORB...

5.3CVSS6.2AI score0.9986EPSS
Exploits1References10
Tenable Nessus
Tenable Nessus
added 2023/11/22 12:0 a.m.36 views

SUSE SLES12: java-1_8_0-openjdk / java-1_8_0-openjdk-demo / etc (SUSE-SU-2023:4507-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:4507-1 advisory. Update to version jdk8u392 icedtea-3.29.0 October 2023 CPU: - CVE-2023-22067: Fixed IOR deserialization issue in CORBA bsc1216379. ...

5.3CVSS6.2AI score0.9986EPSS
Exploits1References10
IBM Security Bulletins
IBM Security Bulletins
added 2023/04/14 2:32 p.m.35 views

Security Bulletin: IBM Integrated Management Module (IMM) is affected by multiple vulnerabilities in OpenSSL including Logjam

Summary OpenSSL vulnerabilities were disclosed on June 11, 2015 by the OpenSSL Project. This includes Logjam Attack on TLS connections using the Diffie-Hellman DH key exchange protocol CVE-2015-4000. OpenSSL is used by IBM BladeCenter Integrated Management Module IMM for System x and BladeCenter...

7.5CVSS7.8AI score0.9986EPSS
Exploits2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/04/14 2:32 p.m.36 views

Security Bulletin: Vulnerabilities in OpenSSL, including Logjam, affect IBM Flex System FC3171 8Gb SAN Switch and SAN Pass-thru firmware, QLogic 8Gb Intelligent Pass-thru Module and SAN Switch Module and QLogic Virtual Fabric Extension Module

Summary OpenSSL vulnerabilities were disclosed on June 11, 2015 by the OpenSSL Project. This includes Logjam Attack on TLS connections using the Diffie-Hellman DH key exchange protocol CVE-2015-4000. OpenSSL is used by IBM Flex System FC43171 8Gb SAN Switchand SAN Pass-thru firmware, QLogic 8Gb...

7.5CVSS6.7AI score0.9986EPSS
Exploits1Affected Software3
IBM Security Bulletins
IBM Security Bulletins
added 2023/04/14 2:32 p.m.48 views

Security Bulletin: Multiple vulnerabilities in OpenSSH, GNU C Library (glibc), and OpenSSL, including Logjam, affect Integrated Management Module II (IMM2)

Summary OpenSSL vulnerabilities were disclosed on June 11, 2015 by the OpenSSL Project. This includes Logjam Attack on TLS connections using the Diffie-Hellman DH key exchange protocol CVE-2015-4000. OpenSSL is used by Integrated Management Module II IMM2. Vulnerability Details Summary OpenSSL...

8.5CVSS9.2AI score0.9986EPSS
Exploits4Affected Software3
IBM Security Bulletins
IBM Security Bulletins
added 2023/03/25 12:44 a.m.49 views

Security Bulletin: Vulnerability in Diffie-Hellman ciphers affects TS3100/TS3200 (CVE-2015-4000)

...

4.3CVSS3.2AI score0.9986EPSS
Exploits1
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.20 views

Debian: Security Advisory (DLA-507-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS5.4AI score0.9986EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2023/03/02 12:0 a.m.46 views

SUSE SLES12 Security Update : nrpe (SUSE-SU-2023:0586-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:0586-1 advisory. - CVE-2015-4000: Fixed Logjam Attack by increasing the standard size of 512 bit dh parameters to 2048 bsc931600, bsc938906. Tenable has...

4.3CVSS6.2AI score0.9986EPSS
Exploits1References5
Ivanti
Ivanti
added 2023/02/14 7:22 a.m.29 views

SA40002 - [Pulse Secure] June 11th 2015 OpenSSL Security Advisory

Edit: 4th of March 2024 - This isn't an active SA and any new edits are part of an article maintenance project. On June 11th, 2015 the OpenSSL project announced a group of new security advisories. These issues may affect Pulse Secure products. The OpenSSL advisory can be found at the following...

7.5CVSS6.6AI score0.9986EPSS
Exploits2
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/26 3:37 a.m.66 views

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Integrated Information Core (CVE-2015-4000)

Abstract IBM WebSphere Application Server v7.0 is shipped as a component of IBM Integrated Information Core. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. Content Vulnerability Details Please consult the security...

3.7CVSS4.8AI score0.9986EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/22 3:2 a.m.33 views

Security Bulletin: Security Vulnerability in IBM WebSphere Application Server (CVE-2015-4000) Affects Asset and Service Management

Summary The LogJam Attack on Diffie-Hellman ciphers CVE-2015-4000 may affect some configurations of IBM WebSphere Application Server. The vulnerability affects Maximo Asset Management, Maximo Asset Management Essentials, Maximo Industry Solutions including Maximo for Energy Optimization, Maximo f...

3.7CVSS4.2AI score0.9986EPSS
Exploits1Affected Software15
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/15 6:50 p.m.33 views

Security Bulletin: Vulnerability with Diffie-Hellman ciphers may affect WebSphere Process Server (CVE-2015-4000)

Summary The LogJam Attack on Diffie-Hellman ciphers CVE-2015-4000 may affect some configurations of IBM WebSphere Application Server Full Profile that is shipped as a component of WebSphere Process Server. The IBM HTTP Server used by WebSphere Application Server is not affected. Vulnerability...

4.3CVSS3.7AI score0.9986EPSS
Exploits1Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/08 12:9 a.m.524 views

Security Bulletin: Vulnerability with Diffie-Hellman ciphers may affect IBM WebSphere Application Server (CVE-2015-4000)

Summary The LogJam Attack on Diffie-Hellman ciphers CVE-2015-4000 may affect some configurations of IBM WebSphere Application Server Full Profile, IBM WebSphere Application Server Liberty Profile, and IBM WebSphere Application Server Hypervisor Edition. The IBM HTTP Server used by WebSphere...

4.3CVSS3.6AI score0.9986EPSS
Exploits1Affected Software4
IBM Security Bulletins
IBM Security Bulletins
added 2022/06/01 1:5 p.m.57 views

Security Bulletin: Vulnerability in Diffie-Hellman ciphers affects IMS™ Enterprise Suite: SOAP Gateway (CVE-2015-4000)

Summary The Logjam Attack on TLSTransport Layer Security connections using the Diffie-Hellman DH key exchange protocol affects IMS™ Enterprise Suite: SOAP Gateway. Vulnerability Details CVEID: CVE-2015-4000 DESCRIPTION: The TLS protocol could allow a remote attacker to obtain sensitive informatio...

4.3CVSS4.5AI score0.9986EPSS
Exploits1Affected Software1
Rows per page
Query Builder