Lucene search
K

23 matches found

F5 Networks
F5 Networks
added 2023/02/21 6:7 p.m.37 views

K05909237: BouncyCastle Java crypto vulnerability CVE-2017-13098

Security Advisory Description BouncyCastle TLS prior to version 1.0.3, when configured to use the JCE Java Cryptography Extension for cryptographic functions, provides a weak Bleichenbacher oracle when any TLS cipher suite using RSA key exchange is negotiated. An attacker can recover the private...

7.5CVSS6.6AI score0.24282EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2022/11/21 8:35 a.m.29 views

Security Bulletin: Vulnerability in Bouncy Castle used by Logstash shipped with IBM Operations Analytics - Log Analysis (CVE-2017-13098)

Summary There is a potential vulnerability that could allow attacker obtain sensitive information in Bouncy Castle TLS used by Logstash Vulnerability Details CVEID:CVE-2017-13098 DESCRIPTION: Bouncy Castle could allow a remote attacker to obtain sensitive information, caused by an RSA Adaptive...

7.5CVSS6.2AI score0.24282EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/02/05 7:10 p.m.84 views

Security Bulletin: Bouncy Castle as used by IBM QRadar SIEM contains multiple vulnerabilities (CVE-2018-1000613, CVE-2017-13098, CVE-2018-1000180)

Summary Bouncy Castle as used by IBM QRadar SIEM contains multiple vulnerabilities Vulnerability Details CVEID: CVE-2018-1000613 DESCRIPTION: Legion of the Bouncy Castle Java Cryptography APIs could allow a remote attacker to execute arbitrary code on the system, caused by an unsafe reflection fl...

9.8CVSS2.1AI score0.24282EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2020/05/04 12:0 a.m.34 views

openSUSE: Security Advisory for bouncycastle (openSUSE-SU-2020:0607-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS7.9AI score0.24282EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/05/04 12:0 a.m.44 views

openSUSE Security Update : bouncycastle (openSUSE-2020-607)

This update for bouncycastle fixes the following issues : Version update to 1.60 : - CVE-2018-1000613: Use of Externally-ControlledInput to Select Classes or Code boo1100694 - Release notes: http://www.bouncycastle.org/releasenotes.html Version update to 1.59 : - CVE-2017-13098: Fix against...

9.8CVSS6.4AI score0.24282EPSS
Exploits0References5
OSV
OSV
added 2020/05/03 4:19 p.m.9 views

OPENSUSE-SU-2020:0607-1 Security update for bouncycastle

This update for bouncycastle fixes the following issues: Version update to 1.60: CVE-2018-1000613: Use of Externally-ControlledInput to Select Classes or Code boo1100694 Release notes: http://www.bouncycastle.org/releasenotes.html Version update to 1.59: CVE-2017-13098: Fix against Bleichenbacher...

9.8CVSS8.8AI score0.24282EPSS
Exploits0References5
OPENSUSE Linux
OPENSUSE Linux
added 2020/05/03 12:0 a.m.66 views

Security update for bouncycastle (moderate)

openSUSE Security Update: Security update for bouncycastle Announcement ID: openSUSE-SU-2020:0607-1 Rating: moderate References: 1072697 1100694 Cross-References: CVE-2017-13098 CVE-2018-1000613 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available...

9.8CVSS6.7AI score0.24282EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/03/27 12:0 a.m.48 views

openSUSE Security Update : bouncycastle (openSUSE-2019-546)

This update for bouncycastle fixes the following issues : Security issues fixed : - CVE-2018-1000613: Fix use of Externally-Controlled Input to Select Classes or Code 'Unsafe Reflection' boo1100694. - CVE-2017-13098: Fix against Bleichenbacher oracle when not using the lightweight APIs boo1072697...

9.8CVSS6.4AI score0.24282EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.45 views

Fedora 28 : bouncycastle (2018-ceced55c5e)

Security fixes for CVE-2017-13098 and CVE-2018-1000180 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...

7.5CVSS6.8AI score0.24282EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2018/10/26 12:0 a.m.33 views

openSUSE: Security Advisory for bouncycastle (openSUSE-SU-2018:2131-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS7.9AI score0.24282EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2018/08/30 12:0 a.m.60 views

Fedora Update for bouncycastle FEDORA-2018-e6894349c9

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.2AI score0.04767EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/07/30 12:0 a.m.42 views

openSUSE Security Update : bouncycastle (openSUSE-2018-776)

This update for bouncycastle fixes the following issues : Security issues fixed : - CVE-2018-1000613: Fix use of Externally-Controlled Input to Select Classes or Code 'Unsafe Reflection' boo1100694. - CVE-2017-13098: Fix against Bleichenbacher oracle when not using the lightweight APIs boo1072697...

9.8CVSS6.4AI score0.24282EPSS
Exploits0References4
OPENSUSE Linux
OPENSUSE Linux
added 2018/07/28 4:4 p.m.73 views

Security update for bouncycastle (moderate)

This update for bouncycastle fixes the following issues: Security issues fixed: - CVE-2018-1000613: Fix use of Externally-Controlled Input to Select Classes or Code 'Unsafe Reflection' boo1100694. - CVE-2017-13098: Fix against Bleichenbacher oracle when not using the lightweight APIs boo1072697...

4.3CVSS1.3AI score0.24282EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2018/06/19 12:0 a.m.46 views

Fedora Update for bouncycastle FEDORA-2018-da9fe79871

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7AI score0.03592EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2018/06/19 12:0 a.m.49 views

Fedora Update for bouncycastle FEDORA-2018-ceced55c5e

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7AI score0.24282EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2018/06/15 12:0 a.m.37 views

openSUSE: Security Advisory for bouncycastle (openSUSE-SU-2018:1689-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS6.8AI score0.24282EPSS
Exploits0References2
OPENSUSE Linux
OPENSUSE Linux
added 2018/06/14 12:7 p.m.97 views

Security update for bouncycastle (moderate)

This update for bouncycastle to version 1.59 fixes the following issues: These security issues were fixed: - CVE-2017-13098: BouncyCastle, when configured to use the JCE Java Cryptography Extension for cryptographic functions, provided a weak Bleichenbacher oracle when any TLS cipher suite using...

4.3CVSS1.1AI score0.24282EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2018/06/14 12:0 a.m.47 views

openSUSE Security Update : bouncycastle (openSUSE-2018-628)

This update for bouncycastle to version 1.59 fixes the following issues : These security issues were fixed : - CVE-2017-13098: BouncyCastle, when configured to use the JCE Java Cryptography Extension for cryptographic functions, provided a weak Bleichenbacher oracle when any TLS cipher suite usin...

7.5CVSS6.5AI score0.24282EPSS
Exploits0References22
Debian
Debian
added 2017/12/21 10:23 p.m.38 views

[SECURITY] [DSA 4072-1] bouncycastle security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4072-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff December 21, 2017 https://www.debian.org/security/faq -...

7.5CVSS6.6AI score0.24282EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2017/12/17 12:0 a.m.70 views

ROBOT TLS_RSA Scanning Attempt (CVE-2012-5081; CVE-2016-6883; CVE-2017-1000385; CVE-2017-12373; CVE-2017-13098; CVE-2017-13099; CVE-2017-17382; CVE-2017-17427; CVE-2017-17428; CVE-2017-17841; CVE-2017-6168)

ROBOT Detect Scanner is a vulnerability scanning product. Remote attackers can use ROBOT Detect Scanner to detect vulnerabilities on a target server...

7.1CVSS3.3AI score0.45113EPSS
Exploits1
Rows per page
Query Builder