Lucene search
K

4 matches found

OpenVAS
OpenVAS
added 2017/06/23 12:0 a.m.35 views

MatrixSSL < 3.9.3 Multiple Vulnerabilities

MatrixSSL is prone multiple vulnerabilities. Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS9.6AI score0.02344EPSS
Exploits6References3
OSV
OSV
added 2017/06/22 9:29 p.m.4 views

CVE-2017-2781

An exploitable heap buffer overflow vulnerability exists in the X509 certificate parsing functionality of InsideSecure MatrixSSL 3.8.7b. A specially crafted x509 certificate can cause a buffer overflow on the heap resulting in remote code execution. To trigger this vulnerability, a specially...

9.8CVSS6.3AI score0.02344EPSS
Exploits2References2
CVE
CVE
added 2017/06/22 9:0 p.m.60 views

CVE-2017-2781

CVE-2017-2781 concerns InsideSecure MatrixSSL 3.8.7b. The vulnerability is a heap-based buffer overflow in the X509 certificate parsing code, specifically in the IssuerPolicy/PolicyMappings handling inside parsePolicyMappings. A specially crafted DER-encoded X.509 certificate (containing OID sequ...

9.8CVSS9.8AI score0.02344EPSS
Exploits2References2Affected Software1
Talos Blog
Talos Blog
added 2017/06/22 10:37 a.m.50 views

Vulnerability Spotlight: Multiple Vulnerabilities in InsideSecure MatrixSSL

These vulnerabilities were discovered by Aleksandar Nikolic of Cisco TalosOverviewMatrixSSL is a TLS/SSL stack offered in the form of a Software Development Kit SDK that is geared towards application in Internet of Things IOT devices and other embedded systems. It features low resource overhead a...

7.5CVSS0.8AI score0.02344EPSS
Exploits6
Rows per page
Query Builder