Lucene search
K

8 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.26 views

Mageia: Security Advisory (MGASA-2018-0163)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.04884EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2018/04/23 12:0 a.m.31 views

GLSA-201804-19 : mbed TLS: Multiple vulnerabilites

The remote host is affected by the vulnerability described in GLSA-201804-19 mbed TLS: Multiple vulnerabilites Multiple vulnerabilities have been discovered in mbed TLS. Please review the CVE identifiers referenced below for details. Impact : A remote attacker, through multiple vectors, could...

9.8CVSS8.6AI score0.04884EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2018/03/22 12:0 a.m.29 views

Debian DSA-4147-1 : polarssl - security update

Several vulnerabilities were discovered in PolarSSL, a lightweight crypto and SSL/TLS library, that allowed a remote attacker to either cause a denial-of-service by application crash, or execute arbitrary code. C Tenable Network Security, Inc. The descriptive text and package checks in this plugi...

9.8CVSS8.4AI score0.04884EPSS
Exploits0References8
Debian
Debian
added 2018/03/21 2:27 p.m.28 views

[SECURITY] [DSA 4147-1] polarssl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4147-1 [email protected] https://www.debian.org/security/ Sebastien Delafond March 21, 2018 https://www.debian.org/security/faq -...

9.8CVSS10AI score0.04884EPSS
Exploits0
Mageia
Mageia
added 2018/03/10 8:47 p.m.39 views

Updated mbedtls and related packages fix security vulnerabilities

The mbedtls package has been updated to fix several security issues. Fixed a heap corruption issue in the implementation of the truncated HMAC extension. When the truncated HMAC extension is enabled and CBC is used, sending a malicious application packet could be used to selectively corrupt 6 byt...

9.8CVSS2.7AI score0.04884EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2018/03/01 12:0 a.m.24 views

Fedora Update for mbedtls FEDORA-2018-eb58dc8a6f

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.03175EPSS
Exploits0References2
CVE
CVE
added 2018/02/13 3:0 p.m.99 views

CVE-2018-0488

mbed TLS on ARM prior to version 2.7.0 is vulnerable to CVE-2018-0488 when the truncated HMAC extension and CBC are used. A crafted TLS/DTLS packet can enable remote arbitrary code execution or a denial of service via heap corruption. Remediation per connected sources: upgrade to the fixed releas...

9.8CVSS9.4AI score0.04884EPSS
Exploits0References6Affected Software1
Debian CVE
Debian CVE
added 2018/02/13 3:0 p.m.28 views

CVE-2018-0488

ARM mbed TLS before 1.3.22, before 2.1.10, and before 2.7.0, when the truncated HMAC extension and CBC are used, allows remote attackers to execute arbitrary code or cause a denial of service heap corruption via a crafted application packet within a TLS or DTLS session...

9.8CVSS9.7AI score0.04884EPSS
Exploits0
Rows per page
Query Builder