Lucene search
K

11 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2020/02/24 7:27 a.m.18 views

Security Bulletin: Multiple Security Vulnerabilities exist in IBM Cognos Insight

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 7 used by IBM Cognos Insight. These issues were disclosed as part of the IBM Java SDK updates in January 2018 and April 2018. Multiple Open Source OpenSSL vulnerabilities have also been addressed. Vulnerability...

7.4CVSS0.7AI score0.19295EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2019/12/18 2:26 p.m.36 views

Security Bulletin: Multiple Vulnerabilities in OpenSSL affect IBM i

Summary OpenSSL is used by IBM i. IBM i has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2018-0739 DESCRIPTION: OpenSSL is vulnerable to a denial of service. By sending specially crafted ASN.1 data with a recursive definition, a remote attacker could exploit this vulnerability ...

6.5CVSS1.9AI score0.19295EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.41 views

Fedora 28 : 1:openssl (2018-49651b2236)

Minor update to version 1.1.0h. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 7030...

6.5CVSS6.6AI score0.19295EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2018/09/24 8:40 a.m.34 views

Security Bulletin: Multiple vulnerabilities in OpenSSL affect IBM Spectrum Protect (formerly Tivoli Storage Manager) Client and IBM Spectrum Protect (formerly Tivoli Storage Manager) for Virtual Environments: Data Protection for VMware

Summary OpenSSL vulnerabilities were disclosed on March 27, 2018 by the OpenSSL Project. OpenSSL, used by the IBM Spectrum Protect formerly Tivoli Storage Manager Client and IBM Spectrum Protect for Virtual Environments formerly Tivoli Storage Manager for Virtual Environments: Data Protection for...

6.5CVSS1AI score0.19295EPSS
Exploits0Affected Software4
Tenable Nessus
Tenable Nessus
added 2018/08/24 12:0 a.m.63 views

Amazon Linux AMI : openssl (ALAS-2018-1065)

Because of an implementation bug the PA-RISC CRYPTOmemcmp function is effectively reduced to only comparing the least significant bit of each byte. This allows an attacker to forge messages that would be considered as authenticated in an amount of tries lower than that guaranteed by the security...

6.5CVSS6.6AI score0.19295EPSS
Exploits0References3
Tenable Product Security Advisories
Tenable Product Security Advisories
added 2018/06/14 4:2 p.m.721 views

[R1] Nessus Agent 7.1.0 Fixes Multiple Third-party Vulnerabilities

Nessus Agent leverages third-party software to help provide underlying functionality. Some of the third-party components were found to contain vulnerabilities, and updated versions have been made available by the providers. Out of caution and in line with good practice, Tenable opted to upgrade t...

4.3CVSS3.1AI score0.19295EPSS
Exploits0
OpenVAS
OpenVAS
added 2018/04/03 12:0 a.m.45 views

Fedora Update for openssl FEDORA-2018-40dc8b8b16

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS7.2AI score0.08606EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/04/02 12:0 a.m.38 views

Fedora 26 : 1:openssl (2018-40dc8b8b16)

Minor update to version 1.1.0h. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 7030...

6.5CVSS6.6AI score0.19295EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2018/04/02 12:0 a.m.44 views

Fedora 27 : 1:openssl (2018-76afaf1961)

Minor update to version 1.1.0h. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 7030...

6.5CVSS6.6AI score0.19295EPSS
Exploits0References3
CVE
CVE
added 2018/03/27 9:0 p.m.162 views

CVE-2018-0733

OpenSSL CVE-2018-0733 targets PA-RISC on HP-UX, where the PA-RISC CRYPTO_memcmp implementation is buggy and effectively compares only the least significant bit of each byte. This can allow forging messages to be accepted as authentic, reducing the effort needed for an attack. The vulnerability is...

5.9CVSS6AI score0.08606EPSS
Exploits0References14Affected Software1
Cvelist
Cvelist
added 2018/03/27 9:0 p.m.30 views

CVE-2018-0733 Incorrect CRYPTO_memcmp on HP-UX PA-RISC

Because of an implementation bug the PA-RISC CRYPTOmemcmp function is effectively reduced to only comparing the least significant bit of each byte. This allows an attacker to forge messages that would be considered as authenticated in an amount of tries lower than that guaranteed by the security...

6AI score0.08606EPSS
Exploits0References14
Rows per page
Query Builder