Lucene search
K

28 matches found

Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.4 views

TencentOS Server 2: openssl (TSSA-2023:0334)

The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0334 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities...

5.9CVSS7AI score0.04763EPSS
Exploits4References3
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2018-0735

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The OpenSSL ECDSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm...

5.9CVSS6.6AI score0.04763EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2024/11/22 12:0 a.m.49 views

edk2 security update

Mon Sep 09 2024 Aaron Young - Create new 20240909 release for OL9 which includes the following fixed CVEs: - EDK2: EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access Orabug: 36990130 CVE-2024-1298 - EDK...

7.5CVSS7.4AI score0.95764EPSS
Exploits28
Oracle linux
Oracle linux
added 2023/12/07 12:0 a.m.59 views

edk2 security update

20230821 - Create new 20230821 release for OL9 which includes the following fixed CVEs: CVE-2019-14560 - Update to OpenSSL 1.1.1v which includes the following fixed CVEs: CVE-2023-3817 CVE-2023-3446 CVE-2023-2650 CVE-2023-0465 CVE-2023-0466 CVE-2023-0464 CVE-2023-0286 CVE-2023-0215 CVE-2022-4450...

10CVSS7.9AI score0.95764EPSS
Exploits18
Oracle linux
Oracle linux
added 2023/12/07 12:0 a.m.57 views

edk2 security update

20230821 - Create new 20230821 release for OL7 which includes the following fixed CVEs: CVE-2019-14560 - Update to OpenSSL 1.1.1v which includes the following fixed CVEs: CVE-2023-3817 CVE-2023-3446 CVE-2023-2650 CVE-2023-0465 CVE-2023-0466 CVE-2023-0464 CVE-2023-0286 CVE-2023-0215 CVE-2022-4450...

10CVSS7.9AI score0.95764EPSS
Exploits18
Tenable Nessus
Tenable Nessus
added 2023/09/07 12:0 a.m.27 views

Oracle Linux 8 : openssl (ELSA-2019-3700)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-3700 advisory. 1.1.1c-2 - do not try to use EC groups disallowed in FIPS mode in TLS - fix Valgrind regression with constant-time code 1.1.1c-1 - update to the 1.1.1c...

7.4CVSS6.7AI score0.12154EPSS
Exploits0References4
F5 Networks
F5 Networks
added 2023/02/21 6:34 p.m.65 views

K43741620: OpenSSL vulnerabilities CVE-2018-0734 and CVE-2018-0735

Security Advisory Description CVE-2018-0734 The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.1a Affected 1.1.1. Fixed in OpenSSL 1.1.0j...

5.9CVSS6.2AI score0.12154EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2018:3945-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.9AI score0.12154EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2018:3863-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.5AI score0.12154EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2021/01/04 6:41 a.m.43 views

Security Bulletin: Vulnerability in OpenSSL affects IBM Integrated Analytics System

Summary Redhat provided OpenSSL package is used by IBM Integrated Analytics System. IBM Integrated Analytics System has addressed the applicable CVE. Vulnerability Details CVEID: CVE-2018-0735 DESCRIPTION: OpenSSL could allow a remote attacker to obtain sensitive information, caused by a timing...

5.9CVSS2AI score0.04763EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/06/17 12:0 a.m.53 views

EulerOS 2.0 SP2 : openssl110f (EulerOS-SA-2020-1629)

According to the versions of the openssl110f packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The OpenSSL ECDSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in...

5.9CVSS6.5AI score0.17139EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2020/02/22 12:5 a.m.217 views

Security Bulletin: Multiple vulnerabilities in OpenSSL affect IBM Spectrum Protect Plus (CVE-2018-0735, CVE-2018-0734, CVE-2018-5407)

Summary OpenSSL vulnerabilities were discllossed by the OpenSSL Project in October and November of 2018. IBM Spectrum Protect Plus uses OpenSSL and has addressed the applicable CVEs. 20 February 2020 - Changed fixing level from 10.1.5 to 10.1.5 patch1. 21 February 2020 - Provided link to 10.1.5...

5.9CVSS1.2AI score0.12154EPSS
Exploits4Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/11/06 12:0 a.m.39 views

RHEL 8 : openssl (RHSA-2019:3700)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:3700 advisory. OpenSSL is a toolkit that implements the Secure Sockets Layer SSL and Transport Layer Security TLS protocols, as well as a full-strength...

7.4CVSS6.7AI score0.12154EPSS
Exploits0References18
IBM Security Bulletins
IBM Security Bulletins
added 2019/05/03 2:35 p.m.25 views

Security Bulletin: Multiple vulnerabilities in Node.js affect IBM Cloud App Management V2018

Summary There are multiple vulnerabilities in Node.js used by IBM® Cloud App Management V2018. IBM® Cloud App Management has addressed the applicable CVEs in a later version. Vulnerability Details CVEID: CVE-2018-12122 DESCRIPTION: Node.js is vulnerable to a denial of service, caused by improper...

7.5CVSS0.6AI score0.41288EPSS
Exploits4Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2019/03/29 11:0 a.m.43 views

Security Bulletin: IBM Event Streams is affected by OpenSSL vulnerabilities

Summary IBM Event Streams has addressed the following vulnerabilities in the OpenSSL versions shipped. Vulnerability Details CVEID: CVE-2018-0734 DESCRIPTION: OpenSSL could allow a remote attacker to obtain sensitive information, caused by a timing side channel attack in the DSA signature...

5.9CVSS0.7AI score0.12154EPSS
Exploits4Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/03/27 12:0 a.m.54 views

openSUSE Security Update : openssl-1_1 (openSUSE-2019-956)

This update for openssl-11 fixes the following issues : Security issues fixed : - CVE-2018-0734: timing vulnerability in DSA signature generation bsc1113652. - CVE-2018-0735: timing vulnerability in ECDSA signature generation bsc1113651. This update was imported from the SUSE:SLE-15:Update update...

5.9CVSS6.3AI score0.12154EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2019/02/19 5:40 p.m.40 views

Security Bulletin: Multiple vulnerabilities in Node.js affects IBM Rational Application Developer for WebSphere Software included in Rational Developer for i and Rational Developer for AIX and Linux

Summary Portions of IBM Rational Application Developer for WebSphere Software are shipped as a component of Rational Developer for i RPG and COBOL + Modernization Tools, Java and EGL editions, and Rational Developer for AIX and Linux. Multiple Node.js vulnerabilities have been discovered that...

8.1CVSS0.4AI score0.41288EPSS
Exploits4Affected Software2
Tenable Nessus
Tenable Nessus
added 2019/02/07 12:0 a.m.39 views

Photon OS 1.0: Openssl PHSA-2018-1.0-0199

An update of the openssl package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2018-1.0-0199. The text itself is copyright C VMware, Inc. include"compat.inc"; if description...

5.9CVSS7.6AI score0.12154EPSS
Exploits4References4
Tenable Nessus
Tenable Nessus
added 2019/01/25 12:0 a.m.91 views

OpenSSL 1.1.0 < 1.1.0j Multiple Vulnerabilities

The version of OpenSSL installed on the remote host is prior to 1.1.0j. It is, therefore, affected by multiple vulnerabilities as referenced in the 1.1.0j advisory. - The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use...

5.9CVSS6.4AI score0.12154EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2019/01/18 12:0 a.m.38 views

Fedora 29 : 1:openssl (2019-a8ffcff7ee)

Minor update to version 1.1.1a with bug fixes and low impact security fixes. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...

5.9CVSS6.2AI score0.12154EPSS
Exploits1References4
Rows per page
Query Builder