Lucene search
K

25 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2018-10845

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - It was found that the GnuTLS implementation of HMAC-SHA-384 was vulnerable to a Lucky thirteen style attack. Remote attackers could use this flaw to conduct...

5.9CVSS6.4AI score0.03623EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.18 views

Mageia: Security Advisory (MGASA-2018-0435)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.1AI score0.03623EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.18 views

SUSE: Security Advisory (SUSE-SU-2018:2930-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.0499EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2018:2842-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.1AI score0.0499EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2020/05/08 12:0 a.m.44 views

Fedora 31 : mingw-gnutls (2020-d14280a6e8)

https://lists.gnupg.org/pipermail/gnutls-help/2020-March/004642.html Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...

7.4CVSS6.3AI score0.03623EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.32 views

Huawei EulerOS: Security Advisory for gnutls (EulerOS-SA-2019-1136)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.1AI score0.03623EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.20 views

Huawei EulerOS: Security Advisory for gnutls (EulerOS-SA-2019-1112)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.1AI score0.03623EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2019/05/31 12:0 a.m.59 views

Ubuntu: Security Advisory (USN-3999-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.1AI score0.58969EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2019/04/30 12:0 a.m.31 views

EulerOS 2.0 SP3 : gnutls (EulerOS-SA-2019-1292)

According to the version of the gnutls packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - It was found that GnuTLS's implementation of HMAC-SHA-384 was vulnerable to a Lucky Thirteen-style attack. A remote attacker could use this flaw to...

5.9CVSS6.5AI score0.03623EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/04/02 12:0 a.m.27 views

EulerOS 2.0 SP5 : gnutls (EulerOS-SA-2019-1136)

According to the version of the gnutls packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - It was found that GnuTLS's implementation of HMAC-SHA-384 was vulnerable to a Lucky Thirteen-style attack. A remote attacker could use this flaw to...

5.9CVSS6.5AI score0.03623EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/04/02 12:0 a.m.30 views

EulerOS 2.0 SP2 : gnutls (EulerOS-SA-2019-1112)

According to the version of the gnutls packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - It was found that GnuTLS's implementation of HMAC-SHA-384 was vulnerable to a Lucky Thirteen-style attack. A remote attacker could use this flaw to...

5.9CVSS6.5AI score0.03623EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2019/02/20 4:35 p.m.36 views

Security Bulletin: IBM MQ Appliance is affected by GnuTLS vulnerabilities (CVE-2018-10845 and CVE-2018-10844)

Summary IBM MQ Appliance has addressed the following GnuTLS vulnerabilities. Vulnerability Details CVEID: CVE-2018-10845 DESCRIPTION: GnuTLS could allow a remote attacker to obtain sensitive information, caused by a flaw in the implementation of HMAC-SHA-384. By sending a specially-crafted packet...

5.9CVSS1AI score0.03623EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/12/17 2:20 p.m.34 views

Security Bulletin: Vulnerabilities in GnuTLS affect PowerKVM

Summary PowerKVM is affected by vulnerabilities in GnuTLS. IBM has now addressed these vulnerabilities. Vulnerability Details CVEID: CVE-2018-10846 DESCRIPTION: GnuTLS could allow a local authenticated attacker to obtain sensitive information, caused by a cache-based side channel issue. By using ...

5.9CVSS0.7AI score0.03623EPSS
Exploits0Affected Software1
Cent OS
Cent OS
added 2018/12/14 4:36 p.m.195 views

gnutls security update

CentOS Errata and Security Advisory CESA-2018:3050 An update for gnutls is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

5.9CVSS6.3AI score0.03623EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2018/12/10 12:0 a.m.35 views

Amazon Linux 2 : gnutls (ALAS-2018-1120)

It was found that GnuTLS's implementation of HMAC-SHA-256 was vulnerable to Lucky Thirteen-style attack. A remote attacker could use this flaw to conduct distinguishing attacks and plain text recovery attacks via statistical analysis of timing data using crafted packets.CVE-2018-10844 It was foun...

5.9CVSS6.3AI score0.03623EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2018/11/04 12:0 a.m.52 views

Debian: Security Advisory (DLA-1560-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.2AI score0.03623EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2018/10/26 12:0 a.m.23 views

openSUSE: Security Advisory for gnutls (openSUSE-SU-2018:2958-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.1AI score0.0499EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2018/10/22 12:0 a.m.32 views

SUSE SLES12 Security Update : gnutls (SUSE-SU-2018:2825-2)

This update for gnutls fixes the following issues : This update for gnutls fixes the following issues : Security issues fixed : Improved mitigations against Lucky 13 class of attacks 'Just in Time' PRIME + PROBE cache-based side channel attack can lead to plaintext recovery CVE-2018-10846,...

7.5CVSS6.6AI score0.0499EPSS
Exploits1References13
Tenable Nessus
Tenable Nessus
added 2018/10/03 12:0 a.m.30 views

openSUSE Security Update : gnutls (openSUSE-2018-1092)

This update for gnutls fixes the following security issues : - Improved mitigations against Lucky 13 class of attacks - CVE-2018-10846: 'Just in Time' PRIME + PROBE cache-based side channel attack can lead to plaintext recovery bsc1105460 - CVE-2018-10845: HMAC-SHA-384 vulnerable to Lucky thirtee...

7.5CVSS6.6AI score0.0499EPSS
Exploits1References8
OPENSUSE Linux
OPENSUSE Linux
added 2018/10/01 12:8 p.m.55 views

Security update for gnutls (moderate)

This update for gnutls fixes the following security issues: - Improved mitigations against Lucky 13 class of attacks - CVE-2018-10846: "Just in Time" PRIME + PROBE cache-based side channel attack can lead to plaintext recovery bsc1105460 - CVE-2018-10845: HMAC-SHA-384 vulnerable to Lucky thirteen...

5CVSS0.7AI score0.0499EPSS
Exploits1References4
Rows per page
Query Builder