Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.2 views

Siemens SIMATIC S7-1500 Exposure of Resource to Wrong Sphere (CVE-2019-12904)

In Libgcrypt 1.8.4, the C implementation of AES is vulnerable to a flush-and-reload side-channel attack because physical addresses are available to other processes. The C implementation is used on platforms where an assembly-language implementation is unavailable. NOTE: the vendor's position is...

5.9CVSS6.7AI score0.02063EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2019-12904

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Libgcrypt 1.8.4, the C implementation of AES is vulnerable to a flush-and-reload side-channel attack because physical addresses are available to other...

5.9CVSS6.4AI score0.02063EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.17 views

RHEL 6 : libgcrypt (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libgcrypt: Use of left-to-right sliding window method allows full RSA key recovery CVE-2017-7526 -...

6.8CVSS7.5AI score0.03885EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2019:1971-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.5AI score0.02063EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2019:1859-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.5AI score0.02063EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/04/15 12:0 a.m.26 views

Photon OS 1.0: Libgcrypt PHSA-2020-1.0-0288

An update of the libgcrypt package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-1.0-0288. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

5.9CVSS6.7AI score0.02063EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.26 views

Huawei EulerOS: Security Advisory for libgcrypt (EulerOS-SA-2019-2107)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.3CVSS6.7AI score0.02063EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/07/26 12:0 a.m.18 views

SUSE SLED15 / SLES15 Security Update : libgcrypt (SUSE-SU-2019:1971-1)

This update for libgcrypt fixes the following issues : Security issue fixed : CVE-2019-12904: Fixed a flush-and-reload side-channel attack in the AES implementation bsc1138939. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisor...

5.9CVSS6.6AI score0.02063EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2019/07/24 12:0 a.m.20 views

openSUSE: Security Advisory for libgcrypt (openSUSE-SU-2019:1792-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

5.9CVSS6.4AI score0.02063EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/07/17 12:0 a.m.26 views

SUSE SLED15 / SLES15 Security Update : libgcrypt (SUSE-SU-2019:1859-1)

This update for libgcrypt fixes the following issues : Security issues fixed : CVE-2019-12904: The C implementation of AES is vulnerable to a flush-and-reload side-channel attack because physical addresses are available to other processes. The C implementation is used on platforms where an...

5.9CVSS6.5AI score0.02063EPSS
Exploits0References6
OSV
OSV
added 2019/06/20 12:15 a.m.9 views

CVE-2019-12904

In Libgcrypt 1.8.4, the C implementation of AES is vulnerable to a flush-and-reload side-channel attack because physical addresses are available to other processes. The C implementation is used on platforms where an assembly-language implementation is unavailable. NOTE: the vendor's position is...

5.9CVSS5.8AI score
Exploits0References5
CVE
CVE
added 2019/06/19 11:34 p.m.325 views

CVE-2019-12904

CVE-2019-12904 affects Libgcrypt 1.8.4’s C AES implementation. The vulnerability arises from a flush-and-reload side-channel when physical addresses are exposed to other processes (used on platforms lacking an assembly AES). IBM’s bulletin lists the CVE and notes the vendor’s position that the is...

5.9CVSS5.8AI score0.02063EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder