Lucene search
+L

34 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2021-40528

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ElGamal implementation in Libgcrypt before 1.9.4 allows plaintext recovery because, during interaction between two cryptographic libraries, a certain...

5.9CVSS9.2AI score0.01423EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.11 views

TencentOS Server 3: libgcrypt (TSSA-2022:0129)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2022:0129 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

5.9CVSS6.6AI score0.01423EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/12/27 12:0 a.m.24 views

NewStart CGSL MAIN 6.06 : libgcrypt Vulnerability (NS-SA-2023-0085)

The remote NewStart CGSL host, running version MAIN 6.06, has libgcrypt packages installed that are affected by a vulnerability: - The ElGamal implementation in Libgcrypt before 1.9.4 allows plaintext recovery because, during interaction between two cryptographic libraries, a certain dangerous...

5.9CVSS6.7AI score0.01423EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2023/11/06 12:0 a.m.58 views

Rocky Linux 8 : libgcrypt (RLSA-2022:5311)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:5311 advisory. - The ElGamal implementation in Libgcrypt before 1.9.4 allows plaintext recovery because, during interaction between two cryptographic libraries, a certain...

5.9CVSS6.6AI score0.01423EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:37 a.m.3 views

SUSE CVE-2021-40528

The ElGamal implementation in Libgcrypt before 1.9.4 allows plaintext recovery because, during interaction between two cryptographic libraries, a certain dangerous combination of the prime defined by the receiver's public key, the generator defined by the receiver's public key, and the sender's...

5.9CVSS7.3AI score0.01423EPSS
Exploits1References3
IBM Security Bulletins
IBM Security Bulletins
added 2023/01/12 9:59 p.m.27 views

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a cross-configuration attack against OpenPGP (CVE-2021-40528)

Summary IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a cross-configuration attack against OpenPGP due to a flaw in GnuPG Libgcrypt. CVE-2021-40528. GnuPG Libgcrypt is used as part of the base image included in our service components. Please read the details for...

5.9CVSS6.4AI score0.01423EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/11/04 6:0 p.m.23 views

Security Bulletin: IBM App Connect Enterprise Certified Container may be vulnerable to security restriction bypass due to CVE-2021-40528

Summary GnuPG Libgcrypt is provided as part of the base operating sysem in IBM App Connect Enterprise Certified Container. IBM App Connect Enterprise Certified Container operator and operands may be vulnerable to security restriction bypass. This bulletin provides patch information to address the...

5.9CVSS6.5AI score0.01423EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/07/21 12:0 a.m.31 views

AlmaLinux 8 : libgcrypt (5311) (ALSA-2022:5311)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2022:5311 advisory. - The ElGamal implementation in Libgcrypt before 1.9.4 allows plaintext recovery because, during interaction between two cryptographic libraries, a certain dangero...

5.9CVSS6.6AI score0.01423EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/07/08 12:0 a.m.99 views

Oracle Linux 8 : libgcrypt (ELSA-2022-9564)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-9564 advisory. 1.8.5-7fips - Add API to provide hash calculation in RSA/DSA/ECDSA signature operations Orabug: 33081130 - Change Epoch from 1 to 10 1.8.5-7 - Fix CVE-2021-3356...

7.5CVSS6.7AI score0.02342EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/07/01 12:0 a.m.126 views

Oracle Linux 8 : libgcrypt (ELSA-2022-5311)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-5311 advisory. 1.8.5-7 - Fix CVE-2021-33560 2018525 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus ha...

7.5CVSS6.7AI score0.02342EPSS
Exploits1References2
AlmaLinux
AlmaLinux
added 2022/06/30 12:0 a.m.41 views

Moderate: libgcrypt security update

The libgcrypt library provides general-purpose implementations of various cryptographic algorithms. Security Fixes: libgcrypt: ElGamal implementation allows plaintext recovery CVE-2021-40528 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other...

5.9CVSS2.1AI score0.01423EPSS
Exploits1References4
OSV
OSV
added 2022/06/28 10:51 a.m.24 views

RLSA-2022:5311 Moderate: libgcrypt security update

The libgcrypt library provides general-purpose implementations of various cryptographic algorithms. Security Fixes: libgcrypt: ElGamal implementation allows plaintext recovery CVE-2021-40528 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other...

5.9CVSS6.9AI score0.01423EPSS
Exploits1References2
Rockylinux
Rockylinux
added 2022/06/28 10:51 a.m.27 views

libgcrypt security update

An update is available for libgcrypt. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The libgcrypt library provides general-purpose implementations of various...

5.9CVSS2AI score0.01423EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2022/04/18 12:0 a.m.22 views

EulerOS Virtualization 2.10.0 : libgcrypt (EulerOS-SA-2022-1404)

According to the versions of the libgcrypt package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The ElGamal implementation in Libgcrypt before 1.9.4 allows plaintext recovery because, during interaction between two...

5.9CVSS6.7AI score0.01423EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/04/18 12:0 a.m.36 views

EulerOS Virtualization 2.10.1 : libgcrypt (EulerOS-SA-2022-1378)

According to the versions of the libgcrypt package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The ElGamal implementation in Libgcrypt before 1.9.4 allows plaintext recovery because, during interaction between two...

5.9CVSS6.7AI score0.01423EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/04/13 12:0 a.m.21 views

Huawei EulerOS: Security Advisory for libgcrypt (EulerOS-SA-2022-1378)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS7AI score0.01423EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/02/25 12:0 a.m.24 views

EulerOS 2.0 SP10 : libgcrypt (EulerOS-SA-2022-1228)

According to the versions of the libgcrypt package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The ElGamal implementation in Libgcrypt before 1.9.4 allows plaintext recovery because, during interaction between two cryptographic libraries...

5.9CVSS6.7AI score0.01423EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/02/25 12:0 a.m.27 views

EulerOS 2.0 SP10 : libgcrypt (EulerOS-SA-2022-1209)

According to the versions of the libgcrypt packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The ElGamal implementation in Libgcrypt before 1.9.4 allows plaintext recovery because, during interaction between two cryptographic librarie...

5.9CVSS6.7AI score0.01423EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/02/24 12:0 a.m.15 views

Huawei EulerOS: Security Advisory for libgcrypt (EulerOS-SA-2022-1173)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS7AI score0.01423EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/02/23 12:0 a.m.30 views

EulerOS 2.0 SP3 : libgcrypt (EulerOS-SA-2022-1173)

According to the versions of the libgcrypt packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Libgcrypt before 1.8.8 and 1.9.x before 1.9.3 mishandles ElGamal encryption because it lacks exponent blinding to address a side-channel atta...

7.5CVSS6.7AI score0.02342EPSS
Exploits1References2
Rows per page
Query Builder