Lucene search
K

45 matches found

Rosalinux
Rosalinux
added 2025/04/30 8:30 a.m.25 views

Advisory ROSA-SA-2025-2858

Software: openssl 1.1.1k OS: ROSA Virtualization 3.0 packageevrstring: openssl-1.1.1k-14.0.2.rv30 CVE-ID: CVE-2020-1971 BDU-ID: 2021-00872 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the GENERALNAMEcmp function of the OpenSSL library is related to pointer dereferencing errors. Exploitation of...

7.5CVSS7.8AI score0.62906EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.11 views

Azure Linux 3.0 Security Update: edk2 / openssl (CVE-2021-4160)

The version of edk2 / openssl installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-4160 advisory. - There is a carry propagation bug in the MIPS32 and MIPS64 squaring procedure. Many EC algorithms are...

5.9CVSS6.8AI score0.03803EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2024/11/22 12:0 a.m.55 views

edk2 security update

Mon Sep 09 2024 Aaron Young - Create new 20240909 release for OL9 which includes the following fixed CVEs: - EDK2: EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access Orabug: 36990130 CVE-2024-1298 - EDK...

7.5CVSS7.4AI score0.96275EPSS
Exploits28
IBM Security Bulletins
IBM Security Bulletins
added 2024/10/25 2:45 p.m.27 views

Security Bulletin: IBM Master Data Management may provide weaker than expected security due to OpenSSL through a carry propogation flaw (CVE-2021-4160)

Summary IBM Master Data Management v11.6, and v12.0 are vulnerable to a carry propogation flaw found in OpenSSL. OpenSSL could provide weaker than expected security, caused by a carry propagation flaw in the MIPS32 and MIPS64 squaring procedure. An attacker could exploit this vulnerability to...

5.9CVSS6.2AI score0.03803EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/08/30 12:0 a.m.24 views

CBL Mariner 2.0 Security Update: openssl (CVE-2021-4160)

The version of openssl installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-4160 advisory. - There is a carry propagation bug in the MIPS32 and MIPS64 squaring procedure. Many EC algorithms are affecte...

5.9CVSS6.7AI score0.03803EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/07/25 12:0 a.m.18 views

Photon OS 3.0: Nxtgn PHSA-2022-3.0-0372

An update of the nxtgn package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2022-3.0-0372. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

5.9CVSS7.8AI score0.03803EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2024/07/22 11:1 p.m.27 views

CVE-2021-4160 affecting package edk2 for versions less than 20240223gitedc6681206c1-2

CVE-2021-4160 affecting package edk2 for versions less than 20240223gitedc6681206c1-2. An upgraded version of the package is available that resolves this issue...

5.9CVSS7AI score0.03803EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/06/07 12:0 a.m.38 views

OpenSSL 1.0.2 < 1.0.2zc Vulnerability

The version of OpenSSL installed on the remote host is prior to 1.0.2zc. It is, therefore, affected by a vulnerability as referenced in the 1.0.2zc advisory. - There is a carry propagation bug in the MIPS32 and MIPS64 squaring procedure. Many EC algorithms are affected, including some of the TLS...

5.9CVSS6.7AI score0.83645EPSS
Exploits1References4
Oracle linux
Oracle linux
added 2023/12/07 12:0 a.m.61 views

edk2 security update

20230821 - Create new 20230821 release for OL9 which includes the following fixed CVEs: CVE-2019-14560 - Update to OpenSSL 1.1.1v which includes the following fixed CVEs: CVE-2023-3817 CVE-2023-3446 CVE-2023-2650 CVE-2023-0465 CVE-2023-0466 CVE-2023-0464 CVE-2023-0286 CVE-2023-0215 CVE-2022-4450...

10CVSS7.9AI score0.96275EPSS
Exploits18
Oracle linux
Oracle linux
added 2023/12/07 12:0 a.m.61 views

edk2 security update

20230821 - Create new 20230821 release for OL7 which includes the following fixed CVEs: CVE-2019-14560 - Update to OpenSSL 1.1.1v which includes the following fixed CVEs: CVE-2023-3817 CVE-2023-3446 CVE-2023-2650 CVE-2023-0465 CVE-2023-0466 CVE-2023-0464 CVE-2023-0286 CVE-2023-0215 CVE-2022-4450...

10CVSS7.9AI score0.96275EPSS
Exploits18
IBM Security Bulletins
IBM Security Bulletins
added 2023/07/07 3:5 p.m.36 views

Security Bulletin: IBM Engineering Workflow Management (EWM) vulnerability CVE-2021-4160

Summary There is avulnerability CVE-2021-4160 which affects IBM Engineering Workflow Management EWM. Vulnerability Details CVEID:CVE-2021-4160 DESCRIPTION: OpenSSL could provide weaker than expected security, caused by a carry propagation flaw in the MIPS32 and MIPS64 squaring procedure. An...

5.9CVSS6AI score0.03803EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/02/02 5:27 p.m.47 views

Security Bulletin: IBM Aspera Orchestrator affected by vulnerability (CVE-2021-4160)

Summary Aspera Orchestrator has addressed the following vulnerability. Vulnerability Details CVEID:CVE-2021-4160 DESCRIPTION: OpenSSL could provide weaker than expected security, caused by a carry propagation flaw in the MIPS32 and MIPS64 squaring procedure. An attacker could exploit this...

5.9CVSS6AI score0.03803EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2022/07/14 12:0 a.m.19 views

Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2022-2060)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.4AI score0.70561EPSS
Exploits2References2
IBM Security Bulletins
IBM Security Bulletins
added 2022/07/11 3:35 p.m.51 views

Security Bulletin: IBM MQ for HPE NonStop Server is affected by OpenSSL vulnerability CVE-2021-4160

Summary MQ for HPE NonStop Server may be using weaker than expected security due to an algorithmic problem within OpenSSL. Vulnerability Details CVEID: CVE-2021-4160 DESCRIPTION: OpenSSL could provide weaker than expected security, caused by a carry propagation flaw in the MIPS32 and MIPS64...

5.9CVSS0.9AI score0.03803EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/05/16 12:0 a.m.75 views

Nessus Network Monitor < 6.0.1 Multiple Vulnerabilities (TNS-2022-10)

The version of Nessus Network Monitor NNM installed on the remote host is prior to 6.0.1. It is, therefore, affected by multiple vulnerabilities in third-party software. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. C...

9.8CVSS7.1AI score0.87816EPSS
Exploits7References8
IBM Security Bulletins
IBM Security Bulletins
added 2022/05/12 3:35 p.m.36 views

Security Bulletin: WebSphere MQ for HP NonStop Server is affected by OpenSSL vulnerability CVE-2021-4160

Summary WebSphere MQ for HP NonStop Server may be using weaker than expected security due to an algorithmic problem within OpenSSL. Vulnerability Details CVEID: CVE-2021-4160 DESCRIPTION: OpenSSL could provide weaker than expected security, caused by a carry propagation flaw in the MIPS32 and...

5.9CVSS0.7AI score0.03803EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/05/12 2:52 p.m.80 views

Security Bulletin: Vulnerabilities in Node.js affect IBM App Connect Enterprise & IBM Integration Bus (CVE-2021-4160)

Summary IBM App Connect Enterprise and IBM Integration Bus ship with Node.js for which vulnerabilities were reported and have been addressed. Vulnerability details are listed below. Vulnerability Details CVEID: CVE-2021-4160 DESCRIPTION: OpenSSL could provide weaker than expected security, caused...

5.9CVSS1AI score0.03803EPSS
Exploits0Affected Software2
OpenVAS
OpenVAS
added 2022/05/09 12:0 a.m.30 views

Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2022-1663)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.2AI score0.03803EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/05/06 12:0 a.m.47 views

EulerOS 2.0 SP10 : openssl (EulerOS-SA-2022-1649)

According to the versions of the openssl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - There is a carry propagation bug in the MIPS32 and MIPS64 squaring procedure. Many EC algorithms are affected, including some of the TLS 1.3...

5.9CVSS6.8AI score0.83645EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/05/05 12:0 a.m.38 views

EulerOS Virtualization 2.9.1 : openssl (EulerOS-SA-2022-1612)

According to the versions of the openssl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - There is a carry propagation bug in the MIPS32 and MIPS64 squaring procedure. Many EC algorithms are affected, including some of...

5.9CVSS6.7AI score0.83645EPSS
Exploits1References2
Rows per page
Query Builder