Lucene search
+L

12 matches found

Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.29 views

RHEL 8 : Red Hat Certificate System 10.4 for RHEL 8 (RHSA-2024:0774)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:0774 advisory. Red Hat Certificate System RHCS is a complete implementation of an enterprise software system designed to manage enterprise Public Key Infrastructure...

7.5CVSS7.5AI score0.01196EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/02/29 12:0 a.m.25 views

CentOS 9 : jss-5.0.3-1.el9

The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the jss-5.0.3-1.el9 build changelog. - memory leak in TLS connection leads to OOM rhel-9.0 CVE-2021-4213 Note that Nessus has not tested for this issue but has instead relied only on the...

7.5CVSS7.4AI score0.01196EPSS
Exploits0References2
OSV
OSV
added 2024/02/23 11:7 a.m.6 views

OESA-2024-1208 jss security update

JSS offers a implementation for java-based applications to use native NSS. Security Fixes: A flaw was found in JSS, where it did not properly free up all memory. Over time, the wasted memory builds up in the server memory, saturating the server’s RAM. This flaw allows an attacker to force the...

7.5CVSS6.6AI score0.01196EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/11/06 12:0 a.m.28 views

Rocky Linux 8 : pki-core:10.6 (RLSA-2022:1851)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:1851 advisory. - A flaw was found in JSS, where it did not properly free up all memory. Over time, the wasted memory builds up in the server memory, saturating the server's RAM...

7.5CVSS7.3AI score0.01196EPSS
Exploits0References9
CVE
CVE
added 2022/08/24 3:7 p.m.152 views

CVE-2021-4213

CVE-2021-4213 is a memory-leak flaw in JSS (and related PKI components like pki-core/jss) that can cause server memory to gradually exhaust RAM, enabling a denial-of-service via out-of-memory conditions. Publicly documented in multiple advisories and Nessus detections across distros (Alibaba Clou...

7.5CVSS7.1AI score0.01196EPSS
Exploits0References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/05/18 12:0 a.m.25 views

Oracle Linux 8 : pki-core:10.6 (ELSA-2022-1851)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-1851 advisory. - Bug 2046022 - CVE-2021-4213 pki-core:10.6/jss: memory leak in TLS connection leads to OOM rhel-8 Tenable has extracted the preceding description block directl...

7.5CVSS7.4AI score0.01196EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/05/12 12:0 a.m.30 views

AlmaLinux 8 : pki-core:10.6 (ALSA-2022:1851)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2022:1851 advisory. JSS: memory leak in TLS connection leads to OOM CVE-2021-4213 Tenable has extracted the preceding description block directly from the AlmaLinux security advisory...

7.5CVSS7.4AI score0.01196EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/05/11 12:0 a.m.29 views

RHEL 8 : pki-core:10.6 (RHSA-2022:1851)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:1851 advisory. The Public Key Infrastructure PKI Core contains fundamental packages required by Red Hat Certificate System. Security Fixes: JSS: memory leak in TLS...

7.5CVSS7.4AI score0.01196EPSS
Exploits0References12
RedHat Linux
RedHat Linux
added 2022/05/10 1:43 p.m.29 views

Moderate: Red Hat Security Advisory: pki-core:10.6 security and bug fix update

An update for the pki-core:10.6 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS7.1AI score0.01196EPSS
Exploits0References9
AlmaLinux
AlmaLinux
added 2022/05/10 8:4 a.m.34 views

Moderate: pki-core:10.6 security and bug fix update

The Public Key Infrastructure PKI Core contains fundamental packages required by AlmaLinux Certificate System. Security Fixes: JSS: memory leak in TLS connection leads to OOM CVE-2021-4213 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other...

7.5CVSS1.1AI score0.01196EPSS
Exploits0References2
OSV
OSV
added 2022/05/10 8:4 a.m.29 views

ALSA-2022:1851 Moderate: pki-core:10.6 security and bug fix update

The Public Key Infrastructure PKI Core contains fundamental packages required by AlmaLinux Certificate System. Security Fixes: JSS: memory leak in TLS connection leads to OOM CVE-2021-4213 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other...

7.5CVSS7.5AI score0.01196EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/05/10 12:0 a.m.29 views

CentOS 8 : pki-core:10.6 (CESA-2022:1851)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2022:1851 advisory. - JSS: memory leak in TLS connection leads to OOM CVE-2021-4213 Note that Nessus has not tested for this issue but has instead relied only on the application's...

7.5CVSS7.4AI score0.01196EPSS
Exploits0References2
Rows per page
Query Builder