Lucene search
K

45 matches found

OpenVAS
OpenVAS
added 2025/05/26 12:0 a.m.11 views

Fedora: Security Advisory (FEDORA-2024-9cc95d56ce)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS7.3AI score0.02303EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2025/04/15 3:13 a.m.31 views

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data v4.8.7 is vulnerable to multiple Base OS issues

Summary IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data v4.8.7 is vulnerable to multiple Base OS issues. We have updated the base image used by our Speech Services and the following vulnerabilities have been addressed. Please read the details for remediation below. Vulnerability...

9.8CVSS9.1AI score0.02303EPSS
Exploits6Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/03/19 12:0 a.m.8 views

RockyLinux 9 : edk2 (RLSA-2024:9088)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:9088 advisory. mysql: openssl: POLY1305 MAC implementation corrupts vector registers on PowerPC CVE-2023-6129 openssl: Excessive time spent checking invalid RSA public...

6.5CVSS6.5AI score0.03174EPSS
Exploits0References9
OSV
OSV
added 2025/03/17 8:16 p.m.18 views

RLSA-2024:9088 Moderate: edk2 security update

EDK Embedded Development Kit is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM. Security Fixes: mysql: openssl: POLY1305 MAC implementation corrupts vector registers on PowerPC CVE-2023-6129 openssl: Excessive time spent...

6.5CVSS6.9AI score0.03174EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.10 views

Azure Linux 3.0 Security Update: cloud-hypervisor-cvm / hvloader / nodejs / nodejs18 / openssl (CVE-2023-6237)

The version of cloud-hypervisor-cvm / hvloader / nodejs / nodejs18 / openssl installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-6237 advisory. - Issue summary: Checking excessively long invalid RSA...

5.9CVSS6.5AI score0.02303EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2024/11/27 9:27 p.m.16 views

CVE-2023-6237 affecting package hvloader for versions less than 1.0.1-6

CVE-2023-6237 affecting package hvloader for versions less than 1.0.1-6. An upgraded version of the package is available that resolves this issue...

5.9CVSS6AI score0.02303EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/11/14 12:0 a.m.8 views

Fedora 41 : edk2 (2024-9cc95d56ce)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-9cc95d56ce advisory. Security fix for CVE-2023-6237 openssl: Excessive time spent checking invalid RSA public keys Tenable has extracted the preceding description block...

5.9CVSS6.8AI score0.02303EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/11/12 9:20 a.m.30 views

Moderate: Red Hat Security Advisory: edk2 security update

An update for edk2 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

6.5CVSS6.6AI score0.03174EPSS
Exploits0References14
OSV
OSV
added 2024/11/12 12:0 a.m.36 views

ALSA-2024:9088 Moderate: edk2 security update

EDK Embedded Development Kit is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM. Security Fixes: mysql: openssl: POLY1305 MAC implementation corrupts vector registers on PowerPC CVE-2023-6129 openssl: Excessive time spent...

6.5CVSS6.5AI score0.03174EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2024/11/12 12:0 a.m.15 views

RHEL 9 : edk2 (RHSA-2024:9088)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:9088 advisory. EDK Embedded Development Kit is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware f...

6.5CVSS6.6AI score0.03174EPSS
Exploits0References20
AlmaLinux
AlmaLinux
added 2024/11/12 12:0 a.m.31 views

Moderate: edk2 security update

EDK Embedded Development Kit is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM. Security Fixes: mysql: openssl: POLY1305 MAC implementation corrupts vector registers on PowerPC CVE-2023-6129 openssl: Excessive time spent...

6.5CVSS7AI score0.03174EPSS
Exploits0References10
OpenVAS
OpenVAS
added 2024/10/28 12:0 a.m.23 views

Fedora: Security Advisory (FEDORA-2024-45df72afc6)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS7.2AI score0.02303EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/10/28 12:0 a.m.11 views

Fedora 40 : edk2 (2024-45df72afc6)

The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-45df72afc6 advisory. Security fix for CVE-2023-6237 openssl: Excessive time spent checking invalid RSA public keys Tenable has extracted the preceding description block directly...

5.9CVSS6.7AI score0.02303EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2024/07/22 3:37 p.m.23 views

CVE-2023-6237 affecting package cloud-hypervisor-cvm for versions less than 38.0.72.2-1

CVE-2023-6237 affecting package cloud-hypervisor-cvm for versions less than 38.0.72.2-1. An upgraded version of the package is available that resolves this issue...

5.9CVSS6.9AI score0.02303EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2024/07/16 8:12 a.m.55 views

Security Bulletin: Vulnerabilities in OpenSSL affect IBM Rational ClearQuest

Summary OpenSSL vulnerabilities were disclosed by the OpenSSL Project. OpenSSL is used by IBM Rational ClearQuest. IBM Rational ClearQuest has addressed mutiple CVEs. Vulnerability Details CVEID:CVE-2023-6129 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by a flaw in the...

6.5CVSS6.8AI score0.04459EPSS
Exploits0Affected Software1
CBLMariner
CBLMariner
added 2024/07/12 11:39 p.m.20 views

CVE-2023-6237 affecting package cloud-hypervisor-cvm for versions less than 38.0.72.2-1

CVE-2023-6237 affecting package cloud-hypervisor-cvm for versions less than 38.0.72.2-1. An upgraded version of the package is available that resolves this issue...

5.9CVSS6.5AI score0.02303EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/07/03 12:0 a.m.25 views

CBL Mariner 2.0 Security Update: cloud-hypervisor-cvm / hvloader / nodejs / nodejs18 / openssl (CVE-2023-6237)

The version of cloud-hypervisor-cvm / hvloader / nodejs / nodejs18 / openssl installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-6237 advisory. - Issue summary: Checking excessively long invalid RSA...

5.9CVSS6.5AI score0.02303EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2024/06/21 9:32 a.m.17 views

CVE-2023-6237 affecting package nodejs for versions less than 20.14.0-1

CVE-2023-6237 affecting package nodejs for versions less than 20.14.0-1. An upgraded version of the package is available that resolves this issue...

5.9CVSS6.9AI score0.02303EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2024/06/03 12:11 p.m.60 views

Security Bulletin: openssl-src-300.2.1+3.2.0.crate is vulnerable to CVE-2024-0727, CVE-2023-6129, and CVE-2023-6237 used in IBM Maximo Application Suite - Edge Data Collector

Summary IBM Maximo Application Suite - Edge Data Collector uses openssl-src-300.2.1+3.2.0.crate which is vulnerable to CVE-2024-0727, CVE-2023-6129, and CVE-2023-6237 Vulnerability Details CVEID:CVE-2024-0727 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by improper input...

6.5CVSS6.6AI score0.03174EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/05/30 6:50 p.m.33 views

Security Bulletin: Denial of service vulnerabilities in Node.js affects IBM Rational Developer for i RPG and COBOL + Modernization Tools, Java Edition

Summary Node.js is used as runtime and SDK for Apache Cordova applications within IBM Rational Developer for i RPG and COBOL + Modernization Tools, Java Edition. Multiple denial of service attacks affecting Node.js have been published in this security bulletin. This bulletin identifies the steps ...

7.8CVSS7.8AI score0.04459EPSS
Exploits1Affected Software1
Rows per page
Query Builder