Lucene search
K

111 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/04/01 9:46 a.m.6 views

Security Bulletin: IBM Cloud Pak for Data System (CPDS 1.0) is affected by denial of service due to Python cryptography package

Summary The Python cryptography package is used by IBM Cloud Pak for Data System to provide cryptographic functionality. CVE-2024-0727 affects the underlying OpenSSL library used by the cryptography package. Processing a maliciously formatted PKCS12 file may cause a NULL pointer dereference in...

5.5CVSS6.7AI score0.03174EPSS
Exploits0Affected Software1
CBLMariner
CBLMariner
added 2025/04/08 9:12 p.m.19 views

CVE-2024-0727 affecting package hvloader for versions less than 1.0.1-9

CVE-2024-0727 affecting package hvloader for versions less than 1.0.1-9. A patched version of the package is available...

5.5CVSS7AI score0.03174EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/19 12:0 a.m.8 views

RockyLinux 9 : edk2 (RLSA-2024:9088)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:9088 advisory. mysql: openssl: POLY1305 MAC implementation corrupts vector registers on PowerPC CVE-2023-6129 openssl: Excessive time spent checking invalid RSA public...

6.5CVSS6.5AI score0.03174EPSS
Exploits0References9
OSV
OSV
added 2025/03/17 8:16 p.m.17 views

RLSA-2024:9088 Moderate: edk2 security update

EDK Embedded Development Kit is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM. Security Fixes: mysql: openssl: POLY1305 MAC implementation corrupts vector registers on PowerPC CVE-2023-6129 openssl: Excessive time spent...

6.5CVSS6.9AI score0.03174EPSS
Exploits0References5
Rosalinux
Rosalinux
added 2025/03/01 9:21 p.m.21 views

Advisory ROSA-SA-2025-2730

Software: openssl 1.1.1k OS: ROSA Virtualization 3.0 packageevrstring: openssl-1.1.1k-12.0.2.rv30 CVE-ID: CVE-2024-0727 BDU-ID: 2024-01337 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the PKCS12parse, PKCS12unpackp7data, PKCS12unpackp7encdata, PKCS12unpackauthsafes, and PKCS12newpass functions ...

5.5CVSS6.5AI score0.03174EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.18 views

Azure Linux 3.0 Security Update: cloud-hypervisor-cvm / hvloader / kata-containers / kata-containers-cc / nodejs / openssl (CVE-2024-0727)

The version of cloud-hypervisor-cvm / hvloader / kata-containers / kata-containers-cc / nodejs / openssl installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-0727 advisory. - Issue summary: Processing ...

5.5CVSS6.4AI score0.03174EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/01/28 10:8 p.m.16 views

Security Bulletin: Vulnerability in OpenSSL affect Cloud Pak System[CVE-2024-0727]

Summary Vulnerability identified in OpenSSL affect Cloud Pak System. Vulnerability Details CVEID:CVE-2024-0727 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by improper input validation. By persuading a victim to open a specially crafted PKCS12 file, a remote attacker could...

5.5CVSS6.7AI score0.03174EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/11/19 8:1 p.m.13 views

Security Bulletin: Vulnerability in NX-OS Firmware used by IBM c-type SAN directors and switches.

Summary Public disclosed OpenSSL vulnerability in NX-OS Firmware used by IBM c-type SAN directors and switches. The vulnerability has been addressed and can be resolved by applying the NX-OS code level listed below. CVE-2024-0727. Vulnerability Details CVEID:CVE-2024-0727 DESCRIPTION: OpenSSL is...

5.5CVSS6.9AI score0.03174EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2024/11/12 9:20 a.m.30 views

Moderate: Red Hat Security Advisory: edk2 security update

An update for edk2 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

6.5CVSS6.6AI score0.03174EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2024/11/12 12:0 a.m.15 views

RHEL 9 : edk2 (RHSA-2024:9088)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:9088 advisory. EDK Embedded Development Kit is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware f...

6.5CVSS6.6AI score0.03174EPSS
Exploits0References20
OSV
OSV
added 2024/11/12 12:0 a.m.34 views

ALSA-2024:9088 Moderate: edk2 security update

EDK Embedded Development Kit is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM. Security Fixes: mysql: openssl: POLY1305 MAC implementation corrupts vector registers on PowerPC CVE-2023-6129 openssl: Excessive time spent...

6.5CVSS6.5AI score0.03174EPSS
Exploits0References10
AlmaLinux
AlmaLinux
added 2024/11/12 12:0 a.m.31 views

Moderate: edk2 security update

EDK Embedded Development Kit is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM. Security Fixes: mysql: openssl: POLY1305 MAC implementation corrupts vector registers on PowerPC CVE-2023-6129 openssl: Excessive time spent...

6.5CVSS7AI score0.03174EPSS
Exploits0References10
Debian
Debian
added 2024/11/03 6:33 a.m.288 views

[SECURITY] [DLA 3942-2] openssl regression update

Debian LTS Advisory DLA-3942-2 [email protected] https://www.debian.org/lts/security/ Sean Whitton November 03, 2024 https://wiki.debian.org/LTS Package : openssl Version : 1.1.1w-0+deb11u2 CVE ID : CVE-2023-5678 CVE-2024-0727 CVE-2024-2511 CVE-2024-4741 CVE-2024-5535 CVE-2024-9143 Debi...

9.1CVSS6.8AI score0.54026EPSS
Exploits1
OpenVAS
OpenVAS
added 2024/10/28 12:0 a.m.11 views

Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2024-2674)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS5.9AI score0.54026EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/10/28 12:0 a.m.15 views

Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2024-2640)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS5.9AI score0.54026EPSS
Exploits0References2
ICS
ICS
added 2024/10/01 6:0 a.m.42 views

Mitsubishi Electric MELSEC iQ-F FX5-OPC

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION : Exploitable remotely/low attack complexity Vendor : Mitsubishi Electric Equipment : MELSEC iQ-F FX5-OPC Vulnerability : NULL Pointer Dereference 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a remote attacker to...

5.5CVSS6.5AI score0.03174EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2024/09/24 12:0 a.m.29 views

EulerOS 2.0 SP8 : shim (EulerOS-SA-2024-2489)

According to the versions of the shim package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Issue summary: Processing a maliciously formatted PKCS12 file may lead OpenSSL to crash leading to a potential Denial of Service attack Impact summar...

8.3CVSS7.7AI score0.04852EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2024/09/23 12:0 a.m.11 views

Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2024-2489)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.3CVSS7.3AI score0.04852EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/09/18 12:0 a.m.22 views

Ubuntu: Security Advisory (USN-7018-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.7AI score0.95764EPSS
Exploits6References2
OpenVAS
OpenVAS
added 2024/08/07 12:0 a.m.15 views

Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2024-2076)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.3CVSS7.3AI score0.04852EPSS
Exploits0References2
Rows per page
Query Builder