Lucene search
K

29 matches found

OpenVAS
OpenVAS
added 2025/06/04 12:0 a.m.4 views

SUSE: Security Advisory (SUSE-SU-2024:3501-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.01083EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2024/11/04 12:0 a.m.11 views

SUSE: Security Advisory (SUSE-SU-2024:3871-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.4AI score0.01118EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/11/02 12:0 a.m.13 views

SUSE SLES15 Security Update : openssl-3 (SUSE-SU-2024:3871-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3871-1 advisory. - CVE-2023-50782: Implicit rejection in PKCS1 v1.5 bsc1220262 - CVE-2024-41996: Avoid expensive public key validation for known safe-prime grou...

7.5CVSS6.5AI score0.01118EPSS
Exploits0References7
SUSE Linux
SUSE Linux
added 2024/11/01 3:20 p.m.4 views

Security update for openssl-3

This update for openssl-3 fixes the following issues: CVE-2023-50782: Implicit rejection in PKCS1 v1.5 bsc1220262 CVE-2024-41996: Avoid expensive public key validation for known safe-prime groups DHEATATTACK bsc1230698 Patch Instructions: To install this SUSE update use the SUSE recommended...

8.2CVSS7.3AI score0.01118EPSS
Exploits0References8
OSV
OSV
added 2024/11/01 3:20 p.m.20 views

SUSE-SU-2024:3871-1 Security update for openssl-3

This update for openssl-3 fixes the following issues: - CVE-2023-50782: Implicit rejection in PKCS1 v1.5 bsc1220262 - CVE-2024-41996: Avoid expensive public key validation for known safe-prime groups DHEATATTACK bsc1230698...

7.5CVSS6.8AI score0.01118EPSS
Exploits0References5
F5 Networks
F5 Networks
added 2024/10/30 11:21 p.m.29 views

K000148343: Diffie-Hellman key exchange protocol vulnerability CVE-2024-41996

Security Advisory Description Validating the order of the public keys in the Diffie-Hellman Key Agreement Protocol, when an approved safe prime is used, allows remote attackers from the client side to trigger unnecessarily expensive server-side DHE modular-exponentiation calculations. The client...

7.5CVSS7.6AI score0.01083EPSS
Exploits0Affected Software16
OpenVAS
OpenVAS
added 2024/10/30 12:0 a.m.14 views

openSUSE Security Advisory (SUSE-SU-2024:3766-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.4AI score0.01118EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/10/30 12:0 a.m.17 views

F5 Networks BIG-IP : Diffie-Hellman key exchange protocol vulnerability (K000148343)

The version of F5 Networks BIG-IP installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the K000148343 advisory. Validating the order of the public keys in the Diffie-Hellman Key Agreement Protocol, when an approved safe prime is...

7.5CVSS6.9AI score0.01083EPSS
Exploits0References2
OSV
OSV
added 2024/10/29 1:34 a.m.21 views

SUSE-SU-2024:3766-1 Security update for openssl-3

This update for openssl-3 fixes the following issues: - CVE-2023-50782: Implicit rejection in PKCS1 v1.5 bsc1220262 - CVE-2024-41996: Avoid expensive public key validation for known safe-prime groups DHEATATTACK bsc1230698...

7.5CVSS6.8AI score0.01118EPSS
Exploits0References5
Amazon
Amazon
added 2024/10/14 12:0 a.m.3 views

Medium: openssl

Issue Overview: Validating the order of the public keys in the Diffie-Hellman Key Agreement Protocol, when an approved safe prime is used, allows remote attackers from the client side to trigger unnecessarily expensive server-side DHE modular-exponentiation calculations. The client may cause...

7.5CVSS7.3AI score0.01083EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/10/14 12:0 a.m.24 views

Amazon Linux 2023 : openssl, openssl-devel, openssl-libs (ALAS2023-2024-727)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-727 advisory. Validating the order of the public keys in the Diffie-Hellman Key Agreement Protocol, when an approved safe prime is used, allows remote attackers from the client side to trigger unnecessarily expensive...

7.5CVSS6.9AI score0.01083EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2024/10/07 12:0 a.m.16 views

SUSE: Security Advisory (SUSE-SU-2024:3525-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.01083EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/10/05 12:0 a.m.23 views

SUSE SLES15 Security Update : openssl-3 (SUSE-SU-2024:3525-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:3525-1 advisory. - CVE-2024-41996: Validating the order of the public keys in the Diffie-Hellman Key Agreement Protocol, when an approved safe prime is used,...

7.5CVSS6.9AI score0.01083EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2024/10/04 1:21 p.m.0 views

Security update for openssl-3

This update for openssl-3 fixes the following issues: CVE-2024-41996: Validating the order of the public keys in the Diffie-Hellman Key Agreement Protocol, when an approved safe prime is used, allows remote attackers to trigger expensive server-side DHE bsc1230698 Patch Instructions: To install...

8.2CVSS7.9AI score0.01083EPSS
Exploits0References4
OSV
OSV
added 2024/10/04 1:21 p.m.25 views

SUSE-SU-2024:3525-1 Security update for openssl-3

This update for openssl-3 fixes the following issues: - CVE-2024-41996: Validating the order of the public keys in the Diffie-Hellman Key Agreement Protocol, when an approved safe prime is used, allows remote attackers to trigger expensive server-side DHE bsc1230698...

7.5CVSS6.4AI score0.01083EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2024/10/04 12:0 a.m.15 views

openSUSE Security Advisory (SUSE-SU-2024:3501-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.01083EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/10/02 12:0 a.m.28 views

SUSE SLED15: libopenssl-3-devel / libopenssl-3-devel-32bit / etc (SUSE-SU-2024:3501-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:3501-1 advisory. - CVE-2024-41996: Validating the order of the public keys in the Diffie-Hellman Key Agreement Protocol,...

7.5CVSS6.7AI score0.01083EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2024/10/01 2:3 p.m.0 views

Security update for openssl-3

This update for openssl-3 fixes the following issues: CVE-2024-41996: Validating the order of the public keys in the Diffie-Hellman Key Agreement Protocol, when an approved safe prime is used, allows remote attackers to trigger expensive server-side DHE bsc1230698 Patch Instructions: To install...

8.2CVSS8AI score0.01083EPSS
Exploits0References4
OSV
OSV
added 2024/10/01 2:3 p.m.13 views

SUSE-SU-2024:3501-1 Security update for openssl-3

This update for openssl-3 fixes the following issues: - CVE-2024-41996: Validating the order of the public keys in the Diffie-Hellman Key Agreement Protocol, when an approved safe prime is used, allows remote attackers to trigger expensive server-side DHE bsc1230698...

7.5CVSS6.4AI score0.01083EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2024/10/01 12:0 a.m.11 views

openSUSE Security Advisory (SUSE-SU-2024:3500-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.01083EPSS
Exploits0References4
Rows per page
Query Builder