Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

125 matches found

Tenable Nessus
Tenable Nessusadded 2026/01/26 12:0 a.m.2 views

Unity Linux 20.1070e Security Update: gnutls (UTSA-2026-004960)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004960 advisory. A flaw was found in GnuTLS, which relies on libtasn1 for ASN.1 data processing. Due to an inefficient algorithm in libtasn1, decoding certain DER-encoded certificate...

5.3CVSS5.9AI score0.01227EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2021-30456

Malicious code in bioql PyPI...

9.8CVSS7.4AI score0.05243EPSS
Exploits0References31
OSV
OSVadded 2025/02/21 1:37 p.m.1 views

OESA-2025-1175 gnutls security update

GnuTLS is a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them. It provides a simple C language application programming interface API to access the secure communications protocols as well as APIs to parse and write X.509, PKCS 12, and other...

5.3CVSS6.7AI score0.01227EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/02/21 12:0 a.m.6 views

Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 : GnuTLS vulnerability (USN-7281-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 host has packages installed that are affected by a vulnerability as referenced in the USN-7281-1 advisory. Bing Shi discovered that GnuTLS incorrectly handled decoding certain DER-encoded certificates. A remote attacker could possibly us...

5.3CVSS6.7AI score0.01227EPSS
Exploits0References2
Ubuntu
Ubuntuadded 2025/02/20 6:1 p.m.80 views

USN-7281-1: GnuTLS vulnerability

Bing Shi discovered that GnuTLS incorrectly handled decoding certain DER-encoded certificates. A remote attacker could possibly use this issue to cause GnuTLS to consume resources, leading to a denial of service...

5.3CVSS6.8AI score0.01227EPSS
Exploits0
OSV
OSVadded 2025/02/10 4:15 p.m.16 views

CVE-2024-12243

A flaw was found in GnuTLS, which relies on libtasn1 for ASN.1 data processing. Due to an inefficient algorithm in libtasn1, decoding certain DER-encoded certificate data can take excessive time, leading to increased resource consumption. This flaw allows a remote attacker to send a specially...

5.3CVSS5AI score0.01227EPSS
Exploits0References10
OSV
OSVadded 2025/02/10 4:15 p.m.1 views

AZL-56752 CVE-2024-12243 affecting package gnutls for versions less than 3.7.11-3

A flaw was found in GnuTLS, which relies on libtasn1 for ASN.1 data processing. Due to an inefficient algorithm in libtasn1, decoding certain DER-encoded certificate data can take excessive time, leading to increased resource consumption. This flaw allows a remote attacker to send a specially...

5.3CVSS6.7AI score0.01227EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2024/12/11 12:0 a.m.5 views

Amazon Linux 2022 : nss (ALAS2022-2021-002)

The version of nss installed on the remote host is prior to 3.71.0-2. It is, therefore, affected by a vulnerability as referenced in the ALAS2022-2021-002 advisory. NSS Network Security Services up to and including 3.73 is vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS...

9.8CVSS7.7AI score0.05243EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2024/02/29 12:0 a.m.34 views

CentOS 9 : nss-3.79.0-14.el9

The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the nss-3.79.0-14.el9 build changelog. - NSS Network Security Services versions prior to 3.73 or 3.68.1 ESR are vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS...

9.8CVSS7.2AI score0.05243EPSS
Exploits0References2
CNNVD
CNNVDadded 2023/12/18 12:0 a.m.3 views

Crypto++ Security Vulnerability

Crypto++ is a C++ cryptographic method library. A security vulnerability exists in Crypto++ version 8.9.0 that originates from a segmentation error when parsing a DER public key file. An attacker exploiting this vulnerability could create an incorrectly formatted DER public key file, and any user...

7.5CVSS6.6AI score0.00066EPSS
Exploits1References4
Tenable Nessus
Tenable Nessusadded 2023/12/14 12:0 a.m.18 views

Fedora 38 : perl-CryptX (2023-b4b9b38f23)

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-b4b9b38f23 advisory. Update to 0.080 Fix CVE-2019-17362 in bundled libtomcrypt Tenable has extracted the preceding description block directly from the Fedora security advisory...

9.1CVSS7.2AI score0.00473EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2023/04/11 12:0 a.m.28 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : nss Vulnerability (NS-SA-2023-0010)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has nss packages installed that are affected by a vulnerability: - NSS Network Security Services versions prior to 3.73 or 3.68.1 ESR are vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures...

9.8CVSS7.3AI score0.05243EPSS
Exploits0References3
Amazon
Amazonadded 2023/03/22 12:0 a.m.6 views

Critical: nss

Issue Overview: NSS Network Security Services up to and including 3.73 is vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS 7, or PKCS 12 are likely to be impacted. Applications using...

9.8CVSS8.2AI score0.05243EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2023/02/23 12:0 a.m.49 views

Amazon Linux 2 : nspr (ALAS-2023-1953)

The version of nspr installed on the remote host is prior to 4.32.0-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-1953 advisory. NSS Network Security Services up to and including 3.73 is vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS...

9.8CVSS7.7AI score0.05243EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2023/02/22 12:0 a.m.37 views

Amazon Linux 2 : nss-util (ALAS-2023-1954)

The version of nss-util installed on the remote host is prior to 3.67.0-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-1954 advisory. NSS Network Security Services up to and including 3.73 is vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS...

9.8CVSS7.7AI score0.05243EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2023/02/22 12:0 a.m.31 views

Amazon Linux 2 : nss-softokn (ALAS-2023-1955)

The version of nss-softokn installed on the remote host is prior to 3.67.0-3. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-1955 advisory. NSS Network Security Services up to and including 3.73 is vulnerable to a heap overflow when handling DER-encoded DSA or RSA-P...

9.8CVSS7.7AI score0.05243EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2023/02/22 12:0 a.m.44 views

Amazon Linux 2 : nss (ALAS-2023-1952)

The version of nss installed on the remote host is prior to 3.67.0-4. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-1952 advisory. NSS Network Security Services up to and including 3.73 is vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS...

9.8CVSS7.7AI score0.05243EPSS
Exploits0References4
F5 Networks
F5 Networksadded 2023/02/21 6:47 p.m.107 views

K54450124: NSS vulnerability CVE-2021-43527

Security Advisory Description NSS Network Security Services versions prior to 3.73 or 3.68.1 ESR are vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS \7, or PKCS \12 are likely to be...

9.8CVSS8.1AI score0.05243EPSS
Exploits0Affected Software3
Amazon
Amazonadded 2023/02/17 12:12 a.m.31 views

Critical: nss-softokn

Issue Overview: NSS Network Security Services up to and including 3.73 is vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS 7, or PKCS 12 are likely to be impacted. Applications using...

9.8CVSS1AI score0.05243EPSS
Exploits0
Amazon
Amazonadded 2023/02/17 12:11 a.m.34 views

Critical: nspr

Issue Overview: NSS Network Security Services up to and including 3.73 is vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS 7, or PKCS 12 are likely to be impacted. Applications using...

9.8CVSS1.1AI score0.05243EPSS
Exploits0
Rows per page
Query Builder