Lucene search
+L

76 matches found

RedHat Linux
RedHat Linux
added 2014/09/16 5:39 a.m.56 views

Moderate: Red Hat Security Advisory: nss and nspr security, bug fix, and enhancement update

Updated nss and nspr packages that fix multiple security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores,...

10CVSS7.1AI score0.06329EPSS
Exploits5References9
OpenVAS
OpenVAS
added 2014/07/31 12:0 a.m.35 views

Debian Security Advisory DSA 2994-1 (nss - security update)

Several vulnerabilities have been discovered in nss, the Mozilla Network Security Service library: CVE-2013-1741 Runaway memset in certificate parsing on 64-bit computers leading to a crash by attempting to write 4Gb of nulls. CVE-2013-5606 Certificate validation with the verifylog mode did not...

7.5CVSS0.1AI score0.04664EPSS
Exploits3References1
OpenVAS
OpenVAS
added 2014/07/28 12:0 a.m.45 views

CentOS Update for nss-util CESA-2014:0917 centos6

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.9AI score0.06329EPSS
Exploits5References2
RedHat Linux
RedHat Linux
added 2014/07/22 5:59 p.m.58 views

Critical: Red Hat Security Advisory: nss and nspr security, bug fix, and enhancement update

Updated nss and nspr packages that fix multiple security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having Critical security impact. Common Vulnerability Scoring System CVSS base...

10CVSS7.1AI score0.06329EPSS
Exploits5References9
OpenVAS
OpenVAS
added 2014/07/21 12:0 a.m.41 views

RedHat Update for java-1.7.0-openjdk RHSA-2014:0890-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS5.5AI score0.06118EPSS
Exploits1References2
Cvelist
Cvelist
added 2014/07/17 10:0 a.m.33 views

CVE-2014-4263

Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5, and JRockit R27.8.2 and R28.3.2, allows remote attackers to affect confidentiality and integrity via unknown vectors related to "Diffie-Hellman key agreement."...

3.7AI score0.03501EPSS
Exploits0References79
Kaspersky
Kaspersky
added 2014/07/17 12:0 a.m.75 views

KLA10507 Multiple vulnerabilities in Oracle products

An unspecified vulnerabilities were found in Oracle products. By exploiting these vulnerabilities malicious users can affect integrity, confidentiality and availability. This vulnerability can be exploited remotely via an unknown vectors related to JavaFX, JMX, Security, Deployment, Serviceabilit...

10CVSS6.8AI score0.06118EPSS
Exploits1References10
UbuntuCve
UbuntuCve
added 2014/07/17 12:0 a.m.32 views

CVE-2014-4263

Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5, and JRockit R27.8.2 and R28.3.2, allows remote attackers to affect confidentiality and integrity via unknown vectors related to "Diffie-Hellman key agreement."...

4CVSS6.8AI score0.03501EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2014/07/17 12:0 a.m.36 views

Scientific Linux Security Update : java-1.7.0-openjdk on SL5.x i386/x86_64 (20140716)

It was discovered that the Hotspot component in OpenJDK did not properly verify bytecode from the class files. An untrusted Java application or applet could possibly use these flaws to bypass Java sandbox restrictions. CVE-2014-4216, CVE-2014-4219 A format string flaw was discovered in the Hotspo...

9.3CVSS7.1AI score0.06118EPSS
Exploits1References14
Cvelist
Cvelist
added 2014/05/01 2:0 p.m.31 views

CVE-2014-2881

Unspecified vulnerability in the Diffie-Hellman key agreement implementation in the management GUI Java applet in Citrix NetScaler Application Delivery Controller ADC and NetScaler Gateway before 9.3-66.5 and 10.x before 10.1-122.17 has unknown impact and vectors...

6.5AI score0.01855EPSS
Exploits0References2
OSV
OSV
added 2014/02/06 5:44 a.m.8 views

CVE-2014-1491

Mozilla Network Security Services NSS before 3.15.4, as used in Mozilla Firefox before 27.0, Firefox ESR 24.x before 24.3, Thunderbird before 24.3, SeaMonkey before 2.24, and other products, does not properly restrict public values in Diffie-Hellman key exchanges, which makes it easier for remote...

9.4AI score
Exploits0References40
Tenable Nessus
Tenable Nessus
added 2014/02/05 12:0 a.m.43 views

Thunderbird < 24.3 Multiple Vulnerabilities (Mac OS X)

The installed version of Thunderbird is earlier than 24.3 and is, therefore, potentially affected by the following vulnerabilities : - Memory issues exist in the browser engine that could result in a denial of service or arbitrary code execution. CVE-2014-1477 - An error exists related to System...

10CVSS8AI score0.07072EPSS
Exploits9References16
Tenable Nessus
Tenable Nessus
added 2014/02/05 12:0 a.m.35 views

Firefox ESR 24.x < 24.3 Multiple Vulnerabilities (Mac OS X)

The installed version of Firefox ESR 24.x is earlier than 24.3 and is, therefore, potentially affected by the following vulnerabilities : - Memory issues exist in the browser engine that could result in a denial of service or arbitrary code execution. CVE-2014-1477 - An error exists related to...

10CVSS7.2AI score0.07072EPSS
Exploits9References16
Tenable Nessus
Tenable Nessus
added 2014/02/05 12:0 a.m.264 views

Firefox ESR 24.x < 24.3 Multiple Vulnerabilities

The installed version of Firefox ESR 24.x is earlier than 24.3, and is, therefore, potentially affected by the following vulnerabilities : - Memory issues exist in the browser engine that could result in a denial of service or arbitrary code execution. CVE-2014-1477 - An error exists related to...

10CVSS7AI score0.07072EPSS
Exploits9References16
Prion
Prion
added 2013/02/05 11:55 p.m.14 views

Null pointer dereference

The publickeyfromprivatekey function in libssh before 0.5.4, when no algorithm is matched during negotiations, allows remote attackers to cause a denial of service NULL pointer dereference and crash via a "Client: Diffie-Hellman Key Exchange Init" packet...

4.3CVSS6.9AI score0.03049EPSS
Exploits0References6Affected Software1
Microsoft KB
Microsoft KB
added 1970/01/01 12:0 a.m.299 views

Microsoft security advisory: Updated support for Diffie-Hellman Key Exchange

None None...

6.1AI score
Exploits0
Rows per page
Query Builder