Lucene search
+L

24 matches found

osv
osv
added 2026/06/11 10:2 a.m.4 views

SUSE-SU-2026:22100-1 Security update for openssl-3

This update for openssl-3 fixes the following issues - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion bsc1266340. - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption bsc1266341. - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing...

9.1CVSS5.3AI score0.02719EPSS
Exploits0References19
vulnrichment
vulnrichment
added 2026/04/01 12:0 a.m.1 views

CVE-2026-34872

An issue was discovered in Mbed TLS 3.5.x and 3.6.x through 3.6.5 and TF-PSA-Crypto 1.0. There is a lack of contributory behavior in FFDH due to improper input validation. Using finite-field Diffie-Hellman, the other party can force the shared secret into a small set of values lack of contributor...

5.9AI score0.00204EPSS
Exploits0References2
nessus
nessus
added 2026/01/19 12:0 a.m.3 views

MiracleLinux 3 : nspr-4.9.5-2.AXS3, nss-3.14.3-18.AXS3 (AXSA:2013-664:03)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2013-664:03 advisory. nss Network Security Services NSS is a set of libraries designed to support cross-platform development of security-enabled client and server...

5CVSS7.5AI score0.35584EPSS
Exploits1References3
osv
osv
added 2025/12/03 9:2 a.m.13 views

RLSA-2023:7877 Low: openssl security update

OpenSSL is a toolkit that implements the Secure Sockets Layer SSL and Transport Layer Security TLS protocols, as well as a full-strength general-purpose cryptography library. Security Fixes: openssl: Excessive time spent checking DH keys and parameters CVE-2023-3446 OpenSSL: Excessive time spent...

5.9CVSS6.8AI score0.05533EPSS
Exploits1References5
osv
osv
added 2025/11/21 3:59 p.m.6 views

JLSEC-2025-207 An issue was discovered in Arm Mbed TLS before 2.24.0

An issue was discovered in Arm Mbed TLS before 2.24.0. An attacker can recover a private key for RSA or static Diffie-Hellman via a side-channel attack against generation of base blinding/unblinding values...

4.7CVSS6.8AI score0.00342EPSS
Exploits0References12
vulnrichment
vulnrichment
added 2025/10/15 1:55 p.m.6 views

CVE-2025-60016 BIG-IP SSL/TLS vulnerability

When Diffie-Hellman DH group Elliptic Curve Cryptography ECC Brainpool curves are configured in an SSL profile's Cipher Rule or Cipher Group, and that profile is applied to a virtual server, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions...

8.7CVSS6.4AI score0.00414EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-25514

Malicious code in bioql PyPI...

7.7CVSS6.6AI score0.00321EPSS
Exploits0References13
cvelist
cvelist
added 2025/08/13 2:46 p.m.11 views

CVE-2025-52585 BIG-IP Client SSL profile vulnerability

When a BIG-IP LTM Client SSL profile is configured on a virtual server with SSL Forward Proxy enabled and Anonymous Diffie-Hellman ADH ciphers enabled, undisclosed requests can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End of Technical...

8.7CVSS0.00335EPSS
Exploits0References1
packetstormnews
packetstormnews
added 2025/07/12 12:0 a.m.5 views

Confidential Wrapped Ethereum

Transparency is one of the key benefits of public blockchains. However, the public visibility of transactions potentially compromises users' privacy. The fundamental challenge is to balance the intrinsic benefits of blockchain openness with the vital need for individual confidentiality. The...

6.8AI score
Exploits0
redhat
redhat
added 2024/01/11 9:21 p.m.4 views

openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow

A flaw was found in OpenSSL, which caused the generation or checking of long X9.42 DH keys or parameters to be much slower than expected. This issue could lead to a denial of service...

5.3CVSS6.6AI score0.04459EPSS
Exploits0References9
osv
osv
added 2023/12/07 5:15 a.m.1 views

DEBIAN-CVE-2023-41913

strongSwan before 5.9.12 has a buffer overflow and possible unauthenticated remote code execution via a DH public value that exceeds the internal buffer in charon-tkm's DH proxy. The earliest affected version is 5.3.0. An attack can occur via a crafted IKESAINIT message...

9.8CVSS9.6AI score0.02309EPSS
Exploits0References1
osv
osv
added 2023/07/19 12:15 p.m.2 views

DEBIAN-CVE-2023-3446

Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DHcheck, DHcheckex or EVPPKEYparamcheck to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been...

5.3CVSS6.3AI score0.05533EPSS
Exploits0References1
cnnvd
cnnvd
added 2021/08/23 12:0 a.m.11 views

ARM mbed TLS 安全漏洞

ARM mbed TLS is a product from ARM UK that provides secure communication and encryption for mbed products. ARM mbed TLS suffers from a denial of service vulnerability that stems from an unrestricted calculation performed by mbedtlsmpiexpmod. An attacker could exploit this vulnerability to provide...

7.5CVSS7.4AI score0.0197EPSS
Exploits0References12
kitploit
kitploit
added 2021/02/09 8:30 p.m.105 views

Cypher - Crypto Cipher Encode Decode Hash

All in one tools for CRYPTOLOGY. Instagram: Capture the Root Screenshots !https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjzEISVu6IIqjydF1vTUDcdbKWD8Vdi1BM5fQfCGuAnFRSCrZIh04d17YDeNKsRw0CRJD8cQmlIloLRldnU-Rounz7YQAvc7MOENa22PJkMajWGZvAelxpm3EoWCFL0BCnfBRMV4Ly99Y/w640-h36...

7.2AI score
Exploits0References2
ptsecurity
ptsecurity
added 2019/12/06 12:0 a.m.11 views

PT-2019-4482

Name of the Vulnerable Software and Affected Versions OpenSSL versions 1.1.1 through 1.1.1d OpenSSL versions 1.0.2 through 1.0.2t Description The issue is related to an overflow bug in the x64 64 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are...

10CVSS8.6AI score0.99999EPSS
Exploits188References242
redhat
redhat
added 2019/06/18 7:8 p.m.6 views

openssl: Malicious server can send large prime to client during DH(E) TLS handshake causing the client to hang

During key agreement in a TLS handshake using a DHE based ciphersuite a malicious server can send a very large prime value to the client. This will cause the client to spend an unreasonably long period of time generating a key for this prime resulting in a hang until the client has finished. This...

7.5CVSS6.6AI score0.49268EPSS
Exploits0References5
veracode
veracode
added 2017/02/10 1:42 a.m.67 views

Access Bypass

OpenSSL is vulnerable to access bypass. OpenSSL accepts client authentication with a Diffie-Helman certificate without receiving a CertificateValue message. This allows attacks to gain access without the knowledge of a private key via crafted TLS Handshake Protocol traffic to a server that...

5CVSS6.2AI score0.24626EPSS
Exploits0References72Affected Software1
redhat
redhat
added 2016/11/16 5:58 a.m.8 views

nss: Missing NULL check in PK11_SignWithSymKey / ssl3_ComputeRecordMACConstantTime causes server crash

A NULL pointer dereference flaw was found in the way NSS handled invalid Diffie-Hellman keys. A remote client could use this flaw to crash a TLS/SSL server using NSS...

7.5CVSS7.4AI score0.02279EPSS
Exploits0References4
cnvd
cnvd
added 2016/04/05 12:0 a.m.7 views

Libssh Type Obfuscation Vulnerability

libssh is a C development package for accessing SSH services, which can execute remote commands, file transfers, and also provide a secure transmission channel for remote programs. A type-obfuscation vulnerability exists in versions of libssh prior to 0.7.3, which stems from a type-obfuscation...

5.9CVSS7.7AI score0.02431EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2015/11/03 12:0 a.m.4 views

PT-2015-6117 · Libreswan +4 · Libreswan +4

Name of the Vulnerable Software and Affected Versions: libreswan versions prior to 3.15 Openswan versions prior to 2.6.45 Description: The issue allows remote attackers to cause a denial of service, resulting in an assertion failure and daemon restart. This occurs when a zero DH g^x value is...

4.3CVSS7.5AI score0.02765EPSS
Exploits0References17
Rows per page
Query Builder