Lucene search
+L

4 matches found

nessus
nessus
added 2025/03/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2023-6937

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wolfSSL prior to 5.6.6 did not check that messages in one DTLS record do not span key boundaries. As a result, it was possible to combine DTLS messages using...

5.3CVSS5.7AI score0.00513EPSS
Exploits0References3
ibm
ibm
added 2018/06/18 1:33 a.m.68 views

Security Bulletin: Vulnerabilities in OpenSSL affect PowerKVM

Summary PowerKVM is affected by numerous vulnerabilities in OpenSSL. IBM has now addressed these vulnerabilities. Vulnerability Details CVEID: CVE-2016-2177 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by the incorrect use of pointer arithmetic for heap-buffer boundary checks...

9.8CVSS0.9AI score0.95707EPSS
Exploits8Affected Software1
cnvd
cnvd
added 2015/01/09 12:0 a.m.2 views

OpenSSL 'dtls1_get_record()' function null pointer denial of service vulnerability

OpenSSL is an open source implementation of SSL used to enable strong encryption of network communications and is now widely used in a variety of web applications. A null pointer denial of service vulnerability exists in the OpenSSL 'dtls1getrecord' function, which could be exploited by an attack...

5CVSS6.7AI score0.22964EPSS
Exploits0References1
prion
prion
added 2009/05/19 7:30 p.m.26 views

Design/Logic Flaw

The dtls1bufferrecord function in ssl/d1pkt.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allows remote attackers to cause a denial of service memory consumption via a large series of "future epoch" DTLS records that are buffered in a queue, aka "DTLS record buffer limitation bug."...

5CVSS7AI score0.11274EPSS
Exploits1References35Affected Software1
Rows per page
Query Builder