Lucene search
K

5 matches found

NVD
NVD
added 2015/08/20 10:59 a.m.31 views

CVE-2015-0533

EMC RSA BSAFE Micro Edition Suite MES 4.0.x before 4.0.8 and 4.1.x before 4.1.3 and RSA BSAFE SSL-C 2.8.9 and earlier allow remote SSL servers to conduct ECDHE-to-ECDH downgrade attacks and trigger a loss of forward secrecy by omitting the ServerKeyExchange message, a similar issue to CVE-2014-35...

7.5CVSS5.9AI score0.00801EPSS
Exploits2References2
Prion
Prion
added 2015/08/20 10:59 a.m.35 views

Code injection

EMC RSA BSAFE Micro Edition Suite MES 4.0.x before 4.0.8 and 4.1.x before 4.1.3 and RSA BSAFE SSL-C 2.8.9 and earlier allow remote SSL servers to conduct ECDHE-to-ECDH downgrade attacks and trigger a loss of forward secrecy by omitting the ServerKeyExchange message, a similar issue to CVE-2014-35...

5CVSS6.8AI score0.06574EPSS
Exploits2References2Affected Software2
Tenable Nessus
Tenable Nessus
added 2015/03/26 12:0 a.m.60 views

Debian DLA-132-1 : openssl security update (FREAK)

Multiple vulnerabilities have been discovered in OpenSSL, a Secure Sockets Layer toolkit. The Common Vulnerabilities and Exposures project identifies the following issues : CVE-2014-3570 Pieter Wuille of Blockstream reported that the bignum squaring BNsqr may produce incorrect results on some...

5CVSS7.5AI score0.98685EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2015/01/16 12:0 a.m.55 views

OpenSSL 0.9.8 < 0.9.8zd Multiple Vulnerabilities

The version of OpenSSL installed on the remote host is prior to 0.9.8zd. It is, therefore, affected by multiple vulnerabilities as referenced in the 0.9.8zd advisory. - The BNsqr implementation in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k does not properly calculate the...

5CVSS7.5AI score0.98685EPSS
Exploits0References13
OSV
OSV
added 2015/01/09 2:59 a.m.6 views

CVE-2014-3572

The ssl3getkeyexchange function in s3clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct ECDHE-to-ECDH downgrade attacks and trigger a loss of forward secrecy by omitting the ServerKeyExchange message...

7.3AI score
Exploits0References37
Rows per page
Query Builder