Lucene search
+L

2047 matches found

Prion
Prion
added 2009/01/07 6:30 p.m.21 views

Input validation

Sun GridEngine 5.3 and earlier does not properly check the return value from the OpenSSL EVPVerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to CVE-2008-5077...

5CVSS6.5AI score0.05146EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2009/01/07 6:30 p.m.21 views

Input validation

Belgian eID middleware eidlib 2.6.0 and earlier does not properly check the return value from the OpenSSL EVPVerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to...

5CVSS6.5AI score0.05146EPSS
Exploits1References4Affected Software1
Prion
Prion
added 2009/01/07 6:30 p.m.28 views

Input validation

OpenEvidence 1.0.6 and earlier does not properly check the return value from the OpenSSL EVPVerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to CVE-2008-5077...

5CVSS6.5AI score0.05146EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2009/01/07 6:0 p.m.29 views

CVE-2009-0048

OpenEvidence 1.0.6 and earlier does not properly check the return value from the OpenSSL EVPVerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to CVE-2008-5077...

7.2AI score0.01181EPSS
Exploits0References3
Cvelist
Cvelist
added 2009/01/07 6:0 p.m.30 views

CVE-2009-0049

Belgian eID middleware eidlib 2.6.0 and earlier does not properly check the return value from the OpenSSL EVPVerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to...

7.2AI score0.01185EPSS
Exploits0References4
CVE
CVE
added 2009/01/07 6:0 p.m.66 views

CVE-2009-0047

CVE-2009-0047 affects Gale 0.99 and earlier due to improper checking of the OpenSSL EVP_VerifyFinal return value, allowing a remote attacker to bypass certificate-chain validation via a malformed SSL/TLS signature for DSA/ECDSA keys. The root cause is the same class of issue described in CVE-2008...

5CVSS7.6AI score0.01181EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2009/01/07 6:0 p.m.27 views

CVE-2009-0046

Sun GridEngine 5.3 and earlier does not properly check the return value from the OpenSSL EVPVerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to CVE-2008-5077...

7.2AI score0.01181EPSS
Exploits0References3
CVE
CVE
added 2009/01/07 6:0 p.m.60 views

CVE-2009-0048

OpenEvidence 1.0.6 and earlier are affected by CVE-2009-0048 due to not properly checking the return value from OpenSSL EVP_VerifyFinal, enabling remote attackers to bypass certificate-chain validation via a malformed SSL/TLS signature for DSA and ECDSA keys. Root cause: failed validation check i...

5CVSS7.5AI score0.01181EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2009/01/07 5:30 p.m.24 views

CVE-2009-0021

NTP 4.2.4 before 4.2.4p5 and 4.2.5 before 4.2.5p150 does not properly check the return value from the OpenSSL EVPVerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to...

5CVSS7.6AI score0.03218EPSS
Exploits0References19
UbuntuCve
UbuntuCve
added 2009/01/07 5:30 p.m.32 views

CVE-2009-0021

NTP 4.2.4 before 4.2.4p5 and 4.2.5 before 4.2.5p150 does not properly check the return value from the OpenSSL EVPVerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to...

5CVSS5.9AI score0.03218EPSS
Exploits0References3
OSV
OSV
added 2009/01/07 5:30 p.m.2 views

DEBIAN-CVE-2009-0021

NTP 4.2.4 before 4.2.4p5 and 4.2.5 before 4.2.5p150 does not properly check the return value from the OpenSSL EVPVerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to...

5CVSS9.3AI score0.03218EPSS
Exploits0References1
Prion
Prion
added 2009/01/07 5:30 p.m.28 views

Input validation

NTP 4.2.4 before 4.2.4p5 and 4.2.5 before 4.2.5p150 does not properly check the return value from the OpenSSL EVPVerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to...

5CVSS6.5AI score0.05146EPSS
Exploits1References19Affected Software1
OSV
OSV
added 2009/01/07 5:30 p.m.12 views

CVE-2009-0021

NTP 4.2.4 before 4.2.4p5 and 4.2.5 before 4.2.5p150 does not properly check the return value from the OpenSSL EVPVerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to...

7.6AI score
Exploits0References19
OSV
OSV
added 2009/01/07 5:30 p.m.12 views

CVE-2008-5077

OpenSSL 0.9.8i and earlier does not properly check the return value from the EVPVerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys...

7.5AI score
Exploits0References43
Prion
Prion
added 2009/01/07 5:30 p.m.31 views

Input validation

OpenSSL 0.9.8i and earlier does not properly check the return value from the EVPVerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys...

5.8CVSS6.4AI score0.05146EPSS
Exploits1References43Affected Software1
NVD
NVD
added 2009/01/07 5:30 p.m.24 views

CVE-2008-5077

OpenSSL 0.9.8i and earlier does not properly check the return value from the EVPVerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys...

5.8CVSS7.5AI score0.05146EPSS
Exploits1References43
UbuntuCve
UbuntuCve
added 2009/01/07 5:30 p.m.46 views

CVE-2008-5077

OpenSSL 0.9.8i and earlier does not properly check the return value from the EVPVerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys...

5.8CVSS6.9AI score0.05146EPSS
Exploits1References2
OSV
OSV
added 2009/01/07 5:30 p.m.2 views

DEBIAN-CVE-2008-5077

OpenSSL 0.9.8i and earlier does not properly check the return value from the EVPVerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys...

5.8CVSS9.2AI score0.05146EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2009/01/07 5:0 p.m.32 views

CVE-2009-0021

NTP 4.2.4 before 4.2.4p5 and 4.2.5 before 4.2.5p150 does not properly check the return value from the OpenSSL EVPVerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to...

5CVSS8.5AI score0.03218EPSS
Exploits0
Cvelist
Cvelist
added 2009/01/07 5:0 p.m.31 views

CVE-2009-0021

NTP 4.2.4 before 4.2.4p5 and 4.2.5 before 4.2.5p150 does not properly check the return value from the OpenSSL EVPVerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to...

7.2AI score0.03218EPSS
Exploits0References19
Rows per page
Query Builder