Lucene search
K

9 matches found

F5 Networks
F5 Networks
added 2023/02/21 7:53 p.m.64 views

K43452233: OpenSSL vulnerability CVE-2017-3737

Security Advisory Description OpenSSL 1.0.2 starting from version 1.0.2b introduced an "error state" mechanism. The intent was that if a fatal error occurred during a handshake then OpenSSL would move into the error state and would immediately fail if you attempted to continue the handshake. This...

5.9CVSS6.6AI score0.78675EPSS
Exploits1
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.33 views

Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2018-1179)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.9AI score0.78675EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.43 views

Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2018-1115)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.9AI score0.78675EPSS
Exploits1References2
Amazon
Amazon
added 2018/05/10 12:0 a.m.83 views

Medium: openssl

Issue Overview: There is an overflow bug in the AVX2 Montgomery multiplication procedure used in exponentiation with 1024-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believe...

7.5CVSS7.1AI score0.83645EPSS
Exploits2
OSV
OSV
added 2017/12/16 11:20 p.m.10 views

MGASA-2017-0453 Updated openssl packages fix security vulnerabilities

OpenSSL 1.0.2 starting from version 1.0.2b introduced an "error state" mechanism. The intent was that if a fatal error occurred during a handshake then OpenSSL would move into the error state and would immediately fail if you attempted to continue the handshake. This works as designed for the...

5.9CVSS6.1AI score0.78675EPSS
Exploits1References4
OSV
OSV
added 2017/12/16 12:59 a.m.9 views

SUSE-SU-2017:3343-1 Security update for openssl

This update for openssl fixes the following issues: - OpenSSL Security Advisory 07 Dec 2017 CVE-2017-3737: OpenSSL 1.0.2 starting from version 1.0.2b introduced an 'error state' mechanism. The intent was that if a fatal error occurred during a handshake then OpenSSL would move into the error...

5.9CVSS6AI score0.78675EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2017/12/15 12:0 a.m.423 views

OpenSSL 1.0.2 < 1.0.2n Multiple Vulnerabilities

The version of OpenSSL installed on the remote host is prior to 1.0.2n. It is, therefore, affected by multiple vulnerabilities as referenced in the 1.0.2n advisory. - There is an overflow bug in the AVX2 Montgomery multiplication procedure used in exponentiation with 1024-bit moduli. No EC...

5.9CVSS7AI score0.78675EPSS
Exploits2References7
RedhatCVE
RedhatCVE
added 2017/12/08 7:49 a.m.45 views

CVE-2017-3737

OpenSSL 1.0.2 starting from version 1.0.2b introduced an "error state" mechanism. The intent was that if a fatal error occurred during a handshake then OpenSSL would move into the error state and would immediately fail if you attempted to continue the handshake. This works as designed for the...

5.9CVSS1.7AI score0.78675EPSS
Exploits1References2
OSV
OSV
added 2017/12/07 4:29 p.m.25 views

CVE-2017-3737

OpenSSL 1.0.2 starting from version 1.0.2b introduced an "error state" mechanism. The intent was that if a fatal error occurred during a handshake then OpenSSL would move into the error state and would immediately fail if you attempted to continue the handshake. This works as designed for the...

5.9CVSS9.3AI score0.78675EPSS
Exploits1References21
Rows per page
Query Builder