Lucene search
K

36 matches found

Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.7 views

PT-2026-4940

Name of the Vulnerable Software and Affected Versions OpenSSL versions 3.4.0 through 3.6.0 Description The vulnerability relates to improper validation of PBMAC1 parameters within PKCS12 files. Specifically, the PBKDF2 salt and keylength parameters are used without sufficient validation during MA...

7.5CVSS7.9AI score0.00768EPSS
Exploits1References131
Citrix
Citrix
added 2024/11/26 12:0 a.m.5 views

ADC: Unable to initialize FIPS

After going through the steps to initialize the FIPS module, after the last reboot, the FIPS still shows as not configured...

7.1AI score
Exploits0
CNNVD
CNNVD
added 2022/11/21 12:0 a.m.6 views

Bouncy Castle BC 资源管理错误漏洞

Bouncy Castle BC is a cryptographic library for C and Java applications organized by Bouncy Castle. A code issue vulnerability exists in Bouncy Castle BC-FJA versions prior to 1.0.2.4, which stems from a temporary key used by the BC-FJA FIPS module that may be zeroed out while the module is still...

5.5CVSS7AI score0.00434EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2022/08/09 4:59 p.m.121 views

Moderate: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

An update for kernel is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

8.6CVSS6.6AI score0.005EPSS
Exploits1References3
OSV
OSV
added 2022/08/09 12:0 a.m.23 views

ALSA-2022:6003 Moderate: kernel security, bug fix, and enhancement update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: information leak in scsiioctl CVE-2022-0494 use-after-free in tcnewtfilter in net/sched/clsapi.c CVE-2022-1055 For more details about the security issues, including the impact, a CVSS score,...

8.6CVSS6.8AI score0.005EPSS
Exploits1References6
AlmaLinux
AlmaLinux
added 2022/08/09 12:0 a.m.50 views

Moderate: kernel security, bug fix, and enhancement update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: information leak in scsiioctl CVE-2022-0494 use-after-free in tcnewtfilter in net/sched/clsapi.c CVE-2022-1055 For more details about the security issues, including the impact, a CVSS score,...

8.6CVSS7AI score0.005EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2013/11/27 12:0 a.m.36 views

Oracle Linux 6 : dracut (ELSA-2013-1674)

The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2013-1674 advisory. 004-336.0.1 - do not strip modules with signatures. orabug 17458249 Jerry Snitselaar - scsiwait module removed in 3.8. Mute errors. orabug 16977193 Maxim Uvarov...

2.1CVSS7.3AI score0.00364EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2013/11/25 12:0 a.m.31 views

dracut security, bug fix, and enhancement update

004-336.0.1 - do not strip modules with signatures. orabug 17458249 Jerry Snitselaar - scsiwait module removed in 3.8. Mute errors. orabug 16977193 Maxim Uvarov find firmware in /lib/modules/firmware/2.6.32-400.1.1.el5uek first and /lib/modules/firmware second Resolves: Orabug: 13351090 - Fix btr...

2.1CVSS6.3AI score0.00364EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2013/10/11 10:55 p.m.24 views

CVE-2007-6755

The NIST SP 800-90A default statement of the Dual Elliptic Curve Deterministic Random Bit Generation DualECDRBG algorithm contains point Q constants with a possible relationship to certain "skeleton key" values, which might allow context-dependent attackers to defeat cryptographic protection...

5.8CVSS7.2AI score0.01407EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.37 views

Scientific Linux Security Update : openssh on SL5.x i386/x86_64

CVE-2008-5161 OpenSSH: Plaintext Recovery Attack against CBC ciphers A flaw was found in the SSH protocol. An attacker able to perform a man-in-the-middle attack may be able to obtain a portion of plain text from an arbitrary ciphertext block when a CBC mode cipher was used to encrypt SSH...

3.7CVSS6.5AI score0.15395EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2011/08/09 12:0 a.m.25 views

CentOS Update for openssh CESA-2009:1287 centos5 i386

Check for the Version of openssh OpenVAS Vulnerability Test CentOS Update for openssh CESA-2009:1287 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

2.6CVSS7.1AI score0.15395EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2010/01/06 12:0 a.m.77 views

CentOS 5 : openssh (CESA-2009:1287)

Updated openssh packages that fix a security issue, a bug, and add enhancements are now available for Red Hat Enterprise Linux 5. This update has been rated as having low security impact by the Red Hat Security Response Team. OpenSSH is OpenBSD's SSH Secure Shell protocol implementation. These...

3.7CVSS6.7AI score0.15395EPSS
Exploits1References3
Cent OS
Cent OS
added 2009/09/15 6:42 p.m.95 views

openssl security update

CentOS Errata and Security Advisory CESA-2009:1335 Updated openssl packages that fix several security issues, various bugs, and add enhancements are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team...

5CVSS6.7AI score0.80134EPSS
Exploits20References7
RedHat Linux
RedHat Linux
added 2009/09/02 8:0 a.m.62 views

Moderate: Red Hat Security Advisory: openssl security, bug fix, and enhancement update

Updated openssl packages that fix several security issues, various bugs, and add enhancements are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. OpenSSL is a toolkit that implements the Secure...

5CVSS6.7AI score0.80134EPSS
Exploits20References8
Tenable Nessus
Tenable Nessus
added 2009/09/02 12:0 a.m.30 views

RHEL 5 : openssh (RHSA-2009:1287)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2009:1287 advisory. OpenSSH is OpenBSD's SSH Secure Shell protocol implementation. These packages include the core files necessary for both the OpenSSH client and server...

3.7CVSS6.7AI score0.15395EPSS
Exploits1References6
CERT
CERT
added 2008/01/03 12:0 a.m.41 views

OpenSSL FIPS Object Module fails to properly generate random seeds

Overview The OpenSSL FIPS Module fails to perform auto-seeding, which may allow an attacker to predict pseudo-randomly generated data. Description OpenSSL is a toolkit that provides SSL and TLS protocols as well as a general purpose cryptography library. The OpenSSL FIPS Object Module provides an...

6.4CVSS5.8AI score0.02312EPSS
Exploits0References8
Rows per page
Query Builder