Lucene search
K

5 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-3553

Malware in sbrugna...

5CVSS6.3AI score0.06574EPSS
Exploits0References45
SUSE CVE
SUSE CVE
added 2023/02/15 5:28 a.m.3 views

SUSE CVE-2014-3572

The ssl3getkeyexchange function in s3clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct ECDHE-to-ECDH downgrade attacks and trigger a loss of forward secrecy by omitting the ServerKeyExchange message...

5CVSS8.7AI score0.06574EPSS
Exploits0References19
OSV
OSV
added 2015/07/20 10:4 p.m.8 views

USN-2673-1 thunderbird vulnerabilities

Karthikeyan Bhargavan discovered that NSS incorrectly handled state transitions for the TLS state machine. If a remote attacker were able to perform a machine-in-the-middle attack, this flaw could be exploited to skip the ServerKeyExchange message and remove the forward-secrecy property...

10CVSS6.5AI score0.9986EPSS
Exploits2References11
OSV
OSV
added 2015/01/09 2:59 a.m.5 views

DEBIAN-CVE-2014-3572

The ssl3getkeyexchange function in s3clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct ECDHE-to-ECDH downgrade attacks and trigger a loss of forward secrecy by omitting the ServerKeyExchange message...

5CVSS6.3AI score0.06574EPSS
Exploits0References1
OSV
OSV
added 2015/01/08 12:0 a.m.12 views

UBUNTU-CVE-2014-3572

The ssl3getkeyexchange function in s3clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct ECDHE-to-ECDH downgrade attacks and trigger a loss of forward secrecy by omitting the ServerKeyExchange message...

5CVSS6.7AI score0.06574EPSS
Exploits0References3
Rows per page
Query Builder