Lucene search
+L

145 matches found

Tenable Nessus
Tenable Nessus
added 2023/05/18 12:0 a.m.27 views

EulerOS 2.0 SP10 : shim (EulerOS-SA-2023-1962)

According to the versions of the shim packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - There is a type confusion vulnerability relating to X.400 address processing inside an X.509 GeneralName. X.400 addresses were parsed as an...

7.4CVSS8AI score0.59501EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/05/18 12:0 a.m.28 views

Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2023-1984)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.4CVSS8.2AI score0.59501EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/05/17 12:0 a.m.22 views

EulerOS 2.0 SP10 : shim (EulerOS-SA-2023-1984)

According to the versions of the shim package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - There is a type confusion vulnerability relating to X.400 address processing inside an X.509 GeneralName. X.400 addresses were parsed as an...

7.4CVSS8AI score0.59501EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/05/16 12:0 a.m.51 views

RHEL 8 : edk2 (RHSA-2023:2932)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:2932 advisory. EDK Embedded Development Kit is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware f...

7.5CVSS7.6AI score0.59501EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2023/05/12 12:0 a.m.49 views

RHEL 9 : edk2 (RHSA-2023:2165)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:2165 advisory. EDK Embedded Development Kit is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware f...

9.8CVSS7.5AI score0.59501EPSS
Exploits0References20
OpenVAS
OpenVAS
added 2023/05/10 12:0 a.m.31 views

Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2023-1853)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.4CVSS8.2AI score0.59501EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/04/29 12:0 a.m.29 views

RHEL 9 : edk2 (RHSA-2023:2022)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:2022 advisory. EDK Embedded Development Kit is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU a...

7.4CVSS7.8AI score0.59501EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/04/25 12:0 a.m.67 views

Oracle Linux 6 : openssl (ELSA-2023-12297)

The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-12297 advisory. - Backport fixes for CVE-2023-0286 Orabug: 35212597 - Fix possible infinite loop in BNmodsqrt CVE-2022-0778Orabug: 33969800 - Backport fixes for CVE-2020-1971...

10CVSS8.1AI score0.99999EPSS
Exploits132References2
Tenable Nessus
Tenable Nessus
added 2023/04/14 12:0 a.m.40 views

FreeBSD : py-cryptography -- includes a vulnerable copy of OpenSSL (c1a8ed1c-2814-4260-82aa-9e37c83aac93)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the c1a8ed1c-2814-4260-82aa-9e37c83aac93 advisory. - There is a type confusion vulnerability relating to X.400 address processing inside an X.509...

7.4CVSS8AI score0.59501EPSS
Exploits0References3
OSV
OSV
added 2023/03/28 1:7 p.m.42 views

RLSA-2023:1405 Important: openssl security update

OpenSSL is a toolkit that implements the Secure Sockets Layer SSL and Transport Layer Security TLS protocols, as well as a full-strength general-purpose cryptography library. Security Fixes: openssl: X.400 address type confusion in X.509 GeneralName CVE-2023-0286 openssl: timing attack in RSA...

7.5CVSS7.3AI score0.59501EPSS
Exploits0References5
Oracle linux
Oracle linux
added 2023/03/28 12:0 a.m.54 views

openssl security update

1:1.1.1k-9 - Fixed Timing Oracle in RSA Decryption Resolves: CVE-2022-4304 - Fixed Double free after calling PEMreadbioex Resolves: CVE-2022-4450 - Fixed Use-after-free following BIOnewNDEF Resolves: CVE-2023-0215 - Fixed X.400 address type confusion in X.509 GeneralName Resolves: CVE-2023-0286...

7.5CVSS7.4AI score0.59501EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2023/03/23 11:14 a.m.8 views

openssl: X.400 address type confusion in X.509 GeneralName

A type confusion vulnerability was found in OpenSSL when OpenSSL X.400 addresses processing inside an X.509 GeneralName. When CRL checking is enabled for example, the application sets the X509VFLAGCRLCHECK flag, this vulnerability may allow an attacker to pass arbitrary pointers to a memcmp call,...

7.4CVSS6.8AI score0.59501EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/03/23 11:14 a.m.51 views

Important: Red Hat Security Advisory: openssl security update

An update for openssl is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.4CVSS7.1AI score0.59501EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/03/23 11:13 a.m.7 views

openssl: X.400 address type confusion in X.509 GeneralName

A type confusion vulnerability was found in OpenSSL when OpenSSL X.400 addresses processing inside an X.509 GeneralName. When CRL checking is enabled for example, the application sets the X509VFLAGCRLCHECK flag, this vulnerability may allow an attacker to pass arbitrary pointers to a memcmp call,...

7.4CVSS6.8AI score0.59501EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/03/23 11:11 a.m.10 views

openssl: X.400 address type confusion in X.509 GeneralName

A type confusion vulnerability was found in OpenSSL when OpenSSL X.400 addresses processing inside an X.509 GeneralName. When CRL checking is enabled for example, the application sets the X509VFLAGCRLCHECK flag, this vulnerability may allow an attacker to pass arbitrary pointers to a memcmp call,...

7.4CVSS6.8AI score0.59501EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/03/23 11:11 a.m.65 views

Important: Red Hat Security Advisory: openssl security update

An update for openssl is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.4CVSS7.1AI score0.59501EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/03/23 11:10 a.m.5 views

openssl: X.400 address type confusion in X.509 GeneralName

A type confusion vulnerability was found in OpenSSL when OpenSSL X.400 addresses processing inside an X.509 GeneralName. When CRL checking is enabled for example, the application sets the X509VFLAGCRLCHECK flag, this vulnerability may allow an attacker to pass arbitrary pointers to a memcmp call,...

7.4CVSS6.8AI score0.59501EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/03/23 11:10 a.m.99 views

Important: Red Hat Security Advisory: openssl security update

An update for openssl is now available for Red Hat Enterprise Linux 6 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available fo...

7.4CVSS7.1AI score0.59501EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/03/23 10:57 a.m.85 views

Important: Red Hat Security Advisory: openssl security update

An update for openssl is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.4CVSS7.1AI score0.59501EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/03/23 10:57 a.m.7 views

openssl: X.400 address type confusion in X.509 GeneralName

A type confusion vulnerability was found in OpenSSL when OpenSSL X.400 addresses processing inside an X.509 GeneralName. When CRL checking is enabled for example, the application sets the X509VFLAGCRLCHECK flag, this vulnerability may allow an attacker to pass arbitrary pointers to a memcmp call,...

7.4CVSS6.8AI score0.59501EPSS
Exploits0References5
Rows per page
Query Builder