CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2025/03/05 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2022-1615

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Samba, GnuTLS gnutlsrnd can fail and give predictable random values. CVE-2022-1615 Note that Nessus relies on the presence of the package as reported by the...

5.5CVSS6.3AI score0.00259EPSS

Exploits1References3

Tenable Nessus•added 2025/03/05 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2021-4209

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A NULL pointer dereference flaw was found in GnuTLS. As Nettle's hash update functions internally call memcpy, providing zero-length input may cause undefined...

6.5CVSS6.6AI score0.00366EPSS

OpenVAS•added 2025/03/05 12:0 a.m.•5 views

openSUSE Security Advisory (SUSE-SU-2025:0764-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS6.8AI score0.01227EPSS

Exploits0References4

Tenable Nessus•added 2025/03/04 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2018-16868

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A Bleichenbacher type side-channel based padding oracle attack was found in the way gnutls handles verification of RSA decrypted PKCS1 v1.5 data. An attacker wh...

5.6CVSS5.3AI score0.00042EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•10 views

Linux Distros Unpatched Vulnerability : CVE-2017-7869

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GnuTLS before 2017-02-20 has an out-of-bounds write caused by an integer overflow and heap-based buffer overflow related to the cdkpktread function in...

7.5CVSS7.4AI score0.00703EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2018-10846

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A cache-based side channel in GnuTLS implementation that leads to plain text recovery in cross-VM attack setting was found. An attacker could use a combination ...

5.6CVSS6.2AI score0.00019EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2013-1619

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The TLS implementation in GnuTLS before 2.12.23, 3.0.x before 3.0.28, and 3.1.x before 3.1.7 does not properly consider timing side-channel attacks on a...

4CVSS6.8AI score0.01146EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•12 views

Linux Distros Unpatched Vulnerability : CVE-2015-0294

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GnuTLS before 3.3.13 does not validate that the signature algorithms match when importing a certificate. CVE-2015-0294 Note that Nessus relies on the presence o...

7.5CVSS7.2AI score0.00426EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2018-10844

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - It was found that the GnuTLS implementation of HMAC-SHA-256 was vulnerable to a Lucky thirteen style attack. Remote attackers could use this flaw to conduct...

5.9CVSS6.3AI score0.0025EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•1 views

SUSE SLES12 Security Update : gnutls (SUSE-SU-2025:0767-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2025:0767-1 advisory. - CVE-2024-12243: quadratic complexity of DER input decoding in libtasn1 can lead to a DoS bsc1236974. Tenable has extracted the preceding description...

5.3CVSS6.6AI score0.01227EPSS

Exploits0References4

Tenable Nessus•added 2025/03/04 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2014-8155

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GnuTLS before 2.9.10 does not verify the activation and expiration dates of CA certificates, which allows man-in-the-middle attackers to spoof servers via a...

4.3CVSS7.2AI score0.00286EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2014-0092

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - lib/x509/verify.c in GnuTLS before 3.1.22 and 3.2.x before 3.2.12 does not properly handle unspecified errors when verifying X.509 certificates from SSL servers...

5.8CVSS5.4AI score0.04785EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2015-3308

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Double free vulnerability in lib/x509/x509ext.c in GnuTLS before 3.3.14 allows remote attackers to cause a denial of service or possibly have unspecified other...

7.5CVSS7.6AI score0.01394EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2014-3694

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The 1 bundled GnuTLS SSL/TLS plugin and the 2 bundled OpenSSL SSL/TLS plugin in libpurple in Pidgin before 2.10.10 do not properly consider the Basic Constraint...

6.4CVSS6.9AI score0.01448EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2017-5335

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The stream reading functions in lib/opencdk/read-packet.c in GnuTLS before 3.3.26 and 3.5.x before 3.5.8 allow remote attackers to cause a denial of service...

7.5CVSS7.2AI score0.02779EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2012-1573

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - gnutlscipher.c in libgnutls in GnuTLS before 2.12.17 and 3.x before 3.0.15 does not properly handle data encrypted with a block cipher, which allows remote...

5CVSS7.2AI score0.09562EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2020-14154

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mutt before 1.14.3 proceeds with a connection even if, in response to a GnuTLS certificate prompt, the user rejects an expired intermediate certificate...

5.8CVSS6.1AI score0.00692EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•10 views

Linux Distros Unpatched Vulnerability : CVE-2014-3466

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer overflow in the readserverhello function in lib/gnutlshandshake.c in GnuTLS before 3.1.25, 3.2.x before 3.2.15, and 3.3.x before 3.3.4 allows remote...

6.8CVSS7.7AI score0.13715EPSS