CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4466 matches found

UbuntuCve•added 2024/01/16 2:15 p.m.•35 views

CVE-2024-0567

A vulnerability was found in GnuTLS, where a cockpit which uses gnuTLS rejects a certificate chain with distributed trust. This issue occurs when validating a certificate chain with cockpit-certificate-ensure. This flaw allows an unauthenticated, remote client or attacker to initiate a denial of...

7.5CVSS6.8AI score0.01611EPSS

Exploits1References5

Cvelist•added 2024/01/16 2:1 p.m.•25 views

CVE-2024-0567 Gnutls: rejects certificate chain with distributed trust

7.5CVSS7.6AI score0.01611EPSS

Exploits1References8

Debian CVE•added 2024/01/16 2:1 p.m.•22 views

CVE-2024-0567

7.5CVSS6.5AI score0.01611EPSS

Exploits1

CVE•added 2024/01/16 2:1 p.m.•217 views

CVE-2024-0567

CVE-2024-0567 – GnuTLS issue affects the certificate chain validation when using cockpit-certificate-ensure, causing a denial-of-service that can be triggered by an unauthenticated remote attacker. Documents refer to GnuTLS in cockpit and describe distributed-trust chain rejection as the root cau...

7.5CVSS7.2AI score0.01611EPSS

Exploits1References12Affected Software1

AlpineLinux•added 2024/01/16 2:1 p.m.•36 views

CVE-2024-0567

7.5CVSS7AI score0.01611EPSS

Exploits1

Vulnrichment•added 2024/01/16 2:1 p.m.•5 views

CVE-2024-0567 Gnutls: rejects certificate chain with distributed trust

7.5CVSS7.4AI score0.01611EPSS

Exploits1References8

NVD•added 2024/01/16 12:15 p.m.•14 views

CVE-2024-0553

A vulnerability was found in GnuTLS. The response times to malformed ciphertexts in RSA-PSK ClientKeyExchange differ from the response times of ciphertexts with correct PKCS1 v1.5 padding. This issue may allow a remote attacker to perform a timing side-channel attack in the RSA-PSK key exchange,...

7.5CVSS6.7AI score0.01028EPSS

Exploits1References16