Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4564 matches found

IBM Security Bulletins
IBM Security Bulletinsadded 2018/06/18 1:38 a.m.39 views

Security Bulletin: Vulnerabilities in GnuTLS affect PowerKVM

Summary PowerKVM is affected by vulnerabilities in GnuTLS. IBM has now addressed these vulnerabilities. Vulnerability Details CVEID: CVE-2017-7869 DESCRIPTION: GnuTLS is vulnerable to a denial of service, caused by an integer overflow and heap-based buffer overflow in cdkpktread function in...

9.8CVSS1.3AI score0.05592EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2018/06/18 1:35 a.m.38 views

Security Bulletin: Vulnerabilities in GnuTLS and OpenSSL affect IBM Flex System Manager (FSM) (CVE-2016-8610)

Summary Vulnerabilities have been discovered in GnuTLS and OpenSSL used by IBM FSM. These issues are addressed in this bulletin. Vulnerability Details CVEID: CVE-2016-8610 DESCRIPTION: The SSL/TLS protocol is vulnerable to a denial of service, caused by an error when processing ALERT packets duri...

7.5CVSS1AI score0.71356EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2018/06/18 1:31 a.m.31 views

Security Bulletin: Multiple vulnerabilities in gnutls affect IBM Flex System Manager(FSM) (CVE-2015-2806, CVE-2015-8313)

Summary Multiple security vulnerabilities have been discovered in gnutls that is embedded in the IBM FSM. This bulletin addresses these vulnerabilities. Vulnerability Details CVEID: CVE-2015-2806 DESCRIPTION: An unspecified error in libtasn1 related to asn1derdecoding has an unknown impact and...

10CVSS1AI score0.09345EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2018/06/18 12:8 a.m.31 views

Security Bulletin: TS3000 code level v7.x affected by Open Source GnuTLS cyrpto issue (CVE-2014-0092)

Summary Security vulnerability CVE-2014-0092 has been found that affects certain level of TSSC code Vulnerability Details TSSC-CVE-2014-0092.doc...

5.8CVSS2.2AI score0.04785EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2018/06/17 10:30 p.m.25 views

Security Bulletin: Vulnerability in Gnu Transport Layer Security (GnuTLS) affects IBM SmartCloud Provisioning 2.1 for IBM Provided Software Virtual Appliance (CVE-2014-3466).

Summary Vulnerability in Gnu Transport Layer Security GnuTLS affects IBM SmartCloud Provisioning 2.1 for IBM Provided Software Virtual Appliance CVE-2014-3466. Vulnerability Details CVE ID: CVE-2014-3466 DESCRIPTION: The GnuTLS library provides support for cryptographic algorithms and for protoco...

6.8CVSS0.7AI score0.13715EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2018/06/16 10:4 p.m.38 views

Security Bulletin: IBM Security Access Manager Appliance is affected by GnuTLS vulnerabilities

Summary IBM Security Access Manager Appliance has addressed the following vulnerabilities in the GnuTLS packages used by the appliance. Vulnerability Details CVEID: CVE-2017-7869 DESCRIPTION: GnuTLS is vulnerable to a denial of service, caused by an integer overflow and heap-based buffer overflow...

9.8CVSS1.5AI score0.05592EPSS
Exploits0Affected Software1
ArchLinux
ArchLinuxadded 2018/05/18 12:0 a.m.39 views

[ASA-201805-18] libcurl-gnutls: multiple issues

Arch Linux Security Advisory ASA-201805-18 ========================================== Severity: Critical Date : 2018-05-18 CVE-ID : CVE-2018-1000300 CVE-2018-1000301 Package : libcurl-gnutls Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-699 Summary ======= The...

9.8CVSS1.2AI score0.02845EPSS
Exploits0References7
ArchLinux
ArchLinuxadded 2018/05/18 12:0 a.m.35 views

[ASA-201805-16] lib32-libcurl-gnutls: multiple issues

Arch Linux Security Advisory ASA-201805-16 ========================================== Severity: Critical Date : 2018-05-18 CVE-ID : CVE-2018-1000300 CVE-2018-1000301 Package : lib32-libcurl-gnutls Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-697 Summary ======= Th...

9.8CVSS1.2AI score0.02845EPSS
Exploits0References7
ossfuzz
ossfuzzadded 2018/04/07 6:27 p.m.15 views

gnutls/gnutls_psk_server_fuzzer: Use-of-uninitialized-value in psk_ke_modes_recv_params

Project: https://gitlab.com/gnutls/gnutls.git Detailed report: https://oss-fuzz.com/testcase?key=6230886388334592 Project: gnutls Fuzzer: libFuzzergnutlspskserverfuzzer Fuzz target binary: gnutlspskserverfuzzer Job Type: libfuzzermsangnutls Platform Id: linux Crash Type: Use-of-uninitialized-valu...

6.7AI score
Exploits0Affected Software1
ArchLinux
ArchLinuxadded 2018/03/19 12:0 a.m.37 views

[ASA-201803-20] lib32-libcurl-gnutls: multiple issues

Arch Linux Security Advisory ASA-201803-20 ========================================== Severity: Medium Date : 2018-03-19 CVE-ID : CVE-2018-1000120 CVE-2018-1000121 CVE-2018-1000122 Package : lib32-libcurl-gnutls Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-656...

9.8CVSS0.6AI score0.02668EPSS
Exploits0References13
ArchLinux
ArchLinuxadded 2018/03/19 12:0 a.m.25 views

[ASA-201803-19] libcurl-gnutls: multiple issues

Arch Linux Security Advisory ASA-201803-19 ========================================== Severity: Medium Date : 2018-03-19 CVE-ID : CVE-2018-1000120 CVE-2018-1000121 CVE-2018-1000122 Package : libcurl-gnutls Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-661 Summary...

9.8CVSS0.6AI score0.02668EPSS
Exploits0References13
CNVD
CNVDadded 2018/02/06 12:0 a.m.4 views

Apache mod-gnutls Certificate Spoofing Vulnerability

Apache mod-gnutls is an extension to Apache httpd which provides HTTPS services through the use of the GnuTLS library from the Apache Software Foundation USA. A security vulnerability exists in Apache mod-gnutls that stems from the program's failure to validate client certificates. A remote...

7.5CVSS6.9AI score0.00163EPSS
Exploits0References1
Prion
Prionadded 2018/02/03 3:29 p.m.15 views

Design/Logic Flaw

mod-gnutls does not validate client certificates when "GnuTLSClientVerify require" is set in a directory context, which allows remote attackers to spoof clients via a crafted certificate...

5CVSS7AI score0.00163EPSS
Exploits0References4
NVD
NVDadded 2018/02/03 3:29 p.m.12 views

CVE-2009-5144

mod-gnutls does not validate client certificates when "GnuTLSClientVerify require" is set in a directory context, which allows remote attackers to spoof clients via a crafted certificate...

7.5CVSS7.4AI score0.00163EPSS
Exploits0References4
UbuntuCve
UbuntuCveadded 2018/02/03 3:29 p.m.16 views

CVE-2009-5144

mod-gnutls does not validate client certificates when "GnuTLSClientVerify require" is set in a directory context, which allows remote attackers to spoof clients via a crafted certificate...

7.5CVSS7.1AI score0.00163EPSS
Exploits0References1
CVE
CVEadded 2018/02/03 12:0 a.m.43 views

CVE-2009-5144

Summary: CVE-2009-5144 affects the Apache mod-gnutls module, which integrates GnuTLS with Apache HTTP Server. The vulnerability is that mod-gnutls does not validate client certificates when the directory context is configured with "GnuTLSClientVerify require", allowing a remote attacker to spoof ...

7.5CVSS7.3AI score0.00163EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVEadded 2018/02/03 12:0 a.m.17 views

CVE-2009-5144

Removed by vendor...

7.5CVSS7.7AI score0.00163EPSS
Exploits0
Cvelist
Cvelistadded 2018/02/03 12:0 a.m.11 views

CVE-2009-5144

mod-gnutls does not validate client certificates when "GnuTLSClientVerify require" is set in a directory context, which allows remote attackers to spoof clients via a crafted certificate...

7.4AI score0.00163EPSS
Exploits0References4
ArchLinux
ArchLinuxadded 2018/01/29 12:0 a.m.30 views

[ASA-201801-24] libcurl-gnutls: multiple issues

Arch Linux Security Advisory ASA-201801-24 ========================================== Severity: Medium Date : 2018-01-29 CVE-ID : CVE-2018-1000005 CVE-2018-1000007 Package : libcurl-gnutls Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-596 Summary ======= The packag...

9.8CVSS9.3AI score0.03854EPSS
Exploits0References7
ArchLinux
ArchLinuxadded 2018/01/29 12:0 a.m.28 views

[ASA-201801-25] lib32-libcurl-gnutls: multiple issues

Arch Linux Security Advisory ASA-201801-25 ========================================== Severity: Medium Date : 2018-01-29 CVE-ID : CVE-2018-1000005 CVE-2018-1000007 Package : lib32-libcurl-gnutls Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-597 Summary ======= The...

9.8CVSS9.4AI score0.03854EPSS
Exploits0References7
Rows per page
Query Builder