CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4454 matches found

RedHat Linux•added 2025/10/06 2:41 a.m.•6 views

Moderate: Red Hat Security Advisory: gnutls security, bug fix, and enhancement update

An update for gnutls is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

8.2CVSS6.9AI score0.00292EPSS

Exploits0References5

RedHat Linux•added 2025/10/06 2:41 a.m.•3 views

gnutls: Vulnerability in GnuTLS SCT extension parsing

A heap-buffer-overread vulnerability was found in GnuTLS in how it handles the Certificate Transparency CT Signed Certificate Timestamp SCT extension during X.509 certificate parsing. This flaw allows a malicious user to create a certificate containing a malformed SCT extension OID...

5.3CVSS7AI score0.00113EPSS

Exploits0References5

RedHat Linux•added 2025/10/06 2:41 a.m.•3 views

gnutls: Vulnerability in GnuTLS certtool template parsing

A heap-buffer-overflow off-by-one flaw was found in the GnuTLS software in the template parsing logic within the certtool utility. When it reads certain settings from a template file, it allows an attacker to cause an out-of-bounds OOB NULL pointer write, resulting in memory corruption and a...

8.2CVSS6.7AI score0.00292EPSS

Exploits0References5

RedHat Linux•added 2025/10/06 2:41 a.m.•6 views

gnutls: Vulnerability in GnuTLS otherName SAN export

A flaw was found in GnuTLS. A double-free vulnerability exists in GnuTLS due to incorrect ownership handling in the export logic of Subject Alternative Name SAN entries containing an otherName. If the type-id OID is invalid or malformed, GnuTLS will call asn1deletestructure on an ASN.1 node it do...

8.2CVSS7AI score0.00228EPSS

Exploits0References5

RedHat Linux•added 2025/10/06 2:41 a.m.•3 views

gnutls: NULL pointer dereference in _gnutls_figure_common_ciphersuite()

A NULL pointer dereference flaw was found in the GnuTLS software in gnutlsfigurecommonciphersuite...

6.5CVSS7.1AI score0.00266EPSS

Exploits0References6

Tenable Nessus•added 2025/10/06 12:0 a.m.•2 views

RHEL 9 : gnutls (RHSA-2025:17348)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:17348 advisory. The gnutls packages provide the GNU Transport Layer Security GnuTLS library, which implements cryptographic algorithms and protocols such a...

8.2CVSS6.8AI score0.00292EPSS

Exploits0References11

OSV•added 2025/10/04 12:11 a.m.•4 views

RLSA-2025:7076 Moderate: gnutls security update

The gnutls packages provide the GNU Transport Layer Security GnuTLS library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS. Security Fixes: gnutls: GnuTLS Impacted by Inefficient DER Decoding in libtasn1 Leading to Remote DoS CVE-2024-12243 For more details...

5.3CVSS6.5AI score0.01227EPSS

Exploits0References2

Rockylinux•added 2025/10/04 12:11 a.m.•2 views

gnutls security update

An update is available for gnutls. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The gnutls packages provide the GNU Transport Layer Security GnuTLS library,...

5.3CVSS7.1AI score0.01227EPSS

Exploits0