Lucene search
+L

4 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/11/19 6:43 a.m.4 views

Security Bulletin: Erlang/OTP SSH Handshake Hardening Bypass Enables MitM Injection (Patched in OTP 25–27 Updates)

Summary Erlang/OTP is a set of libraries for the Erlang programming language. In versions prior to OTP-27.3.4 for OTP-27, OTP-26.2.5.12 for OTP-26, and OTP-25.3.2.21 for OTP-25, Erlang/OTP SSH fails to enforce strict KEX handshake hardening measures by allowing optional messages to be exchanged...

3.7CVSS6.6AI score0.0046EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/07/11 12:0 a.m.4 views

CBL Mariner 2.0 Security Update: erlang (CVE-2025-46712)

The version of erlang installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-46712 advisory. - Erlang/OTP is a set of libraries for the Erlang programming language. In versions prior to OTP-27.3.4 for...

3.7CVSS5.8AI score0.0046EPSS
Exploits0References2
OSV
OSV
added 2025/05/23 2:0 p.m.5 views

OESA-2025-1552 erlang security update

Erlang is a general-purpose programming language and runtime environment. Erlang has built-in support for concurrency, distribution and fault tolerance. Erlang is used in several large telecommunication systems from Ericsson. Security Fixes: Erlang/OTP is a set of libraries for the Erlang...

3.7CVSS6.8AI score0.0046EPSS
Exploits0References2
OSV
OSV
added 2025/05/08 7:26 p.m.6 views

CVE-2025-46712 Erlang/OTP SSH Has Strict KEX Violations

Erlang/OTP is a set of libraries for the Erlang programming language. In versions prior to OTP-27.3.4 for OTP-27, OTP-26.2.5.12 for OTP-26, and OTP-25.3.2.21 for OTP-25, Erlang/OTP SSH fails to enforce strict KEX handshake hardening measures by allowing optional messages to be exchanged. This...

3.7CVSS6.4AI score0.0046EPSS
Exploits0References7
Rows per page
Query Builder