Lucene search
K

9 matches found

OSV
OSV
added 2026/05/27 2:17 p.m.7 views

UBUNTU-CVE-2026-46027

In the Linux kernel, the following vulnerability has been resolved: net/smc: avoid early lgr access in smcclcwaitmsg A CLC decline can be received while the handshake is still in an early stage, before the connection has been associated with a link group. The decline handling in smcclcwaitmsg...

7.5CVSS5.7AI score0.00501EPSS
Exploits0References7
seebug.org
seebug.org
added 2018/01/15 12:0 a.m.400 views

An Analysis of the OpenSSL SSL Handshake Error State Security Bypass (CVE-2017-3737)

OpenSSL is a widely used library for SSL and TLS protocol implementation that secures data using encryption and decryption based on cryptographic functions. However, a Security Bypass vulnerability – recently addressed in a patch by the OpenSSL Project –can be exploited to make vulnerable SSL...

4.3CVSS0.5AI score0.78675EPSS
Exploits1
Prion
Prion
added 2018/01/08 7:29 p.m.19 views

Design/Logic Flaw

The TLS stack in Mono before 3.12.1 allows man-in-the-middle attackers to conduct message skipping attacks and consequently impersonate clients by leveraging missing handshake state validation, aka a "SMACK SKIP-TLS" issue...

6.8CVSS6.7AI score0.0197EPSS
Exploits0References8Affected Software2
Cvelist
Cvelist
added 2018/01/08 7:0 p.m.27 views

CVE-2015-2318

The TLS stack in Mono before 3.12.1 allows man-in-the-middle attackers to conduct message skipping attacks and consequently impersonate clients by leveraging missing handshake state validation, aka a "SMACK SKIP-TLS" issue...

8.2AI score0.0197EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2018/01/08 7:0 p.m.37 views

CVE-2015-2318

The TLS stack in Mono before 3.12.1 allows man-in-the-middle attackers to conduct message skipping attacks and consequently impersonate clients by leveraging missing handshake state validation, aka a "SMACK SKIP-TLS" issue...

8.1CVSS8.7AI score0.0197EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2015/03/18 12:0 a.m.37 views

CVE-2015-2318

The TLS stack in Mono before 3.12.1 allows man-in-the-middle attackers to conduct message skipping attacks and consequently impersonate clients by leveraging missing handshake state validation, aka a "SMACK SKIP-TLS" issue...

8.1CVSS7.2AI score0.0197EPSS
Exploits0References3
NVD
NVD
added 2014/02/18 12:55 a.m.24 views

CVE-2014-0627

The SSLEngine API implementation in EMC RSA BSAFE SSL-J 5.x before 5.1.3 and 6.x before 6.0.2 allows remote attackers to trigger the selection of a weak cipher suite by using the wrap method during a certain incomplete-handshake state...

5CVSS6.6AI score0.01531EPSS
Exploits0References1
Prion
Prion
added 2014/02/18 12:55 a.m.17 views

Design/Logic Flaw

The SSLEngine API implementation in EMC RSA BSAFE SSL-J 5.x before 5.1.3 and 6.x before 6.0.2 allows remote attackers to trigger the selection of a weak cipher suite by using the wrap method during a certain incomplete-handshake state...

5CVSS7.2AI score0.01531EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2014/02/18 12:0 a.m.51 views

CVE-2014-0627

Summary: CVE-2014-0627 affects EMC RSA BSAFE SSL-J (SSL-J) 5.x before 5.1.3 and 6.x before 6.0.2. The SSLEngine API can reveal information by using the wrap method after the Finished message in an incomplete handshake, potentially allowing an attacker to trigger a weak cipher suite. Impact: Infor...

5CVSS6.8AI score0.01531EPSS
Exploits0References1Affected Software2
Rows per page
Query Builder