CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

24 matches found

Broadcom•added 2026/05/19 12:0 a.m.•14 views

Security updated provided in Brocade ASCG 3.4.0b for container-tools (CVE-2024-24785, CVE-2025-61729, CVE-2025-65637)

Security update provided in Brocade ASCG before ASCG 3.4.0b CVE-2024-24785 Title: Errors returned from JSON marshaling may break template escaping in html/template Description If errors returned from MarshalJSON methods contain user controlled data, they may be used to break the contextual...

7.5CVSS5.8AI score0.00924EPSS

Exploits3

Tenable Nessus•added 2026/03/06 12:0 a.m.•0 views

openSUSE 16 Security Update : go1.24-openssl (openSUSE-SU-2026:20308-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20308-1 advisory. - Update to version 1.24.13 jscSLE-18320 - CVE-2025-58189: crypto/tls: ALPN negotiation error contains attacker controlled information. bsc12512...

10CVSS7.1AI score0.00045EPSS

Exploits4References62

RedHat Linux•added 2026/02/23 5:24 p.m.•5 views

Important: Red Hat Security Advisory: Red Hat OpenShift Service Mesh 3.1.5

Red Hat OpenShift Service Mesh 3.1.5 This update has a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the References section. Red Hat OpenShift Service Mesh 3.1....

7.5CVSS6.8AI score0.00019EPSS

Exploits2References4

RedHat Linux•added 2026/02/23 5:13 p.m.•3 views

Important: Red Hat Security Advisory: Red Hat OpenShift Service Mesh 3.0.8

Red Hat OpenShift Service Mesh 3.0.8 This update has a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the References section. Red Hat OpenShift Service Mesh 3.0....

7.5CVSS6.7AI score0.00019EPSS

Exploits2References3

SUSE Linux•added 2026/01/28 8:38 a.m.•5 views

Security update for go1.24-openssl

This update for go1.24-openssl fixes the following issues: Update to version 1.24.12 released 2026-01-15 jscSLE-18320, bsc1236217: Security fixes: CVE-2025-47912: net/url: insufficient validation of bracketed IPv6 hostnames bsc1251257. CVE-2025-58183: archive/tar: unbounded allocation when parsin...

8.8CVSS6.2AI score0.00045EPSS

Exploits4References84

RedhatCVE•added 2026/01/09 11:35 a.m.•4 views

CVE-2021-41393

Teleport before 4.4.11, 5.x before 5.2.4, 6.x before 6.2.12, and 7.x before 7.1.1 allows forgery of SSH host certificates in some situations...

9.8CVSS6.9AI score0.00397EPSS

Exploits0References1

SUSE Linux•added 2025/12/09 11:52 p.m.•3 views

Security update for go1.24

This update for go1.24 fixes the following issues: go1.24.11 released 2025-12-02 includes two security fixes to the crypto/x509 package, as well as bug fixes to the runtime. bsc1236217 CVE-2025-61727 CVE-2025-61729: go76460 go76445 bsc1254431 security: fix CVE-2025-61729 crypto/x509: excessive...

8.7CVSS7AI score0.00019EPSS

Exploits2References12

Microsoft CVE•added 2025/12/05 1:1 a.m.•2 views

Excessive resource consumption when printing error string for host certificate validation in crypto/x509

...

7.5CVSS7AI score0.00019EPSS

Exploits2

Snyk•added 2025/06/16 5:16 p.m.•1 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization when validating SSH host certificate signatures. Due to a related issue in the processing of IsUserAuthority and IsHostAuthority by x/crypto/ssh, an attacker can gain unauthorized access by providing a signed SSH...

9.8CVSS7AI score0.15302EPSS

Exploits0References2

OSV•added 2024/12/16 2:7 p.m.•13 views

BIT-NODE-MIN-2020-8172

TLS session reuse can lead to host certificate verification bypass in node version 12.18.0 and 14.4.0...

7.4CVSS7.4AI score0.01183EPSS

Exploits1References10

OSV•added 2024/03/06 11:8 a.m.•19 views

BIT-NODE-2020-8172

TLS session reuse can lead to host certificate verification bypass in node version 12.18.0 and 14.4.0...

7.4CVSS7.5AI score0.01183EPSS

Exploits1References10

SUSE CVE•added 2023/02/15 4:1 a.m.•1 views

SUSE CVE-2020-8172

TLS session reuse can lead to host certificate verification bypass in node version 12.18.0 and 14.4.0...

8.1CVSS8AI score0.01183EPSS

Exploits1References4

NVD•added 2021/09/18 4:15 p.m.•9 views

CVE-2021-41393

Teleport before 4.4.11, 5.x before 5.2.4, 6.x before 6.2.12, and 7.x before 7.1.1 allows forgery of SSH host certificates in some situations...

9.8CVSS0.00397EPSS

Exploits0References4

Prion•added 2021/09/18 4:15 p.m.•15 views

Design/Logic Flaw

Teleport before 4.4.11, 5.x before 5.2.4, 6.x before 6.2.12, and 7.x before 7.1.1 allows forgery of SSH host certificates in some situations...

7.5CVSS9.4AI score0.00397EPSS

Exploits0References4Affected Software1

IBM Security Bulletins•added 2020/11/30 6:52 p.m.•35 views

Security Bulletin: A security vulnerability in Node.js affects IBM Voice Gateway

Summary This vulnerability could potentially affect the STT and TTS adapter microservices if they are used over the public internet which is not a recommended configuration for production. Consider updating if this scenario is relevant. Vulnerability Details CVEID: CVE-2020-8172 DESCRIPTION:...

7.4CVSS1.2AI score0.01183EPSS

Exploits1Affected Software1

OSV•added 2020/06/08 2:15 p.m.•24 views

CVE-2020-8172

TLS session reuse can lead to host certificate verification bypass in node version 12.18.0 and 14.4.0...

7.4CVSS6.5AI score

Exploits0References9

NVD•added 2020/06/08 2:15 p.m.•19 views

CVE-2020-8172

TLS session reuse can lead to host certificate verification bypass in node version 12.18.0 and 14.4.0...

7.4CVSS7.5AI score0.01183EPSS

Exploits1References9