CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2025/07/25 12:0 a.m.•4 views

NewStart CGSL MAIN 7.02 : tongsuo Vulnerability (NS-SA-2025-0197)

The remote NewStart CGSL host, running version MAIN 7.02, has tongsuo packages installed that are affected by a vulnerability: - Issue summary: The POLY1305 MAC message authentication code implementation contains a bug that might corrupt the internal state of applications on the Windows 64 platfo...

7.8CVSS7AI score0.00862EPSS

Exploits0References3

IBM Security Bulletins•added 2024/09/09 7:8 a.m.•67 views

Security Bulletin: IBM Maximo Application Suite - There is a vulnerability in Python used by IBM Maximo Manage application in IBM Maximo Application Suite (CVE-2018-20225, CVE-2019-20916, CVE-2023-43804, CVE-2023-4807)

Summary There is a vulnerability in Python used by IBM Maximo Manage application in IBM Maximo Application Suite Vulnerability Details CVEID:CVE-2018-20225 DESCRIPTION: Pip could allow a local attacker to execute arbitrary code on the system, caused by a flaw in the --extra-index-url option. By...

8.1CVSS9.1AI score0.03003EPSS

Exploits1Affected Software1

Tenable Nessus•added 2024/07/08 12:0 a.m.•29 views

Tenable.ad < 3.59.5 Multiple Vulnerabilities (TNS-2024-11)

The version of Tenable.ad installed on the remote host is prior to 3.59.5. It is, therefore, affected by multiple vulnerabilities as referenced in the TNS-2024-11 advisory. - The POLY1305 MAC message authentication code implementation contains a bug that might corrupt the internal state of...

8.6CVSS7.7AI score0.87211EPSS

Exploits11References24

Tenable Nessus•added 2024/07/03 12:0 a.m.•24 views

CBL Mariner 2.0 Security Update: kata-containers-cc / hvloader / kata-containers / nodejs18 (CVE-2023-4807)

The version of kata-containers-cc / hvloader / kata-containers / nodejs18 installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-4807 advisory. - Issue summary: The POLY1305 MAC message authentication co...

Tenable Nessus•added 2024/03/21 12:0 a.m.•31 views

EulerOS Virtualization 2.11.1 : openssl (EulerOS-SA-2024-1417)

According to the versions of the openssl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Issue summary: The POLY1305 MAC message authentication code implementation contains a bug that might corrupt the internal state ...

7.8CVSS7AI score0.04459EPSS

Exploits0References3

OpenVAS•added 2024/03/21 12:0 a.m.•22 views

Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2024-1445)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.3AI score0.04459EPSS

Tenable Nessus•added 2024/03/21 12:0 a.m.•42 views

EulerOS Virtualization 2.11.0 : openssl (EulerOS-SA-2024-1445)

7.8CVSS7AI score0.04459EPSS

Exploits0References3

IBM Security Bulletins•added 2024/03/14 5:18 a.m.•37 views

Security Bulletin: Vulnerabilities in OpenSSL affect IBM Rational ClearQuest

Summary OpenSSL vulnerabilities were disclosed by the OpenSSL Project. OpenSSL is used by IBM Rational ClearQuest. IBM Rational ClearQuest has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2023-4807 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by a state...

7.8CVSS8.1AI score0.00862EPSS

Tenable Nessus•added 2024/01/16 12:0 a.m.•37 views

EulerOS 2.0 SP11 : openssl (EulerOS-SA-2023-3255)

According to the versions of the openssl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Issue summary: The POLY1305 MAC message authentication code implementation contains a bug that might corrupt the internal state of applications...

Tenable Nessus•added 2024/01/16 12:0 a.m.•44 views

EulerOS 2.0 SP11 : openssl (EulerOS-SA-2023-3283)

IBM Security Bulletins•added 2023/12/14 6:57 p.m.•42 views

Security Bulletin: IBM MQ Appliance is vulnerable to a denial of service (CVE-2023-4807)

Summary IBM MQ Appliance has resolved a denial of service vulnerability. Vulnerability Details CVEID:CVE-2023-4807 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by a state corruption flaw in the POLY1305 MAC message authentication code implementation, when running on newer X86...

IBM Security Bulletins•added 2023/12/13 8:4 p.m.•37 views

Security Bulletin: IBM DataPower Gateway potentially vulnerable to a denial of service (CVE-2023-4807)

Summary IBM has addressed the CVE Vulnerability Details CVEID:CVE-2023-4807 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by a state corruption flaw in the POLY1305 MAC message authentication code implementation, when running on newer X8664 processors supporting the AVX512-IFM...

OpenVAS•added 2023/12/12 12:0 a.m.•27 views

Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2023-3255)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OpenVAS•added 2023/12/12 12:0 a.m.•29 views

Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2023-3283)

IBM Security Bulletins•added 2023/12/11 9:45 a.m.•42 views

Security Bulletin: IBM Spectrum Control is vulnerable to multiple weaknesses related to OpenSSL

Summary Vulnerabilities in OpenSSL such as remote attacker bypass security restrictions, denial of service may affect IBM Spectrum Control. These vulnerabilities have been addressed. Vulnerability Details CVEID:CVE-2023-0466 DESCRIPTION: OpenSSL could allow a remote attacker to bypass security...

7.8CVSS7.5AI score0.05533EPSS

Tenable Nessus•added 2023/09/12 12:0 a.m.•122 views

OpenSSL 1.1.1 < 1.1.1w Vulnerability

The version of OpenSSL installed on the remote host is prior to 1.1.1w. It is, therefore, affected by a vulnerability as referenced in the 1.1.1w advisory. - Issue summary: The POLY1305 MAC message authentication code implementation contains a bug that might corrupt the internal state of...

Tenable Nessus•added 2023/09/12 12:0 a.m.•69 views

OpenSSL 3.1.0 < 3.1.3 Vulnerability

The version of OpenSSL installed on the remote host is prior to 3.1.3. It is, therefore, affected by a vulnerability as referenced in the 3.1.3 advisory. - Issue summary: The POLY1305 MAC message authentication code implementation contains a bug that might corrupt the internal state of applicatio...

Tenable Nessus•added 2023/09/12 12:0 a.m.•73 views

OpenSSL 3.0.0 < 3.0.11 Vulnerability

The version of OpenSSL installed on the remote host is prior to 3.0.11. It is, therefore, affected by a vulnerability as referenced in the 3.0.11 advisory. - Issue summary: The POLY1305 MAC message authentication code implementation contains a bug that might corrupt the internal state of...