Lucene search
K

7 matches found

Prion
Prion
added 2021/10/05 6:15 p.m.17 views

Privilege escalation

The FTL Server tibftlserver and Docker images containing tibftlserver components of TIBCO Software Inc.'s TIBCO ActiveSpaces - Community Edition, TIBCO ActiveSpaces - Developer Edition, TIBCO ActiveSpaces - Enterprise Edition, TIBCO FTL - Community Edition, TIBCO FTL - Developer Edition, TIBCO FT...

6CVSS7.6AI score0.00407EPSS
Exploits0References2Affected Software3
Microsoft CVE
Microsoft CVE
added 2020/09/25 7:0 a.m.4 views

An issue was discovered in the OpenSSL library in Ruby before 2.3.8 2.4.x before 2.4.5 2.5.x before 2.5.2 and 2.6.x before 2.6.0-preview3. When two OpenSSL::X509::Name objects are compared using == depending on the ordering non-equal objects may return true. When the first argument is one character longer than the second or the second argument contains a character that is one less than a character in the same position of the first argument the result of == will be true. This could be leveraged to create an illegitimate certificate that may be accepted as legitimate and then used in signing or encryption operations.

...

9.8CVSS9.6AI score0.10715EPSS
Exploits0
Amazon
Amazon
added 2019/01/07 12:0 a.m.38 views

Important: ruby

Issue Overview: An issue was discovered in the OpenSSL library in Ruby. When two OpenSSL::X509::Name objects are compared using ==, depending on the ordering, non-equal objects may return true. When the first argument is one character longer than the second, or the second argument contains a...

9.8CVSS9.6AI score0.10715EPSS
Exploits0
NVD
NVD
added 2018/11/16 6:29 p.m.18 views

CVE-2018-16395

An issue was discovered in the OpenSSL library in Ruby before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.2, and 2.6.x before 2.6.0-preview3. When two OpenSSL::X509::Name objects are compared using ==, depending on the ordering, non-equal objects may return true. When the first argument is one...

9.8CVSS8.3AI score0.10715EPSS
Exploits0References19
OSV
OSV
added 2018/11/16 6:29 p.m.3 views

ALPINE-CVE-2018-16395

An issue was discovered in the OpenSSL library in Ruby before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.2, and 2.6.x before 2.6.0-preview3. When two OpenSSL::X509::Name objects are compared using ==, depending on the ordering, non-equal objects may return true. When the first argument is one...

9.8CVSS7AI score0.10715EPSS
Exploits0References1
Snyk
Snyk
added 2018/11/16 6:29 p.m.3 views

Incomplete Comparison with Missing Factors

Overview openssl is a package that wraps the OpenSSL library. Affected versions of this package are vulnerable to Incomplete Comparison with Missing Factors. An issue was discovered in the OpenSSL library in Ruby before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.2, and 2.6.x before 2.6.0-preview...

9.8CVSS8AI score0.10715EPSS
Exploits0References2
OSV
OSV
added 2018/10/26 12:0 a.m.8 views

UBUNTU-CVE-2018-16395

An issue was discovered in the OpenSSL library in Ruby before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.2, and 2.6.x before 2.6.0-preview3. When two OpenSSL::X509::Name objects are compared using ==, depending on the ordering, non-equal objects may return true. When the first argument is one...

9.8CVSS7.1AI score0.10715EPSS
Exploits0References4
Rows per page
Query Builder