Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2025-14034

Malicious code in bioql PyPI...

3.7CVSS6.3AI score0.0046EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/07/22 12:0 a.m.6 views

Ubuntu 22.04 LTS / 24.04 LTS / 25.04 : Erlang vulnerabilities (USN-7656-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.04 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7656-1 advisory. It was discovered that Erlang OTPs SSH module incorrectly enforced strict KEX handshake hardening measures. A remote attacker able to...

4.8CVSS6.8AI score0.0046EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2025/07/21 11:51 a.m.6 views

USN-7656-1: Erlang vulnerabilities

It was discovered that Erlang OTP’s SSH module incorrectly enforced strict KEX handshake hardening measures. A remote attacker able to intercept communications could possibly use this issue to insert optional messages into connections during the handshake. CVE-2025-46712 It was discovered that...

4.8CVSS6.5AI score0.0046EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/07/11 12:0 a.m.4 views

Azure Linux 3.0 Security Update: erlang (CVE-2025-46712)

The version of erlang installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-46712 advisory. - Erlang/OTP is a set of libraries for the Erlang programming language. In versions prior to OTP-27.3.4 for...

3.7CVSS5.8AI score0.0046EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/10 8:8 p.m.23 views

CVE-2025-46712

Erlang/OTP is a set of libraries for the Erlang programming language. In versions prior to OTP-27.3.4 for OTP-27, OTP-26.2.5.12 for OTP-26, and OTP-25.3.2.21 for OTP-25, Erlang/OTP SSH fails to enforce strict KEX handshake hardening measures by allowing optional messages to be exchanged. This...

3.7CVSS7AI score0.0046EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/08 7:26 p.m.14 views

CVE-2025-46712 Erlang/OTP SSH Has Strict KEX Violations

Erlang/OTP is a set of libraries for the Erlang programming language. In versions prior to OTP-27.3.4 for OTP-27, OTP-26.2.5.12 for OTP-26, and OTP-25.3.2.21 for OTP-25, Erlang/OTP SSH fails to enforce strict KEX handshake hardening measures by allowing optional messages to be exchanged. This...

3.7CVSS0.0046EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/05/08 7:26 p.m.13 views

CVE-2025-46712 Erlang/OTP SSH Has Strict KEX Violations

Erlang/OTP is a set of libraries for the Erlang programming language. In versions prior to OTP-27.3.4 for OTP-27, OTP-26.2.5.12 for OTP-26, and OTP-25.3.2.21 for OTP-25, Erlang/OTP SSH fails to enforce strict KEX handshake hardening measures by allowing optional messages to be exchanged. This...

3.7CVSS7AI score0.0046EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/05/08 12:0 a.m.2 views

PT-2025-20412

Name of the Vulnerable Software and Affected Versions: Erlang/OTP versions prior to OTP-27.3.4 Erlang/OTP versions prior to OTP-26.2.5.12 Erlang/OTP versions prior to OTP-25.3.2.21 Description: The issue concerns Erlang/OTP SSH failing to enforce strict KEX handshake hardening measures by allowin...

4.8CVSS6.6AI score0.0046EPSS
Exploits0References22
Rows per page
Query Builder