Lucene search
K

9 matches found

NVD
NVD
added 2026/01/30 6:15 p.m.11 views

CVE-2025-15497

Insufficient epoch key slot processing in OpenVPN 2.7alpha1 through 2.7rc5 allows remote authenticated users to trigger an assert resulting in a denial of service...

7CVSS0.00323EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/01/30 6:6 p.m.29 views

CVE-2025-15497

Insufficient epoch key slot processing in OpenVPN 2.7alpha1 through 2.7rc5 allows remote authenticated users to trigger an assert resulting in a denial of service...

7CVSS0.00323EPSS
Exploits0References2
EUVD
EUVD
added 2026/01/30 6:6 p.m.5 views

EUVD-2025-206570

Insufficient epoch key slot processing in OpenVPN 2.7alpha1 through 2.7rc5 allows remote authenticated users to trigger an assert resulting in a denial of service...

7CVSS5.9AI score0.00323EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/01/30 12:0 a.m.15 views

OpenVPN security vulnerabilities

OpenVPN is a software package developed by OpenVPN Inc. in the United States, used to create encrypted VPN tunnels. It utilizes the OpenSSL library to encrypt data and control information, and allows the created VPNs to use public keys, electronic certificates, or username/password for...

7CVSS5.8AI score0.00323EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/10/27 12:0 a.m.4 views

Always Encrypted Kubernetes 数据伪造问题漏洞

Always Encrypted Kubernetes is a container encryption software open source by Edgeless Systems. A data forgery issue vulnerability exists in versions prior to Always Encrypted Kubernetes 2.24.0 that stems from insecure handling of the empty key slot algorithm, which could lead to unencrypted...

8.3CVSS9AI score0.00105EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.4 views

PT-2025-54615

Insufficient epoch key slot processing in OpenVPN 2.7 alpha1 through 2.7 rc5 allows remote authenticated users to trigger an assert resulting in a denial of service...

7CVSS5.9AI score0.00323EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2024/08/19 1:45 p.m.26 views

CVE-2024-43815

In the Linux kernel, the following vulnerability has been resolved: crypto: mxs-dcp - Ensure payload is zero when using key slot We could leak stack memory through the payload field when running AES with a key from one of the hardware's key slots. Fix this by ensuring the payload field is set to ...

5.5CVSS6.8AI score0.00213EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2024/08/18 2:2 a.m.3 views

SUSE CVE-2024-43815

In the Linux kernel, the following vulnerability has been resolved: crypto: mxs-dcp - Ensure payload is zero when using key slot We could leak stack memory through the payload field when running AES with a key from one of the hardware's key slots. Fix this by ensuring the payload field is set to ...

7.1CVSS6.4AI score0.00213EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/08/17 9:21 a.m.35 views

CVE-2024-43815 crypto: mxs-dcp - Ensure payload is zero when using key slot

In the Linux kernel, the following vulnerability has been resolved: crypto: mxs-dcp - Ensure payload is zero when using key slot We could leak stack memory through the payload field when running AES with a key from one of the hardware's key slots. Fix this by ensuring the payload field is set to ...

0.00213EPSS
Exploits0References2
Rows per page
Query Builder