Lucene search
K

1409 matches found

RedHat Linux
RedHat Linux
added 2018/08/28 7:21 p.m.1 views

JDK: DoS in the java.math component

A flaw in the java.math component in IBM SDK, Java Technology Edition 6.0, 7.0, and 8.0 may allow an attacker to inflict a denial-of-service attack with specially crafted String data. IBM X-Force ID: 141681...

7.5CVSS7.3AI score0.03981EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2018/08/28 7:19 p.m.5 views

JDK: DoS in the java.math component

A flaw in the java.math component in IBM SDK, Java Technology Edition 6.0, 7.0, and 8.0 may allow an attacker to inflict a denial-of-service attack with specially crafted String data. IBM X-Force ID: 141681...

7.5CVSS7.3AI score0.03981EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2018/08/27 2:21 p.m.2 views

JDK: DoS in the java.math component

A flaw in the java.math component in IBM SDK, Java Technology Edition 6.0, 7.0, and 8.0 may allow an attacker to inflict a denial-of-service attack with specially crafted String data. IBM X-Force ID: 141681...

7.5CVSS7.3AI score0.03981EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2018/08/27 2:20 p.m.4 views

JDK: DoS in the java.math component

A flaw in the java.math component in IBM SDK, Java Technology Edition 6.0, 7.0, and 8.0 may allow an attacker to inflict a denial-of-service attack with specially crafted String data. IBM X-Force ID: 141681...

7.5CVSS7.3AI score0.03981EPSS
Exploits0References4
n0where
n0where
added 2018/08/23 4:23 p.m.19 views

Offensive and Defensive Cryptography: Crypton

Crypton is an educational library to learn and practice Offensive and Defensive Cryptography. It is basically a collection of explanation and implementation of all the existing vulnerabilities and attacks on various Encryption Systems Symmetric and Asymmetric, Digital Signatures, Message...

1.4AI score
Exploits0References1
Prion
Prion
added 2018/08/20 9:29 p.m.21 views

Design/Logic Flaw

A flaw in the java.math component in IBM SDK, Java Technology Edition 6.0, 7.0, and 8.0 may allow an attacker to inflict a denial-of-service attack with specially crafted String data. IBM X-Force ID: 141681...

5CVSS7.1AI score0.03981EPSS
Exploits0References9Affected Software5
CVE
CVE
added 2018/08/20 9:0 p.m.131 views

CVE-2018-1517

CVE-2018-1517: A flaw in the java.math component in IBM SDK, Java Technology Edition 6.0, 7.0, and 8.0 may allow a denial-of-service via specially crafted String data. IBM IBM SAN Volume Controller, Storwize, Spectrum Virtualize and related products are affected when running certain code levels. ...

7.5CVSS6.3AI score0.03981EPSS
Exploits0References9Affected Software1
OSV
OSV
added 2018/08/05 6:29 p.m.1 views

CVE-2018-14953

The mail message display page in SquirrelMail through 1.4.22 has XSS via a "math xlink:href=" attack...

6.1CVSS5.8AI score
Exploits0References5
OSV
OSV
added 2018/08/05 6:29 p.m.5 views

CVE-2018-14952

The mail message display page in SquirrelMail through 1.4.22 has XSS via a "maction xlink:href=" attack...

6.1CVSS5.8AI score0.01426EPSS
Exploits1References5
OSV
OSV
added 2018/08/05 6:29 p.m.3 views

UBUNTU-CVE-2018-14952

The mail message display page in SquirrelMail through 1.4.22 has XSS via a "maction xlink:href=" attack...

6.1CVSS6.7AI score0.01426EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2018/06/07 8:37 p.m.12 views

chromium-browser: Incorrect escaping of MathML in Blink

Insufficient data validation in HTML parser in Google Chrome prior to 67.0.3396.62 allowed a remote attacker to bypass same origin policy via a crafted HTML page...

6.1CVSS7.4AI score0.00593EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2018/06/07 6:19 p.m.44 views

CVE-2016-1000340

In the Bouncy Castle JCE Provider versions 1.51 to 1.55, a carry propagation bug was introduced in the implementation of squaring for several raw math classes have been fixed org.bouncycastle.math.raw.Nat???. These classes are used by our custom elliptic curve implementations...

7.5CVSS2.8AI score0.02241EPSS
Exploits0References2
OSV
OSV
added 2018/06/04 7:29 p.m.5 views

CVE-2017-16028

react-native-meteor-oauth is a library for Oauth2 login to a Meteor server in React Native. The oauth Random Token is generated using a non-cryptographically strong RNG Math.random...

5.3CVSS5.8AI score0.0135EPSS
Exploits0References2
NVD
NVD
added 2018/06/04 1:29 p.m.14 views

CVE-2016-1000340

In the Bouncy Castle JCE Provider versions 1.51 to 1.55, a carry propagation bug was introduced in the implementation of squaring for several raw math classes have been fixed org.bouncycastle.math.raw.Nat???. These classes are used by our custom elliptic curve implementations...

7.5CVSS6.6AI score0.02241EPSS
Exploits0References5
OSV
OSV
added 2018/06/04 1:29 p.m.7 views

CVE-2016-1000340

In the Bouncy Castle JCE Provider versions 1.51 to 1.55, a carry propagation bug was introduced in the implementation of squaring for several raw math classes have been fixed org.bouncycastle.math.raw.Nat???. These classes are used by our custom elliptic curve implementations...

7.5CVSS8.5AI score
Exploits0References5
OSV
OSV
added 2018/06/04 1:29 p.m.2 views

UBUNTU-CVE-2016-1000340

In the Bouncy Castle JCE Provider versions 1.51 to 1.55, a carry propagation bug was introduced in the implementation of squaring for several raw math classes have been fixed org.bouncycastle.math.raw.Nat???. These classes are used by our custom elliptic curve implementations...

7.5CVSS7.1AI score0.02241EPSS
Exploits0References2
CVE
CVE
added 2018/06/04 1:0 p.m.121 views

CVE-2016-1000340

The CVE-2016-1000340 issue describes a carry propagation bug in the Bouncy Castle JCE Provider (versions 1.51–1.55) affecting the squaring path of several Nat-based raw math classes used by custom EC implementations. This could cause rare, spurious calculations during elliptic-curve scalar multip...

7.5CVSS7.3AI score0.02241EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2018/06/04 12:0 a.m.13 views

PT-2018-4634 · Bouncy Castle +1 · Bouncy Castle Jce Provider +1

Name of the Vulnerable Software and Affected Versions: Bouncy Castle JCE Provider versions 1.51 through 1.55 Description: A carry propagation bug was introduced in the implementation of squaring for several raw math classes, which are used by custom elliptic curve implementations. This bug could...

9.8CVSS6.6AI score0.24282EPSS
Exploits1References62
Fedora
Fedora
added 2018/05/21 2:5 p.m.15 views

[SECURITY] Fedora 28 Update: glibc-2.27-14.fc28

The glibc package contains standard libraries which are used by multiple programs on the system. In order to save disk space and memory, as well as to make upgrading easier, common system code is kept in one place and shared between programs. This particular package contains the most important se...

2AI score
Exploits0
Fedora
Fedora
added 2018/01/23 9:22 p.m.50 views

[SECURITY] Fedora 26 Update: glibc-2.25-13.fc26

The glibc package contains standard libraries which are used by multiple programs on the system. In order to save disk space and memory, as well as to make upgrading easier, common system code is kept in one place and shared between programs. This particular package contains the most important se...

9.8CVSS2AI score0.13614EPSS
Exploits9
Rows per page
Query Builder