Lucene search
K

7 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in mbedtls

A issue was discovered in Arm Mbed TLS prior to version 2.23.0. Due to a side channel in modular exponentiation, an RSA private key used in a secure enclave could be disclosed...

5.3CVSS6.1AI score0.01582EPSS
Exploits1References2
OSV
OSV
added 2025/11/21 3:59 p.m.5 views

JLSEC-2025-226 An issue was discovered in Mbed TLS before 2.28.9 and 3.x before 3.6.1, in which the user-selected a...

An issue was discovered in Mbed TLS before 2.28.9 and 3.x before 3.6.1, in which the user-selected algorithm is not used. Unlike previously documented, enabling MBEDTLSPSAHMACDRBGMDTYPE does not cause the PSA subsystem to use HMACDRBG: it uses HMACDRBG only when MBEDTLSPSACRYPTOEXTERNALRNG and...

5.1CVSS6.8AI score0.00236EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-23961

Malware in sbrugna...

7.5CVSS7.4AI score0.0197EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-41339

Malicious code in bioql PyPI...

9.8CVSS6.3AI score0.00387EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/06 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2020-36477

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Mbed TLS before 2.24.0. The verification of X.509 certificates when matching the expected common name the cn argument of...

5.9CVSS5.9AI score0.00832EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/11/28 12:0 a.m.10 views

CBL Mariner 2.0 Security Update: hvloader (CVE-2024-45157)

The version of hvloader installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-45157 advisory. - An issue was discovered in Mbed TLS before 2.28.9 and 3.x before 3.6.1, in which the user-selected algorit...

5.1CVSS5.5AI score0.00236EPSS
Exploits0References2
OSV
OSV
added 2024/04/03 3:15 a.m.3 views

DEBIAN-CVE-2024-28755

An issue was discovered in Mbed TLS 3.5.x before 3.6.0. When an SSL context was reset with the mbedtlssslsessionreset API, the maximum TLS version to be negotiated was not restored to the configured one. An attacker was able to prevent an Mbed TLS server from establishing any TLS 1.3 connection,...

6.5CVSS5.4AI score0.00403EPSS
Exploits0References1
Rows per page
Query Builder