Lucene search
+L

27 matches found

euvd
euvd
added 2025/10/07 12:30 a.m.7 views

EUVD-2010-2980

Malware in sbrugna...

10CVSS6.4AI score0.01795EPSS
Exploits0References2
f5
f5
added 2023/02/21 7:49 p.m.189 views

K15578: MD5 Message-Digest Algorithm vulnerability CVE-2004-2761

Security Advisory Description The MD5 Message-Digest Algorithm is not collision resistant, which makes it easier for context-dependent attackers to conduct spoofing attacks, as demonstrated by attacks on the use of MD5 in the signature algorithm of an X.509 certificate. CVE-2004-2761 Impact A...

9.8CVSS6.4AI score0.09854EPSS
Exploits0Affected Software1
susecve
susecve
added 2023/02/15 6:19 a.m.5 views

SUSE CVE-2004-2761

The MD5 Message-Digest Algorithm is not collision resistant, which makes it easier for context-dependent attackers to conduct spoofing attacks, as demonstrated by attacks on the use of MD5 in the signature algorithm of an X.509 certificate...

9.8CVSS9AI score0.09854EPSS
Exploits0References3
github
github
added 2022/05/24 4:46 p.m.46 views

Golang/x/crypto message forgery vulnerability

A message-forgery issue was discovered in crypto/openpgp/clearsign/clearsign.go in supplementary Go cryptography libraries 2019-03-25. According to the OpenPGP Message Format specification in RFC 4880 chapter 7, a cleartext signed message can contain one or more optional "Hash" Armor Headers. The...

5.9CVSS5.4AI score0.02002EPSS
Exploits2References12Affected Software1
prion
prion
added 2019/05/22 5:29 p.m.31 views

Design/Logic Flaw

A message-forgery issue was discovered in crypto/openpgp/clearsign/clearsign.go in supplementary Go cryptography libraries 2019-03-25. According to the OpenPGP Message Format specification in RFC 4880 chapter 7, a cleartext signed message can contain one or more optional "Hash" Armor Headers. The...

4.3CVSS5.2AI score0.02002EPSS
Exploits2References7Affected Software2
ubuntucve
ubuntucve
added 2019/05/22 5:29 p.m.43 views

CVE-2019-11841

A message-forgery issue was discovered in crypto/openpgp/clearsign/clearsign.go in supplementary Go cryptography libraries 2019-03-25. According to the OpenPGP Message Format specification in RFC 4880 chapter 7, a cleartext signed message can contain one or more optional "Hash" Armor Headers. The...

5.9CVSS7AI score0.02002EPSS
Exploits2References3
cvelist
cvelist
added 2019/05/22 12:0 a.m.62 views

CVE-2019-11841

A message-forgery issue was discovered in crypto/openpgp/clearsign/clearsign.go in supplementary Go cryptography libraries 2019-03-25. According to the OpenPGP Message Format specification in RFC 4880 chapter 7, a cleartext signed message can contain one or more optional "Hash" Armor Headers. The...

6.2AI score0.02002EPSS
Exploits2References7
debiancve
debiancve
added 2019/05/22 12:0 a.m.43 views

CVE-2019-11841

A message-forgery issue was discovered in crypto/openpgp/clearsign/clearsign.go in supplementary Go cryptography libraries 2019-03-25. According to the OpenPGP Message Format specification in RFC 4880 chapter 7, a cleartext signed message can contain one or more optional "Hash" Armor Headers. The...

5.9CVSS6.5AI score0.02002EPSS
Exploits2
broadcom
broadcom
added 2017/05/17 12:0 a.m.17 views

BSA-2017-271

Security Advisory ID : BSA-2017-271 Component : MD5 Algorithm Revision : 1.0: Interim The MD5 Message-Digest Algorithm is not collision resistant, which makes it easier for context-dependent attackers to conduct spoofing attacks, as demonstrated by attacks on the use of MD5 in the signature...

9.8CVSS6.7AI score0.09854EPSS
Exploits0
redhat
redhat
added 2016/01/20 7:30 p.m.8 views

TLS 1.2 Transcipt Collision attacks against MD5 in key exchange protocol (SLOTH)

A flaw was found in the way TLS 1.2 could use the MD5 hash function for signing ServerKeyExchange and Client Authentication packets during a TLS handshake. A man-in-the-middle attacker able to force a TLS connection to use the MD5 hash function could use this flaw to conduct collision attacks to...

5.9CVSS7.1AI score0.0288EPSS
Exploits0References7
nessus
nessus
added 2014/10/10 12:0 a.m.44 views

F5 Networks BIG-IP : MD2 Message-Digest Algorithm vulnerability (SOL15663)

The Network Security Services NSS library before 3.12.3, as used in Firefox; GnuTLS before 2.6.4 and 2.7.4; OpenSSL 0.9.8 through 0.9.8k; and other products support MD2 with X.509 certificates, which might allow remote attackers to spoof certificates by using MD2 design flaws to generate a hash...

5.1CVSS6.7AI score0.04506EPSS
Exploits0References2
f5
f5
added 2014/10/09 12:0 a.m.57 views

SOL15663 - MD2 Message-Digest Algorithm vulnerability CVE-2009-2409

Vulnerability Recommended Actions None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5...

5.1CVSS2.7AI score0.04506EPSS
Exploits0References4
openvas
openvas
added 2012/03/16 12:0 a.m.31 views

Ubuntu: Security Advisory (USN-1287-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6.2AI score0.00456EPSS
Exploits1References2
nessus
nessus
added 2012/01/10 12:0 a.m.49 views

Ubuntu 11.10 : linux vulnerability (USN-1322-1)

Nick Bowler discovered the kernel GHASH message digest algorithm incorrectly handled error conditions. A local attacker could exploit this to cause a kernel oops. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable h...

7.2CVSS6.7AI score0.00556EPSS
Exploits8References7
openvas
openvas
added 2011/12/23 12:0 a.m.29 views

Ubuntu Update for linux-lts-backport-oneiric USN-1313-1

Ubuntu Update for Linux kernel vulnerabilities USN-1313-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN13131.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for linux-lts-backport-oneiric USN-1313-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH,...

4.9CVSS6.3AI score0.00456EPSS
Exploits1References2
ubuntu
ubuntu
added 2011/12/19 8:4 p.m.54 views

USN-1313-1: Linux Kernel (Oneiric backport) vulnerability

Nick Bowler discovered the kernel GHASH message digest algorithm incorrectly handled error conditions. A local attacker could exploit this to cause a kernel oops...

5.5CVSS5.6AI score0.00456EPSS
Exploits1
openvas
openvas
added 2011/12/16 12:0 a.m.45 views

Ubuntu Update for linux-mvl-dove USN-1303-1

Ubuntu Update for Linux kernel vulnerabilities USN-1303-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN13031.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for linux-mvl-dove USN-1303-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.n...

7.2CVSS0.2AI score0.03212EPSS
Exploits6References2
openvas
openvas
added 2011/12/16 12:0 a.m.39 views

Ubuntu: Security Advisory (USN-1304-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.4AI score0.03212EPSS
Exploits7References2
openvas
openvas
added 2011/12/16 12:0 a.m.45 views

Ubuntu Update for linux-ti-omap4 USN-1304-1

Ubuntu Update for Linux kernel vulnerabilities USN-1304-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN13041.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for linux-ti-omap4 USN-1304-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.n...

7.2CVSS0.4AI score0.03212EPSS
Exploits7References2
ubuntu
ubuntu
added 2011/12/13 1:18 p.m.82 views

USN-1304-1: Linux kernel (OMAP4) vulnerabilities

A bug was discovered in the XFS filesystem's handling of pathnames. A local attacker could exploit this to crash the system, leading to a denial of service, or gain root privileges. CVE-2011-4077 Nick Bowler discovered the kernel GHASH message digest algorithm incorrectly handled error conditions...

7.5CVSS6.5AI score0.03212EPSS
Exploits7
Rows per page
Query Builder