CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

F5 Networks•added 2024/09/12 4:5 p.m.•24 views

Exploits0References11

K000141041: GnuTLS vulnerabilities CVE-2024-28834 and CVE-2024-28835

Security Advisory Description CVE-2024-28834 A flaw was found in GnuTLS. The Minerva attack is a cryptographic vulnerability that exploits deterministic behavior in systems like GnuTLS, leading to side-channel leaks. In specific scenarios, such as when using the GNUTLSPRIVKEYFLAGREPRODUCIBLE flag...

Exploits0Affected Software1

Tenable Nessus•added 2024/08/21 12:0 a.m.•13 views

EulerOS Virtualization 2.11.0 : gnutls (EulerOS-SA-2024-2192)

According to the versions of the gnutls packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A flaw was found in GnuTLS. The Minerva attack is a cryptographic vulnerability that exploits deterministic behavior in systems lik...

5.3CVSS6.2AI score0.02116EPSS

Tenable Nessus•added 2024/08/19 12:0 a.m.•13 views

EulerOS Virtualization 2.10.0 : gnutls (EulerOS-SA-2024-2118)

OpenVAS•added 2024/07/01 12:0 a.m.•16 views

Exploits0References2

Huawei EulerOS: Security Advisory for gnutls (EulerOS-SA-2024-1869)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Tenable Nessus•added 2024/06/25 12:0 a.m.•27 views

Exploits0References2

EulerOS 2.0 SP11 : gnutls (EulerOS-SA-2024-1813)

According to the versions of the gnutls packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in GnuTLS. The Minerva attack is a cryptographic vulnerability that exploits deterministic behavior in systems like GnuTLS, leadi...

Tenable Nessus•added 2024/06/25 12:0 a.m.•18 views

EulerOS 2.0 SP11 : gnutls (EulerOS-SA-2024-1834)

RedHat Linux•added 2024/05/16 6:20 p.m.•2 views

gnutls: vulnerable to Minerva side-channel information leak

A flaw was found in GnuTLS. The Minerva attack is a cryptographic vulnerability that exploits deterministic behavior in systems like GnuTLS, leading to side-channel leaks. In specific scenarios, such as when using the GNUTLSPRIVKEYFLAGREPRODUCIBLE flag, it can result in a noticeable step in nonce...

Tenable Nessus•added 2024/05/11 12:0 a.m.•19 views

RHEL 7 : gnutls (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - gnutls: Bleichenbacher-like side channel leakage in PKCS1 v1.5 verification and padding oracle verificati...

8.2AI score0.03615EPSS

Exploits3References10

RedHat Linux•added 2024/04/30 1:43 p.m.•5 views

gnutls: vulnerable to Minerva side-channel information leak

Tenable Nessus•added 2024/04/29 12:0 a.m.•26 views

Amazon Linux 2023 : gnutls, gnutls-c++, gnutls-dane (ALAS2023-2024-591)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2024-591 advisory. A flaw was found in GnuTLS. The Minerva attack is a cryptographic vulnerability that exploits deterministic behavior in systems like GnuTLS, leading to side-channel leaks. In specific scenarios...

5.3CVSS6.2AI score0.02116EPSS

RedHat Linux•added 2024/04/23 2:42 p.m.•1 views

gnutls: vulnerable to Minerva side-channel information leak

RedHat Linux•added 2024/04/18 2:25 a.m.•1 views

gnutls: vulnerable to Minerva side-channel information leak

RedHat Linux•added 2024/04/11 4:9 p.m.•3 views

gnutls: vulnerable to Minerva side-channel information leak

Tenable Nessus•added 2024/03/30 12:0 a.m.•22 views

Fedora 38 : gnutls (2024-af55471f75)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-af55471f75 advisory. Rebase gnutls to version 3.8.4 - contains fixes for CVE-2024-28834 and CVE-2024-28835 Tenable has extracted the preceding description block directly...

5.3CVSS6.5AI score0.02116EPSS