Lucene search
K

382 matches found

F5 Networks
F5 Networks
added 2026/03/31 6:49 p.m.6 views

K000160551: OpenSSL vulnerability CVE-2025-66199

Security Advisory Description Issue summary: A TLS 1.3 connection using certificate compression can be forced to allocate a large buffer before decompression without checking against the configured certificate size limit. Impact summary: An attacker can cause per-connection memory allocations of ...

5.9CVSS6.8AI score0.00403EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/31 3:33 p.m.12 views

Security Bulletin: Vulnerability in openssl library (CVE-2025-9230) affects Power HMC.

Summary The openssl library is used by Power Hardware Management Console HMC. HMC has addressed the applicable CVE. Vulnerability Details CVEID:CVE-2025-9230 DESCRIPTION: Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an...

7.5CVSS5.9AI score0.01744EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2026/03/17 6:13 p.m.4 views

openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing

A flaw was found in OpenSSL. When processing a specially crafted PKCS12 Personal Information Exchange Syntax Standard file, a remote attacker can exploit an out-of-bounds write vulnerability. This issue, occurring within the OPENSSLuni2utf8 function, leads to memory corruption by writing data...

7.4CVSS7.4AI score0.00444EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2026/03/17 6:1 p.m.4 views

openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing

A flaw was found in OpenSSL. When processing a specially crafted PKCS12 Personal Information Exchange Syntax Standard file, a remote attacker can exploit an out-of-bounds write vulnerability. This issue, occurring within the OPENSSLuni2utf8 function, leads to memory corruption by writing data...

7.4CVSS6AI score0.00444EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2026/03/15 12:25 a.m.6 views

SUSE CVE-2026-2673

Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group configuration includes the default by using the 'DEFAULT' keyword. Impact summary: A less preferred key exchange may be used even when a more preferred group is...

5.3CVSS5.8AI score0.00435EPSS
Exploits0References5
Snyk
Snyk
added 2026/03/13 4:45 p.m.10 views

Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')

Overview Affected versions of this package are vulnerable to Selection of Less-Secure Algorithm During Negotiation 'Algorithm Downgrade' in the TLS 1.3 server key agreement group selection when the server configuration includes the 'DEFAULT' keyword. An attacker can influence the negotiation to u...

6.5CVSS5.9AI score0.00435EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/13 1:23 p.m.6 views

CVE-2026-2673

Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group configuration includes the default by using the 'DEFAULT' keyword. Impact summary: A less preferred key exchange may be used even when a more preferred group is...

5.8AI score0.00435EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2026/03/13 10:18 a.m.4 views

RHSA-2026:4472 Red Hat Security Advisory: compat-openssl11 security update

Bulletin has no description...

7.4CVSS5.7AI score0.00444EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2026/03/06 12:0 a.m.2 views

Fedora 43 : coturn (2026-8cb5571ddc)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-8cb5571ddc advisory. Coturn 4.9.0 - Multiple security fixes - Fix to Web Admin password check - Cleanup of deprecated OpenSSL APIs - Fix for CVE-2026-27624: Bypass...

7.2CVSS5.9AI score0.00254EPSS
Exploits1References2
Broadcom
Broadcom
added 2026/03/03 12:0 a.m.18 views

Libssh: incorrect return code handling in ssh_kdf() in libssh

A flaw was found in libssh versions built with OpenSSL versions older than 3.0, specifically in the sshkdf function responsible for key derivation. Due to inconsistent interpretation of return values where OpenSSL uses 0 to indicate failure and libssh uses 0 for success—the function may mistakenl...

8.8CVSS5.8AI score0.00407EPSS
Exploits0
OSV
OSV
added 2026/02/27 10:25 a.m.6 views

RHSA-2026:3437 Red Hat Security Advisory: openssl security update

Bulletin has no description...

7.4CVSS5.9AI score0.00444EPSS
Exploits1References7
SUSE Linux
SUSE Linux
added 2026/02/25 9:44 a.m.9 views

Security update 5.1.2 for Multi-Linux Manager Client Tools

This update fixes the following issues: golang-github-QubitProducts-exporterexporter: Non-customer-facing optimization around source building golang-github-lusitaniae-apacheexporter: Build without apparmor for openSUSE Leap 16, SLES 16 or newer Require Go 1.23 for building Update to version 1.0.1...

8.7CVSS5.7AI score0.00396EPSS
Exploits0References30
Tenable Nessus
Tenable Nessus
added 2026/02/19 12:0 a.m.9 views

Amazon Linux 2 : curl, --advisory ALAS2-2026-3173 (ALAS-2026-3173)

The version of curl installed on the remote host is prior to 8.3.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2026-3173 advisory. curl's code for managing SSH connections when SFTP was done using the wolfSSH powered backend was flawed and missed host...

6.3CVSS6.6AI score0.00679EPSS
Exploits4References14
OSV
OSV
added 2026/02/13 2:50 p.m.3 views

SUSE-SU-2026:0508-1 Security update for curl

This update for curl fixes the following issues: - CVE-2025-14017: Fixed broken TLS options for threaded LDAPS bsc1256105. - CVE-2025-14524: bearer token leak on cross-protocol redirect bsc1255731. - CVE-2025-14819: libssh global knownhost override bsc1255732. - CVE-2025-15079: libssh key...

6.3CVSS5.8AI score0.00679EPSS
Exploits3References11
Fedora
Fedora
added 2026/02/12 1:10 a.m.6 views

[SECURITY] Fedora 42 Update: osslsigncode-2.12-1.fc42

osslsigncode is a small tool that implements part of the functionality of the Microsoft tool signtool.exe - more exactly the Authenticode signing and timestamping. But osslsigncode is based on OpenSSL and cURL, and thus should be able to compile on most platforms where these exist...

5.6AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/02/06 12:0 a.m.4 views

Zabbix Agent Binaries Path Abuse Scanner

This scanner performs automated static analysis of Zabbix Agent binaries to detect hardcoded OpenSSL configuration paths that may enable provider or engine abuse. It identifies embedded OPENSSLDIR, ENGINESDIR, and MODULESDIR values, extracts OpenSSL version information, and checks for dynamic...

7.3CVSS6.1AI score0.00325EPSS
Exploits2
Tenable Product Security Advisories
Tenable Product Security Advisories
added 2026/02/03 2:56 p.m.8 views

[R1] Tenable Identity Exposure Version 3.77.16 Fixes Multiple Vulnerabilities

R1 Tenable Identity Exposure Version 3.77.16 Fixes Multiple Vulnerabilities Arnie Cabral Tue, 02/03/2026 - 09:56 Tenable Identity Exposure leverages third-party software to help provide underlying functionality. One of the third-party components OpenSSL was found to contain vulnerabilities, and...

5.3AI score
Exploits0
Rockylinux
Rockylinux
added 2026/01/30 10:9 p.m.10 views

openssl security update

An update is available for openssl. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list OpenSSL is a toolkit that implements the Secure Sockets Layer SSL and Transpo...

9.8CVSS6.3AI score0.47621EPSS
Exploits7
OSV
OSV
added 2026/01/29 10:21 a.m.12 views

RHSA-2026:1519 Red Hat Security Advisory: openssl security update

Bulletin has no description...

9.8CVSS5.8AI score0.47621EPSS
Exploits7References11
RedHat Linux
RedHat Linux
added 2026/01/28 3:32 p.m.3 views

openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing

A flaw was found in OpenSSL. When processing a specially crafted PKCS12 Personal Information Exchange Syntax Standard file, a remote attacker can exploit an out-of-bounds write vulnerability. This issue, occurring within the OPENSSLuni2utf8 function, leads to memory corruption by writing data...

7.4CVSS6AI score0.00444EPSS
Exploits1References4
Rows per page
Query Builder