Lucene search
K

23341 matches found

EUVD
EUVD
added 2026/06/01 3:49 p.m.11 views

EUVD-2022-55995

Tychon includes an OpenSSL component that specifies an OPENSSLDIR variable as a subdirectory that may be controllable by an unprivileged user on Windows. Tychon contains a privileged service that uses this OpenSSL component. A user who can place a specially-crafted openssl.cnf file at an...

6.3AI score0.00254EPSS
Exploits0References1
CVE
CVE
added 2026/06/01 3:49 p.m.27 views

CVE-2022-4991

The CVE-2022-4991 issue affects Tychon on Windows where an OpenSSL OPENSSLDIR subdirectory can be controlled by an unprivileged user. A privileged service in Tychon uses this OpenSSL component, and a user who can place a crafted openssl.cnf at a specific path may execute arbitrary code with SYSTE...

7.4CVSS6.3AI score0.00254EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/06/01 2:27 p.m.14 views

openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing

A flaw was found in OpenSSL. A remote attacker could exploit this vulnerability by sending a specially crafted Cryptographic Message Syntax CMS EnvelopedData message. During the processing of a KeyTransportRecipientInfo with RSA-OAEP encryption, the system attempts to access an optional parameter...

7.5CVSS5.8AI score0.00805EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2026/06/01 2:27 p.m.13 views

Moderate: Red Hat Security Advisory: openssl security update

An update for openssl is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.5CVSS5.8AI score0.00805EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/06/01 1:54 p.m.14 views

Moderate: Red Hat Security Advisory: openssl security update

An update for openssl is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

7.5CVSS5.8AI score0.00805EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/06/01 1:54 p.m.21 views

openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing

A flaw was found in OpenSSL. A remote attacker could exploit this vulnerability by sending a specially crafted Cryptographic Message Syntax CMS EnvelopedData message. During the processing of a KeyTransportRecipientInfo with RSA-OAEP encryption, the system attempts to access an optional parameter...

7.5CVSS5.8AI score0.00805EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2026/06/01 1:30 p.m.14 views

Moderate: Red Hat Security Advisory: compat-openssl11 security update

An update for compat-openssl11 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabilit...

7.5CVSS5.8AI score0.00805EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/06/01 1:30 p.m.13 views

openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing

A flaw was found in OpenSSL. A remote attacker could exploit this vulnerability by sending a specially crafted Cryptographic Message Syntax CMS EnvelopedData message. During the processing of a KeyTransportRecipientInfo with RSA-OAEP encryption, the system attempts to access an optional parameter...

7.5CVSS5.8AI score0.00805EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2026/06/01 1:24 p.m.17 views

openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing

A flaw was found in OpenSSL. A remote attacker could exploit this vulnerability by sending a specially crafted Cryptographic Message Syntax CMS EnvelopedData message. During the processing of a KeyTransportRecipientInfo with RSA-OAEP encryption, the system attempts to access an optional parameter...

7.5CVSS5.7AI score0.00805EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2026/06/01 1:24 p.m.22 views

Moderate: Red Hat Security Advisory: compat-openssl10 security update

An update for compat-openssl10 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabilit...

7.5CVSS5.8AI score0.00805EPSS
Exploits0References2
OSV
OSV
added 2026/06/01 12:0 a.m.12 views

ALSA-2026:22313 Moderate: compat-openssl11 security update

The OpenSSL toolkit provides support for secure communications between machines. This version of OpenSSL package contains only the libraries from the 1.1.1 version and is provided for compatibility with previous releases. Security Fixes: openssl: OpenSSL: Denial of Service due to NULL pointer...

7.5CVSS7.3AI score0.00805EPSS
Exploits0References4
OSV
OSV
added 2026/06/01 12:0 a.m.9 views

ALSA-2026:22315 Moderate: compat-openssl10 security update

The OpenSSL toolkit provides support for secure communications between machines. This version of OpenSSL package contains only the libraries and is provided for compatibility with previous releases and software that does not support compilation with OpenSSL-1.1. Security Fixes: openssl: OpenSSL:...

7.5CVSS5.8AI score0.00805EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/06/01 12:0 a.m.27 views

PT-2026-45443

Tychon includes an OpenSSL component that specifies an OPENSSLDIR variable as a subdirectory that may be controllable by an unprivileged user on Windows. Tychon contains a privileged service that uses this OpenSSL component. A user who can place a specially-crafted openssl.cnf file at an...

6.3AI score0.00254EPSS
Exploits0References2
OSV
OSV
added 2026/06/01 12:0 a.m.7 views

ALSA-2026:22314 Moderate: openssl security update

OpenSSL is a toolkit that implements the Secure Sockets Layer SSL and Transport Layer Security TLS protocols, as well as a full-strength general-purpose cryptography library. Security Fixes: openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing...

7.5CVSS5.8AI score0.00805EPSS
Exploits0References4
OSV
OSV
added 2026/06/01 12:0 a.m.7 views

ALSA-2026:22312 Moderate: openssl security update

OpenSSL is a toolkit that implements the Secure Sockets Layer SSL and Transport Layer Security TLS protocols, as well as a full-strength general-purpose cryptography library. Security Fixes: openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing...

7.5CVSS5.8AI score0.00805EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2026/06/01 12:0 a.m.8 views

Moderate: compat-openssl11 security update

The OpenSSL toolkit provides support for secure communications between machines. This version of OpenSSL package contains only the libraries from the 1.1.1 version and is provided for compatibility with previous releases. Security Fixes: openssl: OpenSSL: Denial of Service due to NULL pointer...

7.5CVSS5.8AI score0.00805EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2026/06/01 12:0 a.m.8 views

Moderate: compat-openssl10 security update

The OpenSSL toolkit provides support for secure communications between machines. This version of OpenSSL package contains only the libraries and is provided for compatibility with previous releases and software that does not support compilation with OpenSSL-1.1. Security Fixes: openssl: OpenSSL:...

7.5CVSS5.8AI score0.00805EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/06/01 12:0 a.m.7 views

Tychon 安全漏洞

Tychon is a terminal security analysis and management platform developed by the American company Tychon. There is a security vulnerability in Tychon, which stems from the OPENSSLDIR variable in the OpenSSL component potentially being controlled by non-privileged users. This vulnerability could...

7.4CVSS5.9AI score0.00254EPSS
Exploits0References2
OSV
OSV
added 2026/05/29 4:3 p.m.9 views

RLSA-2026:19066 Moderate: openssl security update

OpenSSL is a toolkit that implements the Secure Sockets Layer SSL and Transport Layer Security TLS protocols, as well as a full-strength general-purpose cryptography library. Security Fixes: openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key CVE-2026-317...

5.9CVSS7.3AI score0.00981EPSS
Exploits0References2
Rockylinux
Rockylinux
added 2026/05/29 4:3 p.m.16 views

openssl security update

An update is available for openssl. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list OpenSSL is a toolkit that implements the Secure Sockets Layer SSL and...

7.5CVSS5.8AI score0.00981EPSS
Exploits0
Rows per page
Query Builder