Lucene search
+L

286 matches found

OSV
OSV
added 2020/05/12 6:15 p.m.4 views

UBUNTU-CVE-2020-12823

OpenConnect 8.09 has a buffer overflow, causing a denial of service application crash or possibly unspecified other impact, via crafted certificate data to getcertname in gnutls.c...

9.8CVSS7.5AI score0.04622EPSS
Exploits1References4
CVE
CVE
added 2020/05/12 5:7 p.m.200 views

CVE-2020-12823

OpenConnect 8.09 contains a buffer overflow in get_cert_name (gnutls.c) triggered by crafted certificate data, leading to denial of service (crash) and potential further impact. Multiple connected advisories confirm the issue and note that OpenConnect 8.10 fixes it (upgrading is recommended). The...

9.8CVSS9.4AI score0.04622EPSS
Exploits1References9Affected Software1
Cvelist
Cvelist
added 2020/05/12 5:7 p.m.35 views

CVE-2020-12823

OpenConnect 8.09 has a buffer overflow, causing a denial of service application crash or possibly unspecified other impact, via crafted certificate data to getcertname in gnutls.c...

9.6AI score0.04622EPSS
Exploits1References9
Debian CVE
Debian CVE
added 2020/05/12 5:7 p.m.28 views

CVE-2020-12823

OpenConnect 8.09 has a buffer overflow, causing a denial of service application crash or possibly unspecified other impact, via crafted certificate data to getcertname in gnutls.c...

9.8CVSS9.7AI score0.04622EPSS
Exploits1
CNVD
CNVD
added 2020/04/24 12:0 a.m.3 views

OpenConnect Input Validation Error Vulnerability

OpenConnect is an open source application for connecting to virtual private networks. A security vulnerability exists in OpenConnect 8.08 and earlier versions, which stems from the program failing to properly handle negative values returned by calls to the 'X509check' function. An attacker could...

5.9CVSS6.7AI score0.01695EPSS
Exploits0References1
NVD
NVD
added 2020/04/23 5:15 p.m.12 views

CVE-2020-12105

OpenConnect through 8.08 mishandles negative return values from X509check function calls, which might assist attackers in performing man-in-the-middle attacks...

5.9CVSS5.9AI score0.01695EPSS
Exploits0References3
OSV
OSV
added 2020/04/23 5:15 p.m.19 views

CVE-2020-12105

OpenConnect through 8.08 mishandles negative return values from X509check function calls, which might assist attackers in performing man-in-the-middle attacks...

5.9CVSS6.7AI score
Exploits0References3
OSV
OSV
added 2020/04/23 5:15 p.m.1 views

DEBIAN-CVE-2020-12105

OpenConnect through 8.08 mishandles negative return values from X509check function calls, which might assist attackers in performing man-in-the-middle attacks...

5.9CVSS6.9AI score0.01695EPSS
Exploits0References1
Prion
Prion
added 2020/04/23 5:15 p.m.17 views

Input validation

OpenConnect through 8.08 mishandles negative return values from X509check function calls, which might assist attackers in performing man-in-the-middle attacks...

4.3CVSS5.9AI score0.01695EPSS
Exploits0References3Affected Software2
UbuntuCve
UbuntuCve
added 2020/04/23 5:15 p.m.19 views

CVE-2020-12105

OpenConnect through 8.08 mishandles negative return values from X509check function calls, which might assist attackers in performing man-in-the-middle attacks...

5.9CVSS6.2AI score0.01695EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2020/04/23 4:15 p.m.21 views

CVE-2020-12105

OpenConnect through 8.08 mishandles negative return values from X509check function calls, which might assist attackers in performing man-in-the-middle attacks...

5.9CVSS5.6AI score0.01695EPSS
Exploits0
CVE
CVE
added 2020/04/23 4:15 p.m.156 views

CVE-2020-12105

OpenConnect (affected: 8.08 and related, e.g., OpenConnect through 8.08) is vulnerable due to mishandling negative return values from X509_check_ function calls, which could enable MITM attacks. Root cause: improper handling in X509-related checks; impact: potential eavesdropping/mitigation failu...

5.9CVSS5.7AI score0.01695EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2020/04/23 4:15 p.m.28 views

CVE-2020-12105

OpenConnect through 8.08 mishandles negative return values from X509check function calls, which might assist attackers in performing man-in-the-middle attacks...

5.8AI score0.01695EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2020/04/23 12:0 a.m.9 views

PT-2020-6927 · Unknown +4 · Openconnect +4

Name of the Vulnerable Software and Affected Versions: OpenConnect versions prior to 8.08 Description: The issue is related to the mishandling of negative return values from X509 check function calls, which could assist attackers in performing man-in-the-middle attacks. This vulnerability is...

9.8CVSS6.5AI score0.04622EPSS
Exploits1References45
BDU FSTEC
BDU FSTEC
added 2020/04/10 12:0 a.m.8 views

The vulnerability of the process_http_response function in applications for connecting to OpenConnect virtual private networks allows a perpetrator to gain unauthorized access to information and compromise its integrity and availability.

The vulnerability of the processhttpresponse function in applications for connecting to OpenConnect virtual private networks is related to buffer overflow vulnerabilities. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to information and...

7.7CVSS7.5AI score0.03445EPSS
Exploits0References7Affected Software7
NVD
NVD
added 2020/02/13 11:15 p.m.16 views

CVE-2013-7098

OpenConnect VPN client with GnuTLS before 5.02 contains a heap overflow if MTU is increased on reconnection...

9.8CVSS9.7AI score0.01544EPSS
Exploits0References1
OSV
OSV
added 2020/02/13 11:15 p.m.8 views

CVE-2013-7098

OpenConnect VPN client with GnuTLS before 5.02 contains a heap overflow if MTU is increased on reconnection...

9.8CVSS7.1AI score
Exploits0References1
OSV
OSV
added 2020/02/13 11:15 p.m.5 views

DEBIAN-CVE-2013-7098

OpenConnect VPN client with GnuTLS before 5.02 contains a heap overflow if MTU is increased on reconnection...

9.8CVSS8.7AI score0.01544EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2020/02/13 11:15 p.m.32 views

CVE-2013-7098

OpenConnect VPN client with GnuTLS before 5.02 contains a heap overflow if MTU is increased on reconnection...

9.8CVSS7.2AI score0.01544EPSS
Exploits0References2
Prion
Prion
added 2020/02/13 11:15 p.m.13 views

Heap overflow

OpenConnect VPN client with GnuTLS before 5.02 contains a heap overflow if MTU is increased on reconnection...

7.5CVSS7.4AI score0.01544EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder