CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2025/06/16 12:0 a.m.•3 views

Exploits0References8

TencentOS Server 3: opencryptoki (TSSA-2024:0098)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0098 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

Tenable Nessus•added 2025/06/16 12:0 a.m.•5 views

TencentOS Server 4: opencryptoki (TSSA-2024:0927)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0927 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

CBLMariner•added 2025/05/15 9:13 p.m.•3 views

CVE-2024-0914 affecting package opencryptoki for versions less than 3.24.0-3

CVE-2024-0914 affecting package opencryptoki for versions less than 3.24.0-3. An upgraded version of the package is available that resolves this issue...

5.9CVSS6.9AI score0.00878EPSS

Microsoft CVE•added 2025/05/15 7:0 a.m.•5 views

Opencryptoki: timing side-channel in handling of rsa pkcs#1 v1.5 padded ciphertexts (marvin)

...

Tenable Nessus•added 2025/05/14 12:0 a.m.•6 views

Alibaba Cloud Linux 3 : 0210: opencryptoki bug fix and enhancement update (Moderate) (ALINUX3-SA-2024:0210)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2024:0210 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2024-0914: A timing side-channel vulnerability...

Rockylinux•added 2025/03/17 8:16 p.m.•4 views

opencryptoki bug fix and enhancement update

An update is available for opencryptoki. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux...

6.8AI score

Tenable Nessus•added 2025/03/05 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2024-0914

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A timing side-channel vulnerability has been discovered in the opencryptoki package while processing RSA PKCS1 v1.5 padded ciphertexts. This flaw could...

Tenable Nessus•added 2025/03/04 12:0 a.m.•7 views

Exploits0References3

Linux Distros Unpatched Vulnerability : CVE-2012-4455

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - openCryptoki 2.4.1 allows local users to create or set world-writable permissions on arbitrary files via a symlink attack on the 1 LCK..opencryptoki or 2...

6.2CVSS5.6AI score0.00359EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2012-4454

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - openCryptoki before 2.4.1, when using spinlocks, allows local users to create or set world-writable permissions on arbitrary files via a symlink attack on the 1...

2.9CVSS5.5AI score0.01029EPSS

Rosalinux•added 2025/03/01 9:21 p.m.•5 views

Advisory ROSA-SA-2025-2728

Software: opencryptoki 3.21.0 OS: ROSA Virtualization 3.0 packageevrstring: opencryptoki-3.21.0-10.rv30 CVE-ID: CVE-2024-0914 BDU-ID: 2024-02839 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the opencryptoki package is related to the processing of RSA PKCS1 augmented ciphertexts. Exploitation of...

5.9CVSS6.9AI score0.00878EPSS