Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

F5 Networks
F5 Networksadded 2023/02/21 7:31 p.m.26 views

K16337: OpenSSL vulnerability CVE-2009-5146

Security Advisory Description A vulnerability, which was classified as problematic, was found in OpenSSL 0.9.8. This affects an unknown function of the component Hostname TLS Extension. The manipulation with an unknown input leads to a information disclosure vulnerability memory leak. CVE-2009-51...

6.7AI score
Exploits0Affected Software1
OSV
OSVadded 2021/12/23 9:1 p.m.3 views

MGASA-2021-0582 Updated ldns packages fix security vulnerability

Heap out-of-bound read vulnerability in rrfrmstrinternal function Heap out-of-bound read vulnerability in ldnsnsec3saltdata function Fixed time memory compare for Openssl 0.9.8...

7.1AI score
Exploits0References3
IBM Security Bulletins
IBM Security Bulletinsadded 2018/06/17 10:32 p.m.51 views

Security Bulletin: SSLv3 POODLE Attack (CVE-2014-3566)

Summary SSLv3 POODLE Attack CVE-2014-3566 impacts IBM Service Deliver Manager. Vulnerability Details Review the following security bulletins for vulnerability details and information about fixes: Security Bulletin: Vulnerability in SSLv3 affects IBM WebSphere Application Server CVE-2014-3566...

4.3CVSS0.1AI score0.99999EPSS
Exploits5Affected Software2
Packet Storm
Packet Stormadded 2015/06/10 12:0 a.m.204 views

This POODLE Bites: Exploiting The SSL 3.0 Fallback

Introduction SSL 3.0 RFC6101 is an obsolete and insecure protocol. While for most practical purposes it has been replaced by its successors TLS 1.0 RFC2246, TLS 1.1 RFC4346, and TLS 1.2 RFC5246, many TLS implementations remain backwards­compatible with SSL 3.0 to interoperate with legacy systems ...

5CVSS0.1AI score0.99999EPSS
Exploits90
Prion
Prionadded 2014/08/13 11:55 p.m.27 views

Memory corruption

Memory leak in d1both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote attackers to cause a denial of service memory consumption via zero-length DTLS fragments that trigger improper handling of the return value of a certain...

5CVSS6.9AI score0.51436EPSS
Exploits0References50Affected Software1
Tenable Nessus
Tenable Nessusadded 2012/04/25 12:0 a.m.38 views

Mandriva Linux Security Advisory : openssl0.9.8 (MDVSA-2012:064)

It was discovered that the fix for CVE-2012-2110 MDVSA-2012:060 was not sufficient to correct the issue for OpenSSL 0.9.8. The updated packages have been upgraded to the 0.9.8w version which is not vulnerable to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text...

7.5CVSS7.5AI score0.48298EPSS
Exploits8References2
OpenVAS
OpenVASadded 2009/04/09 12:0 a.m.8 views

Mandriva Update for wvstreams MDKA-2007:010 (wvstreams)

Check for the Version of wvstreams OpenVAS Vulnerability Test Mandriva Update for wvstreams MDKA-2007:010 wvstreams Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

7.4AI score
Exploits0References2
CVE
CVEadded 2007/10/13 1:0 a.m.910 views

CVE-2007-4995

CVE-2007-4995 describes an off-by-one error in the DTLS implementation of OpenSSL 0.9.8 prior to 0.9.8f that could allow a remote attacker to execute arbitrary code via unspecified vectors. Multiple connected advisories confirm this DTLS flaw and the need to upgrade OpenSSL to a fixed release (0....

9.3CVSS7.3AI score0.11164EPSS
Exploits1References31Affected Software1
Rows per page
Query Builder