Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2021-23840

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Calls to EVPCipherUpdate, EVPEncryptUpdate and EVPDecryptUpdate may overflow the output length argument in some cases where the input length is close to the...

7.5CVSS6.7AI score0.50732EPSS
Exploits0References3
OSV
OSV
added 2024/03/06 11:5 a.m.29 views

BIT-NODE-2021-23840 Integer overflow in CipherUpdate

Calls to EVPCipherUpdate, EVPEncryptUpdate and EVPDecryptUpdate may overflow the output length argument in some cases where the input length is close to the maximum permissable length for an integer on the platform. In such cases the return value from the function call will be 1 indicating succes...

7.5CVSS7.5AI score0.50732EPSS
Exploits0References21
Tenable Nessus
Tenable Nessus
added 2022/05/10 12:0 a.m.49 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : openssl Multiple Vulnerabilities (NS-SA-2022-0017)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has openssl packages installed that are affected by multiple vulnerabilities: - Calls to EVPCipherUpdate, EVPEncryptUpdate and EVPDecryptUpdate may overflow the output length argument in some cases where the input length is clo...

7.5CVSS6.5AI score0.50732EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2021/07/01 12:0 a.m.33 views

EulerOS Virtualization 3.0.6.6 : openssl (EulerOS-SA-2021-2032)

According to the versions of the openssl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The OpenSSL public API function X509issuerandserialhash attempts to create a unique hash value based on the issuer and serial...

7.5CVSS6.5AI score0.50732EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2021/03/23 12:0 a.m.33 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : OpenSSL vulnerabilities (USN-4738-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4738-1 advisory. Paul Kehrer discovered that OpenSSL incorrectly handled certain input lengths in EVP functions. A remote attacker could possibly...

7.5CVSS6.6AI score0.50732EPSS
Exploits0References3
Amazon
Amazon
added 2021/03/20 12:0 a.m.90 views

Medium: openssl11

Issue Overview: Calls to EVPCipherUpdate, EVPEncryptUpdate and EVPDecryptUpdate may overflow the output length argument in some cases where the input length is close to the maximum permissible length for an integer on the platform. In such cases the return value from the function call will be 1...

7.5CVSS7.4AI score0.50732EPSS
Exploits0
OSV
OSV
added 2021/02/16 5:15 p.m.1 views

DEBIAN-CVE-2021-23840

Calls to EVPCipherUpdate, EVPEncryptUpdate and EVPDecryptUpdate may overflow the output length argument in some cases where the input length is close to the maximum permissable length for an integer on the platform. In such cases the return value from the function call will be 1 indicating succes...

7.5CVSS6.3AI score0.50732EPSS
Exploits0References1
Rows per page
Query Builder