Lucene search
K

191 matches found

Positive Technologies
Positive Technologies
added yesterday5 views

PT-2026-57917

Crypt::OpenSSL::X509 versions before 2.1.3 for Perl allow denial of service via NULL pointer dereference. X509V3 EXT d2iext returns NULL when an extension's DER value fails to parse. basicC, ia5string, and auth att dereference its result without a NULL check. keyid data also dereferences...

6.1AI score
Exploits0References4
RedHat Linux
RedHat Linux
added last week6 views

Important: Red Hat Security Advisory: compat-openssl10 security update

An update for compat-openssl10 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabili...

8.8CVSS6AI score0.02719EPSS
Exploits0References2
OSV
OSV
added 2026/07/03 9:16 p.m.4 views

UBUNTU-CVE-2026-14355

In PHP versions 8.2. before 8.2.32, 8.3. before 8.3.32, 8.4. before 8.4.23, 8.5. before 8.5.8, the AES-WRAP-PAD algorithm implementation in OpenSSL extension contains a buffer allocation flaw. The output buffer for the AES key-wrap-with-padding operation is sized from the plaintext length without...

5.6CVSS6.2AI score0.00306EPSS
Exploits0References5
OPENSUSE Linux
OPENSUSE Linux
added 2026/06/15 12:0 a.m.6 views

libopenssl-3-devel-3.5.3-6.1 on GA media (moderate)

libopenssl-3-devel-3.5.3-6.1 on GA media Announcement ID: openSUSE-SU-2026:11023-1 Rating: moderate Cross-References: CVE-2026-34180 CVE-2026-34182 CVE-2026-34183 CVE-2026-42764 CVE-2026-42766 CVE-2026-42767 CVE-2026-42768 CVE-2026-42769 CVE-2026-42770 CVE-2026-45445 CVE-2026-45446 CVE-2026-45447...

8.2CVSS5.3AI score0.02719EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/06/09 12:0 a.m.22 views

PT-2026-47844

Name of the Vulnerable Software and Affected Versions OpenSSL version 4.0 OpenSSL version 3.6 OpenSSL version 3.5 OpenSSL version 3.4 OpenSSL version 3.0 OpenSSL version 1.1.1 OpenSSL version 1.0.2 Description A use-after-free condition occurs during PKCS7 signature verification when processing a...

8.8CVSS6.1AI score0.02719EPSS
Exploits0References207
NVD
NVD
added 2026/05/27 9:16 a.m.23 views

CVE-2023-52945

Uncontrolled search path element vulnerability in OpenSSL DLL component in Synology BeeDrive for desktop before 1.3.2-13814 allows local users to execute arbitrary code via unspecified vectors...

7.8CVSS0.00139EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/27 8:25 a.m.15 views

CVE-2023-52945

Uncontrolled search path element vulnerability in OpenSSL DLL component in Synology BeeDrive for desktop before 1.3.2-13814 allows local users to execute arbitrary code via unspecified vectors...

7.8CVSS6.2AI score0.00139EPSS
Exploits0References2
OSV
OSV
added 2026/05/20 10:10 a.m.8 views

RHSA-2026:19187 Red Hat Security Advisory: compat-openssl11 security update

Bulletin has no description...

7.4CVSS7AI score0.00444EPSS
Exploits1References7
OSV
OSV
added 2026/05/08 10:36 a.m.9 views

CLSA-2025-1751550314 openssl: Fix of CVE-2024-12797

RFC7250 handshakes with unauthenticated servers don't abort as expected CVE-2024-12797 Resolves: RHEL-76755...

6.3CVSS6.9AI score0.02439EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/05/07 10:33 p.m.10 views

rust-openssl vulnerable to heap buffer overflow when encrypting with AES key-wrap-with-padding

CipherCtxRef::cipherupdate, CipherCtxRef::cipherupdatevec, and symm::Crypter::update incorrectly sized output buffers when used with AES key-wrap-with-padding ciphers EVPaes128,192,256wrappad. For a non-multiple-of-8 input, OpenSSL writes up to 7 bytes past the end of the caller's buffer or Vec,...

5.1CVSS5.9AI score0.00172EPSS
Exploits0References3Affected Software1
RedHat Linux
RedHat Linux
added 2026/05/07 5:9 p.m.13 views

pyOpenSSL: DTLS cookie callback buffer overflow

A flaw was found in pyOpenSSL. The setcookiegeneratecallback callback function can be used to generate DTLS cookies. When the callback returns a cookie string or byte sequence longer than 256 bytes, a buffer overflow can be triggered due to a missing bounds checking before copying the data to a...

9.8CVSS6AI score0.00704EPSS
Exploits0References7
OSV
OSV
added 2026/04/30 4:39 p.m.7 views

CLSA-2026-1777567181 openssl: Fix of CVE-2026-28390

CVE-2026-28390: fix NULL pointer dereference in rsacmsdecrypt when CMS RSA-OAEP pSourceFunc is missing its parameter...

7.5CVSS7.3AI score0.00805EPSS
Exploits0References1
OSV
OSV
added 2026/04/28 10:7 a.m.8 views

RHSA-2026:10754 Red Hat Security Advisory: RHUI 4.11.4 security update - python-pyOpenSSL

Bulletin has no description...

8.1CVSS4.1AI score0.00704EPSS
Exploits0References10
OSV
OSV
added 2026/04/27 6:33 p.m.11 views

JLSEC-2026-247 Null pointer dereference in PKCS12 parsing

Issue summary: Processing a maliciously formatted PKCS12 file may lead OpenSSL to crash leading to a potential Denial of Service attack Impact summary: Applications loading files in the PKCS12 format from untrusted sources might terminate abruptly. A file in PKCS12 format can contain certificates...

5.5CVSS5.4AI score0.03174EPSS
Exploits0References17
OSV
OSV
added 2026/04/24 6:16 p.m.4 views

UBUNTU-CVE-2026-41676

rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.27 to before 0.10.78, Deriver::derive and PkeyCtxRef::derive sets len = buf.len and passes it as the in/out length to EVPPKEYderive, relying on OpenSSL to honor it. On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extra...

9.8CVSS5.9AI score0.00298EPSS
Exploits0References3
OSV
OSV
added 2026/04/24 6:16 p.m.5 views

UBUNTU-CVE-2026-41681

rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.10.39 to before 0.10.78, EVPDigestFinal always writes EVPMDCTXsizectx to the out buffer. If out is smaller than that, MdCtxRef::digestfinal writes past its end, usually corrupting the stack. This is reachable from sa...

9.8CVSS5.8AI score0.00373EPSS
Exploits0References5
OSV
OSV
added 2026/04/22 9:5 p.m.8 views

GHSA-GHM9-CR32-G9QJ rust-openssl: rustMdCtxRef::digest_final() writes past caller buffer with no length check

EVPDigestFinal always writes EVPMDCTXsizectx to the out buffer. If out is smaller than that, MdCtxRef::digestfinal writes past its end, usually corrupting the stack. This is reachable from safe Rust...

9.3CVSS5.8AI score0.00373EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/03/31 12:0 a.m.9 views

PT-2026-29186

Name of the Vulnerable Software and Affected Versions vcpkg versions prior to 3.6.13 Description vcpkg, a C/C++ package manager, exhibited a configuration issue in its Windows builds of OpenSSL. Specifically, the openssldir setting was configured to a path on the build machine. This configuration...

7.8CVSS5.8AI score0.00715EPSS
Exploits0References9
UbuntuCve
UbuntuCve
added 2026/03/18 12:0 a.m.6 views

CVE-2026-27448

pyOpenSSL is a Python wrapper around the OpenSSL library. Starting in version 0.14.0 and prior to version 26.0.0, if a user provided callback to settlsextservernamecallback raised an unhandled exception, this would result in a connection being accepted. If a user was relying on this callback for...

6.3CVSS5.9AI score0.00241EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/03/17 11:34 p.m.6 views

CVE-2026-27459

pyOpenSSL is a Python wrapper around the OpenSSL library. Starting in version 22.0.0 and prior to version 26.0.0, if a user provided callback to setcookiegeneratecallback returned a cookie value greater than 256 bytes, pyOpenSSL would overflow an OpenSSL provided buffer. Starting in version 26.0....

9.2CVSS5.9AI score0.00704EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder