Lucene search
K

23 matches found

OpenVAS
OpenVAS
added 2026/03/16 12:0 a.m.3 views

Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2026-1519)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS5.8AI score0.16195EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/10/13 12:0 a.m.3 views

Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2025-2246)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS7.8AI score0.16195EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/10/11 12:0 a.m.3 views

EulerOS 2.0 SP11 : shim (EulerOS-SA-2025-2214)

According to the versions of the shim package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A timing based side channel exists in the OpenSSL RSA Decryption implementation which could be sufficient to recover a plaintext across a network in ...

5.9CVSS7.9AI score0.16195EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/09/10 12:0 a.m.2 views

Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2025-2114)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.7AI score0.16195EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/09/10 12:0 a.m.2 views

Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2025-2058)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.7AI score0.16195EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/09/10 12:0 a.m.3 views

Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2025-2027)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.7AI score0.16195EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.3 views

EulerOS 2.0 SP10 : shim (EulerOS-SA-2025-2086)

According to the versions of the shim packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A timing based side channel exists in the OpenSSL RSA Decryption implementation which could be sufficient to recover a plaintext across a network in...

5.9CVSS7.9AI score0.16195EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/09/05 12:0 a.m.117 views

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-6.5.6.6)

The version of AOS installed on the remote host is prior to 6.5.6.6. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-6.5.6.6 advisory. - ASN.1 strings are represented internally within OpenSSL as an ASN1STRING structure which contains a buffer holding the stri...

8.6CVSS7.7AI score0.70561EPSS
Exploits5References8
OSV
OSV
added 2023/07/15 11:5 a.m.2 views

OESA-2023-1430 edk2 security update

EDK II is a modern, feature-rich, cross-platform firmware development environment for the UEFI and PI specifications. Security Fixes: A timing based side channel exists in the OpenSSL RSA Decryption implementation which could be sufficient to recover a plaintext across a network in a Bleichenbach...

5.9CVSS8.8AI score0.16195EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/07/04 12:0 a.m.30 views

EulerOS 2.0 SP11 : openssl (EulerOS-SA-2023-2275)

According to the versions of the openssl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A timing based side channel exists in the OpenSSL RSA Decryption implementation which could be sufficient to recover a plaintext across a netwo...

7.5CVSS7.9AI score0.59501EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/06/05 2:16 p.m.4 views

openssl: timing attack in RSA Decryption implementation

A timing-based side channel exists in the OpenSSL RSA Decryption implementation, which could be sufficient to recover a ciphertext across a network in a Bleichenbacher style attack. To achieve a successful decryption, an attacker would have to be able to send a very large number of trial messages...

5.9CVSS6.7AI score0.16195EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2023/05/20 12:0 a.m.53 views

AlmaLinux 8 : edk2 (ALSA-2023:2932)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:2932 advisory. - A timing based side channel exists in the OpenSSL RSA Decryption implementation which could be sufficient to recover a plaintext across a network in a...

7.5CVSS7.9AI score0.59501EPSS
Exploits0References5
ICS
ICS
added 2023/05/05 6:0 a.m.70 views

Hitachi Energy's RTU500 Series Product (UPDATE B)

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION : Exploitable remotely/low attack complexity Vendor : Hitachi Energy Equipment : RTU500 Series Vulnerabilities : Type Confusion, Observable Timing Discrepancy, Out-of-bounds Read, Infinite Loop, Classic Buffer Overflow 2. RISK EVALUATION...

9.8CVSS9.1AI score0.87816EPSS
Exploits3References8
Tenable Nessus
Tenable Nessus
added 2023/04/13 12:0 a.m.76 views

QNAP QTS / QuTS hero Multiple Vulnerabilities in OpenSSL (QSA-23-15)

The version of QNAP QTS / QuTS hero installed on the remote host is affected by multiple vulnerabilities as referenced in the QSA-23-15 advisory. - A timing based side channel exists in the OpenSSL RSA Decryption implementation which could be sufficient to recover a plaintext across a network in ...

7.5CVSS7.9AI score0.59501EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2023/03/05 12:0 a.m.49 views

Fedora 36 : edk2 (2023-e821b64a4c)

The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-e821b64a4c advisory. add sub-package with xen build resolves: rhbz2170730 ---- update openssl CVE-2023-0286, CVE-2023-0215, CVE-2022-4450, CVE-2022-4304. ---- cherry-pic...

7.5CVSS7.5AI score0.59501EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2023/03/01 12:0 a.m.37 views

SUSE SLES12 Security Update : compat-openssl098 (SUSE-SU-2023:0581-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:0581-1 advisory. - CVE-2022-4304: Fixed timing Oracle in RSA Decryption bsc1207534. Tenable has extracted the preceding description block directly from the...

5.9CVSS7.1AI score0.16195EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/02/16 12:0 a.m.42 views

Fedora 37 : edk2 (2023-e1ffb79ddf)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-e1ffb79ddf advisory. update openssl CVE-2023-0286, CVE-2023-0215, CVE-2022-4450, CVE-2022-4304. ---- cherry-pick aarch64 bugfixes, set firmware build release date, add...

7.5CVSS7.5AI score0.59501EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 3:30 a.m.2 views

SUSE CVE-2022-4304

A timing based side channel exists in the OpenSSL RSA Decryption implementation which could be sufficient to recover a plaintext across a network in a Bleichenbacher style attack. To achieve a successful decryption an attacker would have to be able to send a very large number of trial messages fo...

5.9CVSS6.5AI score0.16195EPSS
Exploits0References172
OSV
OSV
added 2023/02/08 8:15 p.m.3 views

AZL-37662 CVE-2022-4304 affecting package hvloader for versions less than 1.0.1-2

A timing based side channel exists in the OpenSSL RSA Decryption implementation which could be sufficient to recover a plaintext across a network in a Bleichenbacher style attack. To achieve a successful decryption an attacker would have to be able to send a very large number of trial messages fo...

5.9CVSS6.9AI score0.16195EPSS
Exploits0References1
OSV
OSV
added 2023/02/08 8:15 p.m.4 views

AZL-37955 CVE-2022-4304 affecting package hvloader for versions less than 1.0.1-4

A timing based side channel exists in the OpenSSL RSA Decryption implementation which could be sufficient to recover a plaintext across a network in a Bleichenbacher style attack. To achieve a successful decryption an attacker would have to be able to send a very large number of trial messages fo...

5.9CVSS6.9AI score0.16195EPSS
Exploits0References1
Rows per page
Query Builder