Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2017/05/01 12:0 a.m.51 views

EulerOS 2.0 SP1 : openssl098e (EulerOS-SA-2017-1040)

According to the versions of the openssl098e package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The BNbn2dec function in crypto/bn/bnprint.c in OpenSSL before 1.1.0 does not properly validate division results, which allows remote...

9.8CVSS7.6AI score0.82112EPSS
Exploits3References5
OSV
OSV
added 2017/04/21 8:59 p.m.1 views

CVE-2016-3702

Padding oracle flaw in CloudForms Management Engine aka CFME 5 allows remote attackers to obtain sensitive cleartext information...

5.3CVSS5.8AI score
Exploits0References1
CVE
CVE
added 2017/04/21 8:0 p.m.48 views

CVE-2016-3702

CVE-2016-3702: Padding oracle flaw in Red Hat CloudForms Management Engine (CFME) 5 enables remote attackers to obtain sensitive cleartext information. Affected component and exact root cause are described as a padding oracle vulnerability; no specific exploit details or remediation are provided ...

5.3CVSS5.2AI score0.01237EPSS
Exploits0References1Affected Software1
RedHat Linux
RedHat Linux
added 2016/03/22 4:48 p.m.9 views

SSL/TLS: Cross-protocol attack on TLS using SSLv2 (DROWN)

A padding oracle flaw was found in the Secure Sockets Layer version 2.0 SSLv2 protocol. An attacker could potentially use this flaw to decrypt RSA-encrypted cipher text from a connection using a newer SSL/TLS protocol version, allowing them to decrypt such connections. This cross-protocol attack ...

5.9CVSS6.8AI score0.82112EPSS
Exploits2References7
RedHat Linux
RedHat Linux
added 2016/03/22 4:48 p.m.53 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.4.6 OpenSSL security update

Updated packages that fix several OpenSSL security issues are available for Red Hat JBoss Enterprise Application Platform 6.4.6 for Microsoft Windows and Solaris. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base...

5.9CVSS7AI score0.82112EPSS
Exploits2References6
RedHat Linux
RedHat Linux
added 2016/03/09 4:8 a.m.3 views

SSL/TLS: Cross-protocol attack on TLS using SSLv2 (DROWN)

A padding oracle flaw was found in the Secure Sockets Layer version 2.0 SSLv2 protocol. An attacker could potentially use this flaw to decrypt RSA-encrypted cipher text from a connection using a newer SSL/TLS protocol version, allowing them to decrypt such connections. This cross-protocol attack ...

5.9CVSS6.8AI score0.82112EPSS
Exploits2References7
OpenVAS
OpenVAS
added 2016/03/02 12:0 a.m.50 views

CentOS Update for openssl CESA-2016:0301 centos7

Check the version of openssl SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882404";...

10CVSS7.5AI score0.82112EPSS
Exploits2References2
RedHat Linux
RedHat Linux
added 2016/03/01 4:7 p.m.5 views

SSL/TLS: Cross-protocol attack on TLS using SSLv2 (DROWN)

A padding oracle flaw was found in the Secure Sockets Layer version 2.0 SSLv2 protocol. An attacker could potentially use this flaw to decrypt RSA-encrypted cipher text from a connection using a newer SSL/TLS protocol version, allowing them to decrypt such connections. This cross-protocol attack ...

5.9CVSS6.8AI score0.82112EPSS
Exploits2References7
RedHat Linux
RedHat Linux
added 2016/03/01 2:45 p.m.3 views

SSL/TLS: Cross-protocol attack on TLS using SSLv2 (DROWN)

A padding oracle flaw was found in the Secure Sockets Layer version 2.0 SSLv2 protocol. An attacker could potentially use this flaw to decrypt RSA-encrypted cipher text from a connection using a newer SSL/TLS protocol version, allowing them to decrypt such connections. This cross-protocol attack ...

5.9CVSS6.8AI score0.82112EPSS
Exploits2References7
RedHat Linux
RedHat Linux
added 2016/03/01 2:44 p.m.5 views

SSL/TLS: Cross-protocol attack on TLS using SSLv2 (DROWN)

A padding oracle flaw was found in the Secure Sockets Layer version 2.0 SSLv2 protocol. An attacker could potentially use this flaw to decrypt RSA-encrypted cipher text from a connection using a newer SSL/TLS protocol version, allowing them to decrypt such connections. This cross-protocol attack ...

5.9CVSS6.8AI score0.82112EPSS
Exploits2References7
Rows per page
Query Builder