Lucene search
K

54 matches found

RedhatCVE
RedhatCVE
added 2025/11/22 10:31 p.m.7 views

CVE-2025-11935

With TLS 1.3 pre-shared key PSK a malicious or faulty server could ignore the request for PFS perfect forward secrecy and the client would continue on with the connection using PSK without PFS. This happened when a server responded to a ClientHello containing pskdheke without a keyshare extension...

7.5CVSS6.7AI score0.00199EPSS
Exploits0References1
OSV
OSV
added 2025/11/21 10:16 p.m.2 views

UBUNTU-CVE-2025-11935

With TLS 1.3 pre-shared key PSK a malicious or faulty server could ignore the request for PFS perfect forward secrecy and the client would continue on with the connection using PSK without PFS. This happened when a server responded to a ClientHello containing pskdheke without a keyshare...

7.5CVSS5.8AI score0.00199EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2025/11/21 10:4 p.m.5 views

CVE-2025-11935

With TLS 1.3 pre-shared key PSK a malicious or faulty server could ignore the request for PFS perfect forward secrecy and the client would continue on with the connection using PSK without PFS. This happened when a server responded to a ClientHello containing pskdheke without a keyshare...

7.5CVSS5.4AI score0.00199EPSS
Exploits0
CNNVD
CNNVD
added 2025/11/21 12:0 a.m.3 views

wolfSSL 安全漏洞

wolfSSL CyaSSL is a small, portable embedded SSL programming library for use by embedded systems developers from wolfSSL, Inc. in the United States. A security vulnerability exists in wolfSSL CyaSSL, which stems from the fact that TLS 1.3 pre-shared keys may ignore PFS requests, potentially...

7.5CVSS6.5AI score0.00199EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2007-6063

Malware in sbrugna...

4.3CVSS6.4AI score0.01189EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2015-5684

Malware in sbrugna...

7.5CVSS5AI score0.02425EPSS
Exploits0References5
Gitee
Gitee
added 2025/09/07 1:22 a.m.117 views

sslscan

This is a tool for scanning SSL/TLS protocols and ciphers on a target server. The tool is called sslscan and is written in C. It is designed to be a command-line interface for scanning SSL/TLS protocols and ciphers on a target server. The tool can be built on various platforms, including Linux an...

7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/07/28 12:0 a.m.3 views

Active Attack Resilience in 5G: a New Take on Authentication and Key Agreement

As 5G networks expand into critical infrastructure, secure and efficient user authentication is more important than ever. The 5G-AKA protocol, standardized by 3GPP in TS 33.501, is central to authentication in current 5G deployments. It provides mutual authentication, user privacy, and key secrec...

7.1AI score
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 8:2 p.m.43 views

K91245485: RSA-CRT key leak vulnerability CVE-2015-5738

Security Advisory Description The RSA-CRT implementation in the Cavium Software Development Kit SDK 2.x, when used on OCTEON II CN6xxx Hardware on Linux to support TLS with Perfect Forward Secrecy PFS, makes it easier for remote attackers to obtain private RSA keys by conducting a Lenstra...

7.5CVSS4.6AI score0.02425EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2023/02/21 6:35 p.m.370 views

K21905460: BIG-IP SSL vulnerability CVE-2017-6168

Security Advisory Description On BIG-IP versions 11.6.0-11.6.2 fixed in 11.6.2 HF1, 12.0.0-12.1.2 HF1 fixed in 12.1.2 HF2, or 13.0.0-13.0.0 HF2 fixed in 13.0.0 HF3 a virtual server configured with a Client SSL profile may be vulnerable to an Adaptive Chosen Ciphertext attack AKA Bleichenbacher...

7.4CVSS7.1AI score0.21552EPSS
Exploits1Affected Software9
IBM Security Bulletins
IBM Security Bulletins
added 2021/06/15 7:7 p.m.19 views

Security Bulletin: Resilient supports TLS1.2 ciphers that are not enabled for Perfect Forward Secrecy (PFS) (CVE-2021-20566)

Summary Resilient supports TLS1.2 ciphers that are not enabled for Perfect Forward Secrecy PFS. Such ciphers could allow an attacker who has recorded encrypted traffic and later obtains the server's key to decrypt highly sensitive information. Vulnerability Details CVEID: CVE-2021-20566...

7.5CVSS0.3AI score0.0071EPSS
Exploits0Affected Software1
ATTACKERKB
ATTACKERKB
added 2020/02/13 12:0 a.m.12 views

Return Of Bleichenbacher's Oracle Threat

ROBOT is the return of a 19-year-old vulnerability that allows performing RSA decryption and signing operations with the private key of a TLS server. Recent assessments: busterb at May 09, 2019 5:57pm UTC reported: The details are pretty heavily documented on robotattack.org, so no need to...

2.4AI score
Exploits0References2
n0where
n0where
added 2017/12/21 12:52 a.m.29 views

Cross-Platform Post-Exploitation HTTP/2 Command & Control Server: Merlin

Merlin is a cross-platform post-exploitation framework that leverages HTTP/2 communications to evade inspection. HTTP/2 is a relatively new protocol that requests Perfect Forward Secrecy PFS encryption cipher suites are used. The use of these cipher suites makes it incredibly difficult to capture...

0.4AI score
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2017/11/20 12:0 a.m.603 views

F5 Networks BIG-IP : BIG-IP SSL vulnerability (K21905460) (ROBOT)

On BIG-IP versions 11.6.0-11.6.2 fixed in 11.6.2 HF1, 12.0.0-12.1.2 HF1 fixed in 12.1.2 HF2, or 13.0.0-13.0.0 HF2 fixed in 13.0.0 HF3 a virtual server configured with a Client SSL profile may be vulnerable to an Adaptive Chosen Ciphertext attack AKA Bleichenbacher attack against RSA, which when...

7.4CVSS7.3AI score0.21552EPSS
Exploits1References2
ThreatPost
ThreatPost
added 2017/06/20 12:55 p.m.17 views

ProtonMail Launches Free VPN Service

Encrypted email service ProtonMail announced today it was launching a free VPN service called ProtonVPN. Developers said the move comes following one year of development and four months of beta testing by 10,000 ProtonMail community members. According to Proton Technologies AG, the company behind...

0.7AI score
Exploits0References5
Hacker One
Hacker One
added 2016/12/30 7:16 a.m.246 views

LocalTapiola: OpenSSL Padding Oracle Attack (CVE-2016-2107) on viestinta.lahitapiola.fi

Hello Lahitapiola Security Team, I would like to make two reports: 1. Subdomain viestinta.lahitapiola.fi is vulnerable to CVE-2016-2107 . 2. All the Lahitapiola domains/subdomains in scope of bug bounty have weak cipher suites and are susceptible to various SSL related attacks. Subdomain...

2.6CVSS7.1AI score0.89058EPSS
Exploits6
ThreatPost
ThreatPost
added 2016/12/23 9:21 a.m.8 views

Apple Delays App Transport Security Deadline

Apple backtracked on its plan to enforce a year-end deadline that would of required developers to move apps to an HTTPS-only model in an effort to thwart eavesdropping on insecure, plaintext HTTP connections. On Wednesday Apple said a requirement for developers to adopt App Transport Security wou...

6.7AI score
Exploits0References4
n0where
n0where
added 2016/10/08 4:10 p.m.152 views

Open Source Distributed Secure Skype Alternative: Tox Messenger

Open Source Distributed Secure Skype Alternative Distributed FOSS secure messenger with audio and video chat capabilities Tox began a few years ago, in the wake of Edward Snowden’s leaks regarding NSA spying activity. The idea was to create an instant messaging protocol that ran without any kind ...

6.5AI score
Exploits0References3
NVD
NVD
added 2016/07/26 5:59 p.m.36 views

CVE-2015-5738

The RSA-CRT implementation in the Cavium Software Development Kit SDK 2.x, when used on OCTEON II CN6xxx Hardware on Linux to support TLS with Perfect Forward Secrecy PFS, makes it easier for remote attackers to obtain private RSA keys by conducting a Lenstra side-channel attack...

7.5CVSS7.3AI score0.02425EPSS
Exploits0References3
Prion
Prion
added 2016/07/26 5:59 p.m.28 views

Design/Logic Flaw

The RSA-CRT implementation in the Cavium Software Development Kit SDK 2.x, when used on OCTEON II CN6xxx Hardware on Linux to support TLS with Perfect Forward Secrecy PFS, makes it easier for remote attackers to obtain private RSA keys by conducting a Lenstra side-channel attack...

5CVSS6.8AI score0.02425EPSS
Exploits0References3Affected Software2
Rows per page
Query Builder