Lucene search
+L

20 matches found

vulnrichment
vulnrichment
added 2026/06/09 4:3 p.m.10 views

CVE-2026-34181 PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys

Issue Summary: The PKCS12 file processing fails to perform sufficient input validation for files that use Password-Based Message Authentication Code 1 PBMAC1 integrity mechanism allowing a certificate and private key forgery. Impact Summary: An attacker impersonating a user can cause a service...

5.6AI score0.00196EPSS
Exploits0References5
redhat
redhat
added 2026/05/19 6:28 p.m.14 views

openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing

A flaw was found in OpenSSL. When processing a specially crafted PKCS12 Personal Information Exchange Syntax Standard file, a remote attacker can exploit an out-of-bounds write vulnerability. This issue, occurring within the OPENSSLuni2utf8 function, leads to memory corruption by writing data...

7.4CVSS7.4AI score0.00444EPSS
Exploits1References4
redhat
redhat
added 2026/04/09 8:50 a.m.2 views

openssl: OpenSSL: Denial of Service via malformed PKCS#12 file processing

A flaw was found in OpenSSL. This vulnerability allows a remote attacker to trigger a Denial of Service DoS by providing a specially crafted, malformed PKCS12 file to an application that processes it. The flaw occurs due to a NULL pointer dereference in the PKCS12itemdecryptd2iex function when...

7.5CVSS6.9AI score0.00844EPSS
Exploits1References4
redhat
redhat
added 2026/04/09 8:50 a.m.3 views

openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing

A flaw was found in OpenSSL. When processing a specially crafted PKCS12 Personal Information Exchange Syntax Standard file, a remote attacker can exploit an out-of-bounds write vulnerability. This issue, occurring within the OPENSSLuni2utf8 function, leads to memory corruption by writing data...

7.4CVSS7AI score0.00444EPSS
Exploits1References4
redhat
redhat
added 2026/03/12 3:34 p.m.6 views

openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing

A flaw was found in OpenSSL. When processing a specially crafted PKCS12 Personal Information Exchange Syntax Standard file, a remote attacker can exploit an out-of-bounds write vulnerability. This issue, occurring within the OPENSSLuni2utf8 function, leads to memory corruption by writing data...

7.4CVSS6AI score0.00444EPSS
Exploits1References4
redhat
redhat
added 2026/03/10 8:31 a.m.3 views

openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing

A flaw was found in OpenSSL. When processing a specially crafted PKCS12 Personal Information Exchange Syntax Standard file, a remote attacker can exploit an out-of-bounds write vulnerability. This issue, occurring within the OPENSSLuni2utf8 function, leads to memory corruption by writing data...

7.4CVSS6AI score0.00444EPSS
Exploits1References4
redhat
redhat
added 2026/02/26 2:44 p.m.3 views

openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing

A flaw was found in OpenSSL. When processing a specially crafted PKCS12 Personal Information Exchange Syntax Standard file, a remote attacker can exploit an out-of-bounds write vulnerability. This issue, occurring within the OPENSSLuni2utf8 function, leads to memory corruption by writing data...

7.4CVSS6AI score0.00444EPSS
Exploits1References4
redhat
redhat
added 2026/02/25 3:55 p.m.4 views

openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing

A flaw was found in OpenSSL. When processing a specially crafted PKCS12 Personal Information Exchange Syntax Standard file, a remote attacker can exploit an out-of-bounds write vulnerability. This issue, occurring within the OPENSSLuni2utf8 function, leads to memory corruption by writing data...

7.4CVSS6AI score0.00444EPSS
Exploits1References4
redhat
redhat
added 2026/02/23 7:19 p.m.9 views

openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing

A flaw was found in OpenSSL. When processing a specially crafted PKCS12 Personal Information Exchange Syntax Standard file, a remote attacker can exploit an out-of-bounds write vulnerability. This issue, occurring within the OPENSSLuni2utf8 function, leads to memory corruption by writing data...

7.4CVSS6AI score0.00444EPSS
Exploits1References4
redhat
redhat
added 2026/02/23 2:11 a.m.5 views

openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing

A flaw was found in OpenSSL. When processing a specially crafted PKCS12 Personal Information Exchange Syntax Standard file, a remote attacker can exploit an out-of-bounds write vulnerability. This issue, occurring within the OPENSSLuni2utf8 function, leads to memory corruption by writing data...

7.4CVSS6AI score0.00444EPSS
Exploits1References4
redhat
redhat
added 2026/01/29 5:22 p.m.9 views

openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing

A flaw was found in OpenSSL. When processing a specially crafted PKCS12 Personal Information Exchange Syntax Standard file, a remote attacker can exploit an out-of-bounds write vulnerability. This issue, occurring within the OPENSSLuni2utf8 function, leads to memory corruption by writing data...

7.4CVSS6AI score0.00444EPSS
Exploits1References4
redhat
redhat
added 2026/01/28 3:32 p.m.3 views

openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing

A flaw was found in OpenSSL. When processing a specially crafted PKCS12 Personal Information Exchange Syntax Standard file, a remote attacker can exploit an out-of-bounds write vulnerability. This issue, occurring within the OPENSSLuni2utf8 function, leads to memory corruption by writing data...

7.4CVSS6AI score0.00444EPSS
Exploits1References4
redhat
redhat
added 2026/01/28 10:8 a.m.12 views

openssl: OpenSSL: Denial of Service due to type confusion in PKCS#12 file processing

A flaw was found in OpenSSL. This type confusion vulnerability allows a remote attacker to cause a Denial of Service DoS by tricking a user or application into processing a maliciously crafted PKCS12 Personal Information Exchange Syntax Standard file. The vulnerability leads to an invalid or NULL...

5.5CVSS5.8AI score0.00144EPSS
Exploits1References4
redhat
redhat
added 2026/01/28 10:8 a.m.8 views

openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing

A flaw was found in OpenSSL. When processing a specially crafted PKCS12 Personal Information Exchange Syntax Standard file, a remote attacker can exploit an out-of-bounds write vulnerability. This issue, occurring within the OPENSSLuni2utf8 function, leads to memory corruption by writing data...

7.4CVSS6AI score0.00444EPSS
Exploits1References4
redhat
redhat
added 2026/01/28 9:6 a.m.7 views

openssl: OpenSSL: Denial of Service due to type confusion in PKCS#12 file processing

A flaw was found in OpenSSL. This type confusion vulnerability allows a remote attacker to cause a Denial of Service DoS by tricking a user or application into processing a maliciously crafted PKCS12 Personal Information Exchange Syntax Standard file. The vulnerability leads to an invalid or NULL...

5.5CVSS5.8AI score0.00144EPSS
Exploits1References4
redhat
redhat
added 2026/01/28 9:6 a.m.6 views

openssl: OpenSSL: Denial of Service via malformed PKCS#12 file processing

A flaw was found in OpenSSL. This vulnerability allows a remote attacker to trigger a Denial of Service DoS by providing a specially crafted, malformed PKCS12 file to an application that processes it. The flaw occurs due to a NULL pointer dereference in the PKCS12itemdecryptd2iex function when...

7.5CVSS5.8AI score0.00844EPSS
Exploits1References4
redhatcve
redhatcve
added 2026/01/27 3:46 p.m.6 views

CVE-2025-69419

A flaw was found in OpenSSL. When processing a specially crafted PKCS12 Personal Information Exchange Syntax Standard file, a remote attacker can exploit an out-of-bounds write vulnerability. This issue, occurring within the OPENSSLuni2utf8 function, leads to memory corruption by writing data...

7.4CVSS5.9AI score0.00444EPSS
Exploits1References3
cnnvd
cnnvd
added 2021/07/13 12:0 a.m.5 views

Microsoft Windows 安全漏洞

Microsoft Windows is a suite of operating systems for use on personal devices from the U.S.-based Microsoft Corporation Microsoft. A security vulnerability exists in Microsoft Windows PFX Encryption. The following products and versions are affected:Windows 10 for x64-based Systems,Windows 10...

8.1CVSS8.3AI score0.02283EPSS
Exploits0References4
mskb
mskb
added 2018/09/17 12:0 a.m.4 views

September 17, 2018—KB4464218 (OS Build 17134.286)

None None...

6.1AI score
Exploits0
mskb
mskb
added 2018/08/14 7:0 a.m.66 views

August 14, 2018—KB4343909 (OS Build 17134.228)

None None...

9.3CVSS6.8AI score0.73968EPSS
Exploits14
Rows per page
Query Builder