Lucene search
+L

153 matches found

Positive Technologies
Positive Technologies
added 2023/07/31 12:0 a.m.13 views

PT-2023-4554

Name of the Vulnerable Software and Affected Versions OpenSSL versions prior to 3.0 OpenSSL versions prior to 3.1 Description The issue is related to the functions DH check, DH check ex, and EVP PKEY param check in the OpenSSL library. These functions can cause excessive delays when checking...

9.1CVSS8.2AI score0.75116EPSS
Exploits4References334
OSV
OSV
added 2023/07/19 12:15 p.m.4 views

AZL-42955 CVE-2023-3446 affecting package openssl for versions less than 1.1.1k-28

Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DHcheck, DHcheckex or EVPPKEYparamcheck to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been...

5.3CVSS6.5AI score0.05533EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2023/05/16 8:56 a.m.11 views

kernel: net/mlx5e: IPoIB, Block PKEY interfaces with less rx queues than parent

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: IPoIB, Block PKEY interfaces with less rx queues than parent A user is able to configure an arbitrary number of rx queues when creating an interface via netlink. This doesn't work for child PKEY interfaces because the...

7.8CVSS6.3AI score0.0023EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.4 views

kernel: net/mlx5e: IPoIB, Block PKEY interfaces with less rx queues than parent

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: IPoIB, Block PKEY interfaces with less rx queues than parent A user is able to configure an arbitrary number of rx queues when creating an interface via netlink. This doesn't work for child PKEY interfaces because the...

7.8CVSS6.3AI score0.0023EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/02/13 12:0 a.m.4 views

PT-2023-35068 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.1.7 Description: The issue concerns the net/mlx5e driver in the Linux Kernel, specifically with IPoIB and Block PKEY interfaces having fewer receive queues than their parent interface. This could potentially...

7.3AI score
Exploits0References1
OSV
OSV
added 2023/01/31 3:42 p.m.8 views

GSD-2023-1001698 net/mlx5e: IPoIB, Block PKEY interfaces with less rx queues than parent

net/mlx5e: IPoIB, Block PKEY interfaces with less rx queues than parent This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.7 by commit...

7.2AI score
Exploits0
Positive Technologies
Positive Technologies
added 2023/01/09 12:0 a.m.15 views

PT-2024-11813 · Linux +4 · Linux Kernel +4

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability has been resolved in the Linux kernel, specifically in the net/mlx5e module, related to IPoIB and Block PKEY interfaces with less rx queues than the parent. The issue...

8.8CVSS6.8AI score0.03763EPSS
Exploits31References1967
ATTACKERKB
ATTACKERKB
added 2022/06/15 2:15 p.m.12 views

CVE-2022-20159

In asn1ecpkeyparse of acropora/crypto/asn1common.c, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

4.9CVSS6.7AI score0.00113EPSS
Exploits0References2
OSV
OSV
added 2021/08/24 3:15 p.m.7 views

DEBIAN-CVE-2021-3711

In order to decrypt SM2 encrypted data an application is expected to call the API function EVPPKEYdecrypt. Typically an application will call this function twice. The first time, on entry, the "out" parameter can be NULL and, on exit, the "outlen" parameter is populated with the buffer size...

9.8CVSS7.2AI score0.87816EPSS
Exploits1References1
Kitploit
Kitploit
added 2018/01/09 9:3 p.m.24 views

Anubis - Subdomain Enumeration And Information Gathering Tool

Anubis is a subdomain enumeration and information gathering tool. Anubis collates data from a variety of sources, including HackerTarget, DNSDumpster, x509 certs, VirusTotal, Google, Pkey, and NetCraft. Anubis also has a sister project, AnubisDB, which serves as a centralized repository of...

6.8AI score
Exploits0References3
CNVD
CNVD
added 2017/06/06 12:0 a.m.4 views

WSTMALL Mall System v1.9.2 SQL Injection Vulnerability in pkey Parameter

WSTMall is a multi-commercial O2O open source system developed by Merchant Software based on thinkphp , is a system that can help businesses and individuals to quickly build a community service system . WSTMALL mall system V1.9.2 version of the pkey parameter there is a SQL injection vulnerabilit...

7.8AI score
Exploits0
myhack58
myhack58
added 2014/05/02 12:0 a.m.16 views

Ruby OpenSSL CA private key forgery vulnerability-vulnerability warning-the black bar safety net

The Ruby OpenSSL CA private key forgery vulnerability require ‘rubygems’ require ‘openssl’ require 'digest/md5' key = OpenSSL::PKey::RSA. new2 0 4 8 cipher = OpenSSL::Cipher::AES. new2 5 6, :CBC ctx = OpenSSL::SSL::SSLContext. new puts “Spoof must be in DER format and saved as root. cer” raw =...

1.4AI score
Exploits0
OSV
OSV
added 2013/11/23 6:55 p.m.2 views

UBUNTU-CVE-2013-2561

OpenFabrics ibutils 1.5.7 allows local users to overwrite arbitrary files via a symlink attack on 1 ibdiagnet.db, 2 ibdiagnet.fdbs, 3 ibdiagnetibis.log, 4 ibdiagnet.log, 5 ibdiagnet.lst, 6 ibdiagnet.mcfdbs, 7 ibdiagnet.pkey, 8 ibdiagnet.psl, 9 ibdiagnet.slvl, or 10 ibdiagnet.sm in /tmp/...

6.3CVSS5.9AI score0.00475EPSS
Exploits1References4
Rows per page
Query Builder