CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

20 matches found

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2022-7750

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.0123EPSS

Exploits0References5

OpenVAS•added 2023/06/09 12:0 a.m.•36 views

Debian: Security Advisory (DLA-3449-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.2AI score0.76451EPSS

Exploits0References4

Amazon•added 2023/03/22 12:0 a.m.•6 views

Low: openssl

Issue Overview: If an X.509 certificate contains a malformed policy constraint and policy processing is enabled, then a write lock will be taken twice recursively. On some operating systems most widely: Windows this results in a denial of service when the affected process hangs. Policy processing...

7.5CVSS7AI score0.0123EPSS

Exploits0

SUSE CVE•added 2023/02/15 3:30 a.m.•4 views

SUSE CVE-2022-3996

If an X.509 certificate contains a malformed policy constraint and policy processing is enabled, then a write lock will be taken twice recursively. On some operating systems most widely: Windows this results in a denial of service when the affected process hangs. Policy processing being enabled o...

7.5CVSS6.4AI score0.0123EPSS

Exploits0References4

Veracode•added 2023/01/06 8:19 a.m.•63 views

Improper Locking

openssl is vulnerable to denial of service DoS attacks. When an X.509 certificate contains a malformed policy constraint and policy processing is enabled, then a write lock will be taken twice recursively. On some operating systems this results in a denial of service when the affected process han...

7.5CVSS7.2AI score0.0123EPSS

Exploits0References5Affected Software2

F5 Networks•added 2022/12/15 5:48 p.m.•6 views

K000130024: OpenSSL vulnerability CVE-2022-3996

Security Advisory Description If an X.509 certificate contains a malformed policy constraint and policy processing is enabled, then a write lock will be taken twice recursively. On some operating systems most widely: Windows this results in a denial of service when the affected process hangs...

7.5CVSS6.9AI score0.0123EPSS

Exploits0

Tenable Nessus•added 2022/12/15 12:0 a.m.•74 views

OpenSSL 3.0.0 < 3.0.8 Multiple Vulnerabilities

The version of OpenSSL installed on the remote host is prior to 3.0.8. It is, therefore, affected by a denial of service DoS vulnerability. If an X.509 certificate contains a malformed policy constraint and policy processing is enabled, then a write lock will be taken twice recursively. On some...

7.5CVSS7.7AI score0.59501EPSS

Exploits0References19

RedhatCVE•added 2022/12/14 11:4 a.m.•48 views

CVE-2022-3996

A vulnerability was found in OpenSSL. This security flaw occurs if an X.509 certificate contains a malformed policy constraint and policy processing is enabled, then a write lock will be taken twice recursively. On some operating systems most widely: Windows, this issue results in a denial of...

5.3CVSS1.9AI score0.0123EPSS

Exploits0References3

Github Security Blog•added 2022/12/13 6:30 p.m.•27 views

Denial of service by double-checked locking in openssl-src

7.5CVSS7.4AI score0.0123EPSS

Exploits0References4Affected Software1

OSV•added 2022/12/13 6:30 p.m.•32 views

GHSA-VR8J-HGMM-JH9R Denial of service by double-checked locking in openssl-src

8.7CVSS6.2AI score0.0123EPSS

Exploits0References4

NVD•added 2022/12/13 4:15 p.m.•24 views

CVE-2022-3996

7.5CVSS0.0123EPSS

Exploits0References3

OSV•added 2022/12/13 4:15 p.m.•39 views

CVE-2022-3996

7.5CVSS6.4AI score

Exploits0References3

OSV•added 2022/12/13 4:15 p.m.•5 views

ALPINE-CVE-2022-3996

7.5CVSS6.9AI score0.0123EPSS

Exploits0References1

Prion•added 2022/12/13 4:15 p.m.•57 views

Design/Logic Flaw

5CVSS6.5AI score0.01629EPSS

Exploits0References2Affected Software1

OSV•added 2022/12/13 4:15 p.m.•2 views

UBUNTU-CVE-2022-3996

7.5CVSS5.8AI score0.0123EPSS

Exploits0References4

CVE•added 2022/12/13 3:43 p.m.•587 views

CVE-2022-3996

CVE-2022-3996 describes an OpenSSL policy-contraint processing issue where a malformed certificate policy can trigger a write lock to be taken recursively, enabling DoS for affected processes. The vulnerability is tied to OpenSSL policy checks and the use of policy processing via -policy or X509_...

7.5CVSS6.8AI score0.0123EPSS

Exploits0References3Affected Software1

AlpineLinux•added 2022/12/13 3:43 p.m.•62 views

CVE-2022-3996

7.5CVSS7.1AI score0.0123EPSS

Exploits0

OpenSSL•added 2022/12/13 12:0 a.m.•56 views

Vulnerability in OpenSSL - X.509 Policy Constraints Double Locking

7.5AI score0.01629EPSS

Exploits0Affected Software1

UbuntuCve•added 2022/12/13 12:0 a.m.•59 views

CVE-2022-3996

7.5CVSS7AI score0.0123EPSS

Exploits0References3

Positive Technologies•added 2022/12/13 12:0 a.m.•5 views

PT-2022-25147 · Openssl +3 · Openssl +3

Name of the Vulnerable Software and Affected Versions: OpenSSL affected versions not specified Description: The issue arises when an X.509 certificate contains a malformed policy constraint and policy processing is enabled. This results in a write lock being taken twice recursively, leading to a...

8.7CVSS6.4AI score0.91153EPSS

Exploits2References44

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by