Lucene search
K

320 matches found

AlpineLinux
AlpineLinux
added 2026/01/20 8:41 p.m.4 views

CVE-2026-21637

A flaw in Node.js TLS error handling allows remote attackers to crash or exhaust resources of a TLS server when pskCallback or ALPNCallback are in use. Synchronous exceptions thrown during these callbacks bypass standard TLS error handling paths tlsClientError and error, causing either immediate...

7.5CVSS6.6AI score0.01056EPSS
Exploits0References1
Snyk
Snyk
added 2026/01/13 9:36 a.m.6 views

Uncaught Exception

Overview Affected versions of this package are vulnerable to Uncaught Exception in the TLS module when a TLS server is configured with pskCallback or ALPNCallback. A remote attacker can crash or exhaust resources of a TLS server by sending input that causes the callback to throw an error...

8.2CVSS6.8AI score0.01056EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2025/11/25 1:2 a.m.13 views

Timing Side-Channel in PSK Binder Verification

...

4.3CVSS7AI score0.0024EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/11/22 11:12 p.m.6 views

CVE-2025-11932

The server previously verified the TLS 1.3 PSK binder using a non-constant time method which could potentially leak information about the PSK binder...

4.3CVSS6.6AI score0.0024EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/22 10:31 p.m.7 views

CVE-2025-11935

With TLS 1.3 pre-shared key PSK a malicious or faulty server could ignore the request for PFS perfect forward secrecy and the client would continue on with the connection using PSK without PFS. This happened when a server responded to a ClientHello containing pskdheke without a keyshare extension...

7.5CVSS6.7AI score0.00199EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/22 12:31 a.m.5 views

EUVD-2025-198529

With TLS 1.3 pre-shared key PSK a malicious or faulty server could ignore the request for PFS perfect forward secrecy and the client would continue on with the connection using PSK without PFS. This happened when a server responded to a ClientHello containing pskdheke without a keyshare...

6.3CVSS6.2AI score0.00199EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/11/22 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2025-11935

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - With TLS 1.3 pre-shared key PSK a malicious or faulty server could ignore the request for PFS perfect forward secrecy and the client would continue on with the...

7.5CVSS5.8AI score0.00199EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/11/22 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-11932

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The server previously verified the TLS 1.3 PSK binder using a non-constant time method which could potentially leak information about the PSK binder...

4.3CVSS5.8AI score0.0024EPSS
Exploits0References3
NVD
NVD
added 2025/11/21 11:15 p.m.9 views

CVE-2025-11932

The server previously verified the TLS 1.3 PSK binder using a non-constant time method which could potentially leak information about the PSK binder...

4.3CVSS0.0024EPSS
Exploits0References1
OSV
OSV
added 2025/11/21 11:15 p.m.4 views

UBUNTU-CVE-2025-11932

The server previously verified the TLS 1.3 PSK binder using a non-constant time method which could potentially leak information about the PSK binder...

4.3CVSS5.8AI score0.0024EPSS
Exploits0References3
CVE
CVE
added 2025/11/21 11:1 p.m.576 views

CVE-2025-11932

CVE-2025-11932 describes a timing side-channel in TLS 1.3 PSK binder verification, where a non-constant-time check could leak information about the PSK binder. The connected Nessus/OSV/DEBIAN listings corroborate a vulnerability in wolfSSL-related TLS/PSK processing and reference a changelog noti...

4.3CVSS6.2AI score0.0024EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/11/21 11:1 p.m.11 views

CVE-2025-11932 Timing Side-Channel in PSK Binder Verification

The server previously verified the TLS 1.3 PSK binder using a non-constant time method which could potentially leak information about the PSK binder...

2.3CVSS0.0024EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/21 11:1 p.m.4 views

EUVD-2025-198521

The server previously verified the TLS 1.3 PSK binder using a non-constant time method which could potentially leak information about the PSK binder...

2.3CVSS6.1AI score0.0024EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2025/11/21 11:1 p.m.7 views

CVE-2025-11932

The server previously verified the TLS 1.3 PSK binder using a non-constant time method which could potentially leak information about the PSK binder...

4.3CVSS5.2AI score0.0024EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2025/11/21 11:1 p.m.5 views

CVE-2025-11932

The server previously verified the TLS 1.3 PSK binder using a non-constant time method which could potentially leak information about the PSK binder...

4.3CVSS6.6AI score0.0024EPSS
Exploits0
OSV
OSV
added 2025/11/21 10:16 p.m.4 views

CVE-2025-11935

With TLS 1.3 pre-shared key PSK a malicious or faulty server could ignore the request for PFS perfect forward secrecy and the client would continue on with the connection using PSK without PFS. This happened when a server responded to a ClientHello containing pskdheke without a keyshare...

7.5CVSS6.6AI score
Exploits0References2
NVD
NVD
added 2025/11/21 10:16 p.m.5 views

CVE-2025-11935

With TLS 1.3 pre-shared key PSK a malicious or faulty server could ignore the request for PFS perfect forward secrecy and the client would continue on with the connection using PSK without PFS. This happened when a server responded to a ClientHello containing pskdheke without a keyshare...

7.5CVSS0.00199EPSS
Exploits0References2
OSV
OSV
added 2025/11/21 10:16 p.m.3 views

DEBIAN-CVE-2025-11935

With TLS 1.3 pre-shared key PSK a malicious or faulty server could ignore the request for PFS perfect forward secrecy and the client would continue on with the connection using PSK without PFS. This happened when a server responded to a ClientHello containing pskdheke without a keyshare...

7.5CVSS5.4AI score0.00199EPSS
Exploits0References1
OSV
OSV
added 2025/11/21 10:16 p.m.2 views

UBUNTU-CVE-2025-11935

With TLS 1.3 pre-shared key PSK a malicious or faulty server could ignore the request for PFS perfect forward secrecy and the client would continue on with the connection using PSK without PFS. This happened when a server responded to a ClientHello containing pskdheke without a keyshare...

7.5CVSS5.8AI score0.00199EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/11/21 10:4 p.m.11 views

CVE-2025-11935 Forward Secrecy Violation in WolfSSL TLS 1.3

With TLS 1.3 pre-shared key PSK a malicious or faulty server could ignore the request for PFS perfect forward secrecy and the client would continue on with the connection using PSK without PFS. This happened when a server responded to a ClientHello containing pskdheke without a keyshare...

6.3CVSS0.00199EPSS
Exploits0References2
Rows per page
Query Builder