Lucene search
K

15 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

MiracleLinux 4 : libgcrypt-1.4.5-11.AXS4 (AXSA:2014-002:01)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2014-002:01 advisory. Libgcrypt is a general purpose crypto library based on the code used in GNU Privacy Guard. This is a development version. Security issues fixed with this...

1.9CVSS5.9AI score0.00533EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2013-4146

Malware in sbrugna...

1.9CVSS5.3AI score0.00533EPSS
Exploits0References25
SUSE CVE
SUSE CVE
added 2023/02/15 5:50 a.m.5 views

SUSE CVE-2011-4121

The OpenSSL extension of Ruby Git trunk versions after 2011-09-01 up to 2011-11-03 always generated an exponent value of '1' to be used for private RSA key generation. A remote attacker could use this flaw to bypass or corrupt integrity of services, depending on strong private RSA keys generation...

9.8CVSS7AI score0.02529EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2020/09/25 7:0 a.m.5 views

The RSA-CRT implementation in the Cavium Software Development Kit (SDK) 2.x when used on OCTEON II CN6xxx Hardware on Linux to support TLS with Perfect Forward Secrecy (PFS) makes it easier for remote attackers to obtain private RSA keys by conducting a Lenstra side-channel attack.

...

7.5CVSS7AI score0.02425EPSS
Exploits0
Kitploit
Kitploit
added 2019/05/19 9:54 p.m.107 views

Scavenger - Crawler Searching For Credential Leaks On Different Paste Sites

Just the code of my OSINT bot searching for sensitive data leaks on different paste sites. Search terms: credentials private RSA keys Wordpress configuration files MySQL connect strings onion links links to files hosted inside the onion network PDF, DOC, DOCX, XLS, XLSX Keep in mind: 1. This bot ...

7.2AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2018/06/27 12:0 a.m.57 views

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : OpenSSL vulnerabilities (USN-3692-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3692-1 advisory. Keegan Ryan discovered that OpenSSL incorrectly handled ECDSA key generation. An attacker could possibly use this issue to perfor...

7.5CVSS6.5AI score0.49268EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2018/06/27 12:0 a.m.34 views

Ubuntu: Security Advisory (USN-3692-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.2AI score0.49268EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2018/06/26 2:6 p.m.91 views

USN-3692-2: OpenSSL vulnerabilities

USN-3692-1 fixed a vulnerability in OpenSSL. This update provides the corresponding update for Ubuntu 12.04 ESM. Original advisory details: Keegan Ryan discovered that OpenSSL incorrectly handled ECDSA key generation. An attacker could possibly use this issue to perform a cache-timing attack and...

7.5CVSS6.6AI score0.49268EPSS
Exploits1
Broadcom
Broadcom
added 2017/11/17 12:0 a.m.7 views

BSA-2017-457

Security Advisory ID : BSA-2017-457 Component : GnuPG & Libgcrypt Revision : 2.0: Final GnuPG before 1.4.14, and Libgcrypt before 1.5.3 as used in GnuPG 2.0.x and possibly other products, allows local users to obtain private RSA keys via a cache side-channel attack involving the L3 cache, aka...

1.9CVSS6.6AI score0.00533EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2016/07/26 5:59 p.m.36 views

CVE-2015-5738

The RSA-CRT implementation in the Cavium Software Development Kit SDK 2.x, when used on OCTEON II CN6xxx Hardware on Linux to support TLS with Perfect Forward Secrecy PFS, makes it easier for remote attackers to obtain private RSA keys by conducting a Lenstra side-channel attack...

7.5CVSS6.5AI score0.02425EPSS
Exploits0References1
Prion
Prion
added 2016/01/27 8:59 p.m.23 views

Code injection

The Int.Exp Montgomery code in the math/big library in Go 1.5.x before 1.5.3 mishandles carry propagation and produces incorrect output, which makes it easier for attackers to obtain private RSA keys via unspecified vectors...

5CVSS6.9AI score0.02627EPSS
Exploits0References9Affected Software2
Cvelist
Cvelist
added 2016/01/27 8:0 p.m.24 views

CVE-2015-8618

The Int.Exp Montgomery code in the math/big library in Go 1.5.x before 1.5.3 mishandles carry propagation and produces incorrect output, which makes it easier for attackers to obtain private RSA keys via unspecified vectors...

7.3AI score0.02627EPSS
Exploits0References9
CVE
CVE
added 2016/01/27 8:0 p.m.65 views

CVE-2015-8618

The CVE-2015-8618 issue affects Go 1.5.x before 1.5.3, where the Int.Exp Montgomery code in math/big mishandles carry propagation, producing incorrect output and enabling an attacker to potentially obtain a private RSA key via unspecified vectors. The vulnerability is addressed by upgrading to Go...

7.5CVSS7.2AI score0.02627EPSS
Exploits0References9Affected Software1
RedHat Linux
RedHat Linux
added 2013/10/24 3:18 p.m.2 views

GnuPG susceptible to Yarom/Falkner flush+reload cache side-channel attack

GnuPG before 1.4.14, and Libgcrypt before 1.5.3 as used in GnuPG 2.0.x and possibly other products, allows local users to obtain private RSA keys via a cache side-channel attack involving the L3 cache, aka Flush+Reload...

1.9CVSS5.8AI score0.00533EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2013/10/24 3:16 p.m.2 views

GnuPG susceptible to Yarom/Falkner flush+reload cache side-channel attack

GnuPG before 1.4.14, and Libgcrypt before 1.5.3 as used in GnuPG 2.0.x and possibly other products, allows local users to obtain private RSA keys via a cache side-channel attack involving the L3 cache, aka Flush+Reload...

1.9CVSS5.8AI score0.00533EPSS
Exploits0References5
Rows per page
Query Builder