Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

19 matches found

OSV
OSVadded 2024/03/06 11:8 a.m.40 views

BIT-NODE-2020-1971 EDIPARTYNAME NULL pointer dereference

The X.509 GeneralName type is a generic type for representing different types of names. One of those name types is known as EDIPartyName. OpenSSL provides a function GENERALNAMEcmp which compares different instances of a GENERALNAME to see if they are equal or not. This function behaves incorrect...

5.9CVSS5.6AI score0.00348EPSS
Exploits3References27
Tenable Nessus
Tenable Nessusadded 2021/10/27 12:0 a.m.50 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : openssl Vulnerability (NS-SA-2021-0158)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has openssl packages installed that are affected by a vulnerability: - The X.509 GeneralName type is a generic type for representing different types of names. One of those name types is known as EDIPartyName. OpenSSL provides a...

5.9CVSS7.1AI score0.00348EPSS
Exploits3References3
Tenable Nessus
Tenable Nessusadded 2021/08/24 12:0 a.m.37 views

F5 Networks BIG-IP : OpenSSL vulnerability (K42910051)

The version of F5 Networks BIG-IP installed on the remote host is prior to 14.1.4.4 / 15.1.4.1 / 16.1.2. It is, therefore, affected by a vulnerability as referenced in the K42910051 advisory. The X.509 GeneralName type is a generic type for representing different types of names. One of those name...

5.9CVSS7.1AI score0.00348EPSS
Exploits3References2
Tenable Nessus
Tenable Nessusadded 2021/03/10 12:0 a.m.199 views

NewStart CGSL MAIN 6.02 : openssl Multiple Vulnerabilities (NS-SA-2021-0086)

The remote NewStart CGSL host, running version MAIN 6.02, has openssl packages installed that are affected by multiple vulnerabilities: - There is an overflow bug in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggest...

5.9CVSS6.8AI score0.02801EPSS
Exploits3References3
Tenable Nessus
Tenable Nessusadded 2021/03/10 12:0 a.m.380 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : openssl Vulnerability (NS-SA-2021-0020)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has openssl packages installed that are affected by a vulnerability: - The X.509 GeneralName type is a generic type for representing different types of names. One of those name types is known as EDIPartyName. OpenSSL provides a...

5.9CVSS7.1AI score0.00348EPSS
Exploits3References2
Tenable Nessus
Tenable Nessusadded 2021/03/04 12:0 a.m.118 views

EulerOS Virtualization for ARM 64 3.0.6.0 : openssl (EulerOS-SA-2021-1549)

According to the version of the openssl packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - The X.509 GeneralName type is a generic type for representing different types of names. One of those name types is known...

5.9CVSS6.9AI score0.00348EPSS
Exploits3References2
Tenable Nessus
Tenable Nessusadded 2021/03/04 12:0 a.m.132 views

EulerOS Virtualization 3.0.6.6 : openssl (EulerOS-SA-2021-1505)

According to the version of the openssl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - The X.509 GeneralName type is a generic type for representing different types of names. One of those name types is known as...

5.9CVSS6.9AI score0.00348EPSS
Exploits3References2
Tenable Nessus
Tenable Nessusadded 2021/02/22 12:0 a.m.353 views

EulerOS 2.0 SP2 : openssl (EulerOS-SA-2021-1338)

According to the version of the openssl packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The X.509 GeneralName type is a generic type for representing different types of names. One of those name types is known as EDIPartyName. OpenSSL...

5.9CVSS7AI score0.00348EPSS
Exploits3References2
Tenable Nessus
Tenable Nessusadded 2021/01/04 12:0 a.m.300 views

EulerOS 2.0 SP9 : openssl (EulerOS-SA-2021-1014)

According to the version of the openssl packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The X.509 GeneralName type is a generic type for representing different types of names. One of those name types is known as EDIPartyName. OpenSSL...

5.9CVSS7AI score0.00348EPSS
Exploits3References2
Mageia
Mageiaadded 2020/12/21 9:47 p.m.104 views

Updated compat-openssl10 packages fix security vulnerabilities

The Raccoon attack exploits a flaw in the TLS specification which can lead to an attacker being able to compute the pre-master secret in connections which have used a Diffie-Hellman DH based ciphersuite. In such a case this would result in the attacker being able to eavesdrop on all encrypted...

5.9CVSS6.3AI score0.01042EPSS
Exploits3References6
Tenable Nessus
Tenable Nessusadded 2020/12/17 12:0 a.m.152 views

Oracle Linux 7 : ELSA-2020-5566-1: / openssl (ELSA-2020-55661)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-55661 advisory. 1.0.2k-21 - remove ASN1FASN1ITEMEMBEDD2I from openssl-1.0.2k-cve-2020-1971.patch 1.0.2k-20 - fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference...

5.9CVSS7AI score0.00348EPSS
Exploits3References2
Tenable Nessus
Tenable Nessusadded 2020/12/10 12:0 a.m.101 views

OpenSSL 1.0.2 < 1.0.2x Vulnerability

The version of OpenSSL installed on the remote host is prior to 1.0.2x. It is, therefore, affected by a vulnerability as referenced in the 1.0.2x advisory. - The X.509 GeneralName type is a generic type for representing different types of names. One of those name types is known as EDIPartyName...

5.9CVSS7.1AI score0.00348EPSS
Exploits3References4
GithubExploit
GithubExploitadded 2020/12/09 9:32 p.m.2327 views

Exploit for NULL Pointer Dereference in Openssl

CVE-2020-1971 CVE-2020-1971 Auto Scan & Remote Exploit Scr...

5.9CVSS7.3AI score0.00348EPSS
Exploits3
Tenable Nessus
Tenable Nessusadded 2020/12/09 12:0 a.m.113 views

Amazon Linux 2 : openssl, openssl11 (ALAS-2020-1573)

The version of openssl installed on the remote host is prior to 1.0.2k-19. The version of openssl11 installed on the remote host is prior to 1.1.1c-15. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2020-1573 advisory. A null pointer dereference flaw was found in openssl...

5.9CVSS6.9AI score0.00348EPSS
Exploits3References3
Prion
Prionadded 2020/12/08 4:15 p.m.42 views

Null pointer dereference

The X.509 GeneralName type is a generic type for representing different types of names. One of those name types is known as EDIPartyName. OpenSSL provides a function GENERALNAMEcmp which compares different instances of a GENERALNAME to see if they are equal or not. This function behaves incorrect...

4.3CVSS5.8AI score0.00348EPSS
Exploits3References25Affected Software29
AlpineLinux
AlpineLinuxadded 2020/12/08 3:30 p.m.639 views

CVE-2020-1971

The X.509 GeneralName type is a generic type for representing different types of names. One of those name types is known as EDIPartyName. OpenSSL provides a function GENERALNAMEcmp which compares different instances of a GENERALNAME to see if they are equal or not. This function behaves incorrect...

5.9CVSS6.5AI score0.00348EPSS
Exploits3
OpenVAS
OpenVASadded 2020/04/22 12:0 a.m.25 views

OpenSSL: EDIPARTYNAME NULL Pointer De-reference Vulnerability (CVE-2020-1971) - Linux

OpenSSL is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:openssl:openssl";...

5.9CVSS6.2AI score0.00348EPSS
Exploits3References1
Exploit DB
Exploit DBadded 2015/10/02 12:0 a.m.30 views

Avast! AntiVirus - X.509 Error Rendering Command Execution

Source: https://code.google.com/p/google-security-research/issues/detail?id=546 Avast will render the commonName of X.509 certificates into an HTMLLayout frame when your MITM proxy detects a bad signature. Unbelievably, this means CN="really?!?!?" actually works, and is pretty simple to convert...

7AI score
Exploits0
Exploit DB
Exploit DBadded 2011/06/08 12:0 a.m.29 views

Linux/x86-32 - ConnectBack with SSL connection - 422 bytes

Linux/x86-32 - ConnectBack with SSL connection - 422 bytes. Shellcode exploit for linux platform / Title: Linux/x86-32 - ConnectBack with SSL connection - 422 bytes Date: 2011-06-08 Tested on: ArchLinux i686 Author: Jonathan Salwan - twitter: @jonathansalwan http://shell-storm.org Configurations...

Exploits0
Rows per page
Query Builder