Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Oracle linux
Oracle linuxadded 2026/01/13 12:0 a.m.5 views

openssl security update

1:1.1.1k-14 - Backport fix for Out-of-bounds read & write in RFC 3211 KEK Unwrap Fix CVE-2025-9230 Resolves: RHEL-128613 - Fix bug for ticketlifetimehint exceed issue Resolves: RHEL-119891 1:1.1.1k-13 - Backport fix SSLselectnext proto from OpenSSL 3.2 Fix CVE-2024-5535 Resolves: RHEL-45654...

7.5CVSS7.1AI score0.06702EPSS
Exploits1
Tenable Nessus
Tenable Nessusadded 2025/11/09 12:0 a.m.1 views

Fedora 42 : bpfman (2025-0753bddd6c)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-0753bddd6c advisory. This update fixes CVE-2025-0977 RUSTSEC-2025-0004, a use-after-free vulnerability in the Rust openssl crate's ssl::selectnextproto function. The openssl crat...

5.4AI score
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/10/06 12:0 a.m.2 views

RockyLinux 9 : bootc (RLSA-2025:7160)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:7160 advisory. rust-openssl: rust openssl ssl::selectnextproto use after free CVE-2025-24898 Tenable has extracted the preceding description block directly from the RockyLinux...

6.3CVSS5.3AI score0.00116EPSS
Exploits0References3
Github Security Blog
Github Security Blogadded 2025/02/03 5:56 p.m.19 views

rust-openssl ssl::select_next_proto use after free

Impact ssl::selectnextproto can return a slice pointing into the server argument's buffer but with a lifetime bound to the client argument. In situations where the server buffer's lifetime is shorter than the client buffer's, this can cause a use after free. This could cause the server to crash o...

6.3CVSS6.7AI score0.00116EPSS
Exploits0References8Affected Software1
OSV
OSVadded 2025/02/03 5:56 p.m.6 views

GHSA-RPMJ-RPGJ-QMPM rust-openssl ssl::select_next_proto use after free

Impact ssl::selectnextproto can return a slice pointing into the server argument's buffer but with a lifetime bound to the client argument. In situations where the server buffer's lifetime is shorter than the client buffer's, this can cause a use after free. This could cause the server to crash o...

6.3CVSS5.2AI score0.00116EPSS
Exploits0References8
CNNVD
CNNVDadded 2024/06/27 12:0 a.m.1 views

OpenSSL Security Vulnerabilities

OpenSSL is an open source general-purpose cryptographic library capable of implementing the Secure Sockets Layer SSLv2/v3 and Secure Transport Layer TLSv1 protocols from the OpenSSL team. It supports a variety of cryptographic algorithms, including symmetric ciphers, hashing algorithms, secure...

9.1CVSS6.9AI score0.06702EPSS
Exploits1References19
Positive Technologies
Positive Technologiesadded 2024/05/02 12:0 a.m.11 views

PT-2024-6083

Name of the Vulnerable Software and Affected Versions OpenSSL versions prior to the next release exact version not specified CPython version 3.9 and earlier Description The issue is related to the OpenSSL API function SSL select next proto which can cause a crash or memory contents to be sent to...

9.4CVSS8AI score0.91736EPSS
Exploits5References340
Rows per page
Query Builder