Lucene search
+L

28 matches found

CNNVD
CNNVD
added 2021/03/12 12:0 a.m.5 views

XMLDOM 安全漏洞

XMLDOM is a JavaScript implementation of the W3C DOM for Node by the individual developers at jindw. A security vulnerability exists in XMLDOM 0.4.0 and earlier versions that stems from not properly preserving system identifiers, fis, or namespaces...

4.3CVSS5.7AI score0.01328EPSS
Exploits0References10
Veracode
Veracode
added 2021/03/10 7:22 a.m.109 views

XML Injection

xmldom is vulnerable to XML injection. Repeated parsing and serializing of malicious documents can result in incorrect preservation of system identifiers, FPIs or namespaces...

4.3CVSS5.5AI score0.01328EPSS
Exploits0References7Affected Software2
RedHat Linux
RedHat Linux
added 2012/02/15 4:1 p.m.6 views

openssl: malformed RFC 3779 data can cause assertion failures

OpenSSL before 0.9.8s and 1.x before 1.0.0f, when RFC 3779 support is enabled, allows remote attackers to cause a denial of service assertion failure via an X.509 certificate containing certificate-extension data associated with 1 IP address blocks or 2 Autonomous System AS identifiers...

4.3CVSS7.3AI score0.09331EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2012/01/24 9:0 p.m.4 views

openssl: malformed RFC 3779 data can cause assertion failures

OpenSSL before 0.9.8s and 1.x before 1.0.0f, when RFC 3779 support is enabled, allows remote attackers to cause a denial of service assertion failure via an X.509 certificate containing certificate-extension data associated with 1 IP address blocks or 2 Autonomous System AS identifiers...

4.3CVSS7.3AI score0.09331EPSS
Exploits0References4
Prion
Prion
added 2012/01/06 1:55 a.m.24 views

Design/Logic Flaw

OpenSSL before 0.9.8s and 1.x before 1.0.0f, when RFC 3779 support is enabled, allows remote attackers to cause a denial of service assertion failure via an X.509 certificate containing certificate-extension data associated with 1 IP address blocks or 2 Autonomous System AS identifiers...

4.3CVSS6.9AI score0.09331EPSS
Exploits0References12Affected Software1
OSV
OSV
added 2012/01/06 1:55 a.m.7 views

CVE-2011-4577

OpenSSL before 0.9.8s and 1.x before 1.0.0f, when RFC 3779 support is enabled, allows remote attackers to cause a denial of service assertion failure via an X.509 certificate containing certificate-extension data associated with 1 IP address blocks or 2 Autonomous System AS identifiers...

7.7AI score
Exploits0References12
OSV
OSV
added 2012/01/06 1:55 a.m.4 views

DEBIAN-CVE-2011-4577

OpenSSL before 0.9.8s and 1.x before 1.0.0f, when RFC 3779 support is enabled, allows remote attackers to cause a denial of service assertion failure via an X.509 certificate containing certificate-extension data associated with 1 IP address blocks or 2 Autonomous System AS identifiers...

4.3CVSS9.2AI score0.09331EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2012/01/06 1:0 a.m.35 views

CVE-2011-4577

OpenSSL before 0.9.8s and 1.x before 1.0.0f, when RFC 3779 support is enabled, allows remote attackers to cause a denial of service assertion failure via an X.509 certificate containing certificate-extension data associated with 1 IP address blocks or 2 Autonomous System AS identifiers...

4.3CVSS8.1AI score0.09331EPSS
Exploits0
Rows per page
Query Builder