Lucene search
K

719 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:3 a.m.8 views

CVE-2011-0910

The cookie implementation in Vanilla Forums before 2.0.17.6 makes it easier for remote attackers to spoof signed requests, and consequently obtain access to arbitrary user accounts, via HMAC timing attacks...

6.4CVSS7.1AI score0.01047EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.4 views

PT-2026-26340

Name of the Vulnerable Software and Affected Versions wolfSSL version 5.8.4 Description The software contains a flaw in the constant-time masking logic within the sp 256 get entry 256 9 function. When compiled with GCC targeting RISC-V RV32I using the -O3 optimization flag, the logic is altered...

4.7CVSS5.1AI score0.00128EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.12 views

PT-2026-27729

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the kernel’s ksmbd component related to Message Authentication Code MAC comparisons. The issue stems from the use of memcmp for MAC comparisons, which is susceptible to...

7.4CVSS5.9AI score0.00392EPSS
Exploits0References30
Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2013-10031

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Plack-Middleware-Session versions before 0.17 may be vulnerable to HMAC comparison timing attacks CVE-2013-10031 Note that Nessus relies on the presence of the...

7.5CVSS5.5AI score0.00255EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.4 views

PT-2025-49686

Plack-Middleware-Session versions before 0.17 may be vulnerable to HMAC comparison timing attacks...

6.8AI score0.00255EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/11/25 6:17 p.m.5 views

kernel: ipv6: sr: Fix MAC comparison to be constant-time

In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: Fix MAC comparison to be constant-time To prevent timing attacks, MACs need to be compared in constant time. Use the appropriate helper function for this...

7CVSS5.6AI score0.00149EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/25 5:26 p.m.4 views

kernel: ipv6: sr: Fix MAC comparison to be constant-time

In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: Fix MAC comparison to be constant-time To prevent timing attacks, MACs need to be compared in constant time. Use the appropriate helper function for this...

7CVSS5.6AI score0.00149EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/19 12:47 p.m.5 views

kernel: ipv6: sr: Fix MAC comparison to be constant-time

In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: Fix MAC comparison to be constant-time To prevent timing attacks, MACs need to be compared in constant time. Use the appropriate helper function for this...

7CVSS5.6AI score0.00149EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2025/11/14 9:3 a.m.5 views

sctp: Fix MAC comparison to be constant-time

...

7.1CVSS7AI score0.00175EPSS
Exploits0
EUVD
EUVD
added 2025/11/13 12:30 a.m.9 views

EUVD-2025-150370

In the Linux kernel, the following vulnerability has been resolved: sctp: Fix MAC comparison to be constant-time To prevent timing attacks, MACs need to be compared in constant time. Use the appropriate helper function for this...

5.7AI score0.00175EPSS
Exploits0References9
NVD
NVD
added 2025/11/12 10:15 p.m.5 views

CVE-2025-40204

In the Linux kernel, the following vulnerability has been resolved: sctp: Fix MAC comparison to be constant-time To prevent timing attacks, MACs need to be compared in constant time. Use the appropriate helper function for this...

0.00175EPSS
Exploits0References8
OSV
OSV
added 2025/11/12 10:15 p.m.2 views

UBUNTU-CVE-2025-40204

In the Linux kernel, the following vulnerability has been resolved: sctp: Fix MAC comparison to be constant-time To prevent timing attacks, MACs need to be compared in constant time. Use the appropriate helper function for this...

5.7AI score0.00175EPSS
Exploits0References40
Cvelist
Cvelist
added 2025/11/12 9:56 p.m.6 views

CVE-2025-40204 sctp: Fix MAC comparison to be constant-time

In the Linux kernel, the following vulnerability has been resolved: sctp: Fix MAC comparison to be constant-time To prevent timing attacks, MACs need to be compared in constant time. Use the appropriate helper function for this...

0.00175EPSS
Exploits0References8
CVE
CVE
added 2025/11/12 9:56 p.m.29 views

CVE-2025-40204

Based on the provided Connected documents, CVE-2025-40204 affects the Linux kernel (SCTP) and is fixed by making MAC comparisons constant-time to prevent timing attacks. The SUSE-related Nessus advisories (SUSE-SU-2026:0274-1, SUSE-SU-2026:0284-1, SUSE-SU-2026:0262-1, SUSE-SU-2026:0270-1, etc.) l...

5.8AI score0.00175EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2025/11/12 3:8 p.m.6 views

kernel: ipv6: sr: Fix MAC comparison to be constant-time

In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: Fix MAC comparison to be constant-time To prevent timing attacks, MACs need to be compared in constant time. Use the appropriate helper function for this...

7CVSS5.6AI score0.00149EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/12 11:50 a.m.5 views

kernel: ipv6: sr: Fix MAC comparison to be constant-time

In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: Fix MAC comparison to be constant-time To prevent timing attacks, MACs need to be compared in constant time. Use the appropriate helper function for this...

7CVSS5.6AI score0.00149EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/12 8:15 a.m.6 views

kernel: ipv6: sr: Fix MAC comparison to be constant-time

In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: Fix MAC comparison to be constant-time To prevent timing attacks, MACs need to be compared in constant time. Use the appropriate helper function for this...

7CVSS5.6AI score0.00149EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2025/11/09 12:24 a.m.5 views

SUSE CVE-2025-54499

Mattermost versions 10.5.x = 10.5.10, 10.11.x = 10.11.2 fail to use constant-time comparison for sensitive string comparisons which allows attackers to exploit timing oracles to perform byte-by-byte brute force attacks via response time analysis on Cloud API keys and OAuth client secrets...

3.7CVSS6.9AI score0.00246EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/11/03 3:14 a.m.6 views

kernel: ipv6: sr: Fix MAC comparison to be constant-time

In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: Fix MAC comparison to be constant-time To prevent timing attacks, MACs need to be compared in constant time. Use the appropriate helper function for this...

7CVSS5.6AI score0.00149EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/10/27 12:0 a.m.6 views

Siemens RUGGEDCOM ROS Devices Use of a Broken or Risky Cryptographic Algorithm (CVE-2025-41223)

The affected devices support the TLSECDHEECDSAWITHAES128CBCSHA256 cipher suite, which uses CBC Cipher Block Chaining mode that is known to be vulnerable to timing attacks. This could allow an attacker to compromise the integrity and confidentiality of encrypted communications. This plugin only...

8.8CVSS5.4AI score0.00285EPSS
Exploits0References4
Rows per page
Query Builder