CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

Tenable Nessus•added 2026/01/27 12:0 a.m.•7 views

Oracle Linux 9 : curl (ELSA-2026-1350)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-1350 advisory. 7.76.1-35.el97.3 - http: fix crash in rate-limited upload RHEL-129493 7.76.1-35.el97.2 - openssl: respect system crypto policy for TLS max version RHEL-128921...

7.5CVSS6AI score0.01301EPSS

Exploits1References2

Cvelist•added 2025/12/16 2:21 p.m.•26 views

CVE-2025-68243 NFS: Check the TLS certificate fields in nfs_match_client()

In the Linux kernel, the following vulnerability has been resolved: NFS: Check the TLS certificate fields in nfsmatchclient If the TLS security policy is of type RPCXPRTSECTLSX509, then the certserial and privkeyserial fields need to match as well since they define the client's identity, as...

0.00096EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2016-3923

Malware in sbrugna...

7.5CVSS7.4AI score0.02118EPSS

Exploits0References6

Tenable Nessus•added 2017/01/12 12:0 a.m.•36 views

GLSA-201701-23 : Botan: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201701-23 Botan: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Botan. Please review the CVE identifiers referenced below for details. Impact : A remote attacker might obtain ECDSA secret keys via a timi...

7.5CVSS7.6AI score0.02463EPSS

Exploits0References3

OSV•added 2016/05/13 2:59 p.m.•5 views

CVE-2016-2850

Botan 1.11.x before 1.11.29 does not enforce TLS policy for 1 signature algorithms and 2 ECC curves, which allows remote attackers to conduct downgrade attacks via unspecified vectors...

7.5CVSS6.8AI score

Exploits0References4

UbuntuCve•added 2016/05/13 2:59 p.m.•23 views

CVE-2016-2850

Botan 1.11.x before 1.11.29 does not enforce TLS policy for 1 signature algorithms and 2 ECC curves, which allows remote attackers to conduct downgrade attacks via unspecified vectors...

7.5CVSS7.1AI score0.02118EPSS

Exploits0References1

Prion•added 2016/05/13 2:59 p.m.•15 views

Code injection

Botan 1.11.x before 1.11.29 does not enforce TLS policy for 1 signature algorithms and 2 ECC curves, which allows remote attackers to conduct downgrade attacks via unspecified vectors...

5CVSS7.1AI score0.02118EPSS

Exploits0References4Affected Software2

Cvelist•added 2016/05/13 2:0 p.m.•28 views

CVE-2016-2850

Botan 1.11.x before 1.11.29 does not enforce TLS policy for 1 signature algorithms and 2 ECC curves, which allows remote attackers to conduct downgrade attacks via unspecified vectors...

7.4AI score0.02118EPSS

Exploits0References4

CVE•added 2016/05/13 2:0 p.m.•54 views

CVE-2016-2850

CVE-2016-2850 affects Botan 1.11.x prior to 1.11.29. The vulnerability arises from Botan not enforcing TLS policy for (1) signature algorithms and (2) ECC curves, enabling remote attackers to perform downgrade attacks via unspecified vectors. The issue may allow attackers to bypass TLS policy and...

7.5CVSS7.3AI score0.02118EPSS

Exploits0References4Affected Software1