Lucene search
K

15 matches found

Snyk
Snyk
added 2026/04/09 11:8 p.m.6 views

Integer Underflow (Wrap or Wraparound)

Overview Affected versions of this package are vulnerable to Integer Underflow Wrap or Wraparound via the sslDecodePacket process. An attacker can cause a program crash and trigger a large out-of-bounds read by injecting a malformed TLS Application Data record that is shorter than the required...

6.5CVSS5.8AI score0.00225EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.12 views

Azure Linux 3.0 Security Update: mariadb (CVE-2023-6937)

The version of mariadb installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-6937 advisory. - wolfSSL prior to 5.6.6 did not check that messages in one DTLS record do not span key boundaries. As a resul...

5.3CVSS5.7AI score0.00513EPSS
Exploits0References2
Prion
Prion
added 2024/02/15 6:15 p.m.17 views

Authentication flaw

wolfSSL prior to 5.6.6 did not check that messages in one DTLS record do not span key boundaries. As a result, it was possible to combine DTLS messages using different keys into one DTLS record. The most extreme edge case is that, in DTLS 1.3, it was possible that an unencrypted DTLS 1.3 record...

5CVSS7.4AI score0.00513EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2024/02/15 5:21 p.m.27 views

CVE-2023-6937

wolfSSL prior to 5.6.6 did not check that messages in one DTLS record do not span key boundaries. As a result, it was possible to combine DTLS messages using different keys into one DTLS record. The most extreme edge case is that, in DTLS 1.3, it was possible that an unencrypted DTLS 1.3 record...

5.3CVSS5.2AI score0.00513EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 4:54 a.m.48 views

Security Bulletin: Vulnerabilities in RequisitePro GSKit Component (CVE-2014-0963)

Summary A vulnerability in IBM Rational RequisitePro in relation to TLS Record Processing has been discovered related to TLS 1.0 and later which can result in high CPU utilization that requires a system reboot to resolve. Vulnerability Details | Subscribe to My Notifications to be notified of...

7.1CVSS0.5AI score0.03077EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/08/11 12:0 a.m.74 views

IBM Tivoli Storage Manager Server 6.1.x Multiple Vulnerabilities

The version of IBM Tivoli Storage Manager installed on the remote host is 6.1 running on Windows or AIX. It is, therefore, potentially affected by multiple flaws in its bundled SSL library: - A flaw that could allow a remote attacker to cause a denial of service via a specially crafted...

5CVSS6.5AI score0.35584EPSS
Exploits2References9
Tenable Nessus
Tenable Nessus
added 2014/08/11 12:0 a.m.55 views

IBM Tivoli Storage Manager Server 5.5.x Multiple Vulnerabilities

The version of IBM Tivoli Storage Manager installed on the remote host is 5.5 running on Windows or AIX. It is, therefore, potentially affected by multiple flaws in its bundled SSL library: - A flaw that could allow a remote attacker to cause a denial of service via a specially crafted...

5CVSS6.5AI score0.35584EPSS
Exploits2References9
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.28 views

openSUSE Security Update : openssl (openSUSE-SU-2014:0099-1)

Fixed bnc857640, openssl: TLS record tampering issue can lead to OpenSSL crash Add file: CVE-2013-4353.patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2014-60. The text...

4.3CVSS7.5AI score0.11851EPSS
Exploits0References3
NVD
NVD
added 2012/08/08 10:26 a.m.23 views

CVE-2012-2191

IBM Global Security Kit aka GSKit before 8.0.14.22, as used in IBM Rational Directory Server, IBM Tivoli Directory Server, and other products, does not properly validate data during execution of a protection mechanism against the Vaudenay SSL CBC timing attack, which allows remote attackers to...

5CVSS6.8AI score0.0388EPSS
Exploits0References6
Prion
Prion
added 2012/08/08 10:26 a.m.27 views

Code injection

IBM Global Security Kit aka GSKit before 8.0.14.22, as used in IBM Rational Directory Server, IBM Tivoli Directory Server, and other products, does not properly validate data during execution of a protection mechanism against the Vaudenay SSL CBC timing attack, which allows remote attackers to...

5CVSS6.7AI score0.28154EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2012/08/08 10:0 a.m.28 views

CVE-2012-2191

IBM Global Security Kit aka GSKit before 8.0.14.22, as used in IBM Rational Directory Server, IBM Tivoli Directory Server, and other products, does not properly validate data during execution of a protection mechanism against the Vaudenay SSL CBC timing attack, which allows remote attackers to...

6.8AI score0.0388EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2012/04/30 5:7 p.m.5 views

gnutls: TLS record handling issue (GNUTLS-SA-2012-2, MU-201202-01)

gnutlscipher.c in libgnutls in GnuTLS before 2.12.17 and 3.x before 3.0.15 does not properly handle data encrypted with a block cipher, which allows remote attackers to cause a denial of service heap memory corruption and application crash via a crafted record, as demonstrated by a crafted...

5CVSS7.2AI score0.04202EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2012/03/28 12:0 a.m.37 views

RHEL 5 : gnutls (RHSA-2012:0428)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2012:0428 advisory. - gnutls: buffer overflow in gnutlssessiongetdata GNUTLS-SA-2011-2 CVE-2011-4128 - libtasn1: DER decoding buffer overflow GNUTLS-SA-2012-3,...

5CVSS8AI score0.0446EPSS
Exploits2References8
RedHat Linux
RedHat Linux
added 2012/03/27 10:51 p.m.4 views

gnutls: TLS record handling issue (GNUTLS-SA-2012-2, MU-201202-01)

gnutlscipher.c in libgnutls in GnuTLS before 2.12.17 and 3.x before 3.0.15 does not properly handle data encrypted with a block cipher, which allows remote attackers to cause a denial of service heap memory corruption and application crash via a crafted record, as demonstrated by a crafted...

5CVSS7.2AI score0.04202EPSS
Exploits1References4
OSV
OSV
added 2010/03/26 6:30 p.m.1 views

DEBIAN-CVE-2010-0740

The ssl3getrecord function in ssl/s3pkt.c in OpenSSL 0.9.8f through 0.9.8m allows remote attackers to cause a denial of service crash via a malformed record in a TLS connection that triggers a NULL pointer dereference, related to the minor version number. NOTE: some of these details are obtained...

5CVSS8.8AI score0.2035EPSS
Exploits5References1
Rows per page
Query Builder