Lucene search
K

5 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2021/09/22 11:38 p.m.34 views

Security Bulletin: Vulnerability in OpenSSL affects Power Hardware Management Console (CVE-2021-3449).

Summary OpenSSL is used by Power Hardware Management Console HMC. HMC has addressed the applicable CVE. Vulnerability Details CVEID: CVE-2021-3449 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by a NULL pointer dereference in signaturealgorithms processing. By sending a...

5.9CVSS0.9AI score0.62906EPSS
Exploits3Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/07/15 12:0 a.m.33 views

SUSE SLES12 Security Update : nodejs10 (SUSE-SU-2021:2323-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:2323-1 advisory. Update nodejs10 to 10.24.1. Including fixes for - CVE-2021-22918: libuv upgrade - Out of bounds read bsc1187973 - CVE-2021-27290: ssri Regular...

9.8CVSS7.1AI score0.69062EPSS
Exploits8References20
OSV
OSV
added 2021/04/05 3:54 p.m.11 views

MGASA-2021-0176 Updated openssl packages fix security vulnerability

An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signaturealgorithms extension where it was present in the initial ClientHello, but includes a signaturealgorithmscert extension then a NU...

7.4CVSS6.5AI score0.62906EPSS
Exploits4References3
Tenable Nessus
Tenable Nessus
added 2021/03/26 12:0 a.m.45 views

SUSE SLES12 Security Update : openssl-1_1 (SUSE-SU-2021:0954-1)

This update for openssl-11 fixes the following security issue : CVE-2021-3449: An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signaturealgorithms extension but includes a...

5.9CVSS7.7AI score0.62906EPSS
Exploits3References4
OSV
OSV
added 2021/03/25 10:6 p.m.13 views

OPENSUSE-SU-2021:0476-1 Security update for openssl-1_1

This update for openssl-11 fixes the security issue: CVE-2021-3449: An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signaturealgorithms extension but includes a signaturealgorithmscert...

5.9CVSS7.5AI score0.62906EPSS
Exploits3References3
Rows per page
Query Builder