Lucene search
K

5282 matches found

Debian
Debian
added 2026/04/22 12:57 p.m.7 views

[SECURITY] [DSA 6227-1] strongswan security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6227-1 [email protected] https://www.debian.org/security/ Yves-Alexis Perez April 22, 2026 https://www.debian.org/security/faq -...

6.4AI score
Exploits6
Microsoft CVE
Microsoft CVE
added 2026/04/22 8:1 a.m.4 views

X.509: Fix out-of-bounds access when parsing extensions

...

7.8CVSS5.8AI score0.00081EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.7 views

PT-2026-35580

USN-8196-1 fixed vulnerabilities in strongSwan. This update provides the corresponding update to Ubuntu 26.04 LTS. Original advisory details: Haruto Kimura discovered that strongSwan incorrectly handled the supported versions extension in TLS. A remote attacker could possibly use this issue to...

5.9AI score
Exploits6References36
OSV
OSV
added 2026/04/10 12:16 a.m.6 views

UBUNTU-CVE-2026-5448

X.509 date buffer overflow in wolfSSLX509notAfter / wolfSSLX509notBefore. A buffer overflow may occur when parsing date fields from a crafted X.509 certificate via the compatibility layer API. This is only triggered when calling these two APIs directly from an application, and does not affect TLS...

4.3CVSS6.1AI score0.00122EPSS
Exploits0References3
Fedora
Fedora
added 2026/03/28 12:19 a.m.6 views

[SECURITY] Fedora 44 Update: rust-webpki-root-certs-1.0.6-1.fc44

Mozilla trusted certificate authorities in self-signed X.509 format for use with crates other than webpki...

5.8AI score
Exploits0
OSV
OSV
added 2026/01/20 9:16 p.m.4 views

CVE-2025-59464

A memory leak in Node.js’s OpenSSL integration occurs when converting X.509 certificate fields to UTF-8 without freeing the allocated buffer. When applications call socket.getPeerCertificatetrue, each certificate field leaks memory, allowing remote clients to trigger steady memory growth through...

7.5CVSS5.9AI score
Exploits0References1
NVD
NVD
added 2026/01/20 9:16 p.m.6 views

CVE-2025-59464

A memory leak in Node.js’s OpenSSL integration occurs when converting X.509 certificate fields to UTF-8 without freeing the allocated buffer. When applications call socket.getPeerCertificatetrue, each certificate field leaks memory, allowing remote clients to trigger steady memory growth through...

7.5CVSS0.0023EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 9 : dotnet8.0-8.0.107-1.el9_4.ML.1 (AXSA:2024-8561:13)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8561:13 advisory. dotnet: DoS in System.Text.Json CVE-2024-30105 dotnet: DoS in ASP.NET Core 8 CVE-2024-35264 dotnet: DoS when parsing X.509 Content and...

8.1CVSS7.5AI score0.02915EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-59464

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A memory leak in Node.js's OpenSSL integration occurs when converting X.509 certificate fields to UTF-8 without freeing the allocated buffer. When applications...

7.5CVSS6.8AI score0.0023EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/01/09 11:54 a.m.7 views

CVE-2009-4879

The Identity Server in Novell Access Manager before 3.1 SP1 allows attackers with disabled Active Directory accounts to authenticate using X.509 authentication, which bypasses intended access restrictions...

4.3CVSS6.9AI score0.01039EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:52 a.m.6 views

CVE-2009-4914

Memory leak on Cisco Adaptive Security Appliances ASA 5580 series devices with software before 8.12 allows remote attackers to cause a denial of service memory consumption via Subject Alternative Name fields in an X.509 certificate, aka Bug ID CSCsq17879...

7.8CVSS7AI score0.00741EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:33 a.m.7 views

CVE-2017-18911

An issue was discovered in Mattermost Server before 3.8.2, 3.7.5, and 3.6.7. The X.509 certificate validation can be skipped for a TLS-based e-mail server...

9.1CVSS6.9AI score0.00669EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:50 a.m.6 views

CVE-2013-6682

The phone-proxy implementation in Cisco Adaptive Security Appliance ASA Software 9.0.3.6 and earlier does not properly validate X.509 certificates, which allows remote attackers to cause a denial of service connection-database corruption via an invalid entry, aka Bug ID CSCui33299...

6.4CVSS7AI score0.00748EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2008-6982

Malware in sbrugna...

10CVSS6.4AI score0.01809EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2014-7405

Malware in sbrugna...

5.4CVSS6.4AI score0.00266EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2010-0757

Malware in sbrugna...

7.5CVSS8.4AI score0.02944EPSS
Exploits1References14
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-10497

Malware in sbrugna...

5.9CVSS5.5AI score0.00977EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2014-5723

Malware in sbrugna...

5.4CVSS6.4AI score0.00271EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-6581

Malware in sbrugna...

5.4CVSS6.4AI score0.00271EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2014-7278

Malware in sbrugna...

5.4CVSS6.4AI score0.00266EPSS
Exploits0References4
Rows per page
Query Builder