Lucene search
K
OpensslOpenssl

286 matches found

CVE
CVE
added 2012/01/06 1:0 a.m.16140 views

CVE-2011-4108

The CVE-2011-4108 issue concerns the DTLS implementation in OpenSSL. Affected versions are OpenSSL before 0.9.8s and OpenSSL 1.x before 1.0.0f, where a MAC check is performed only if certain padding is valid, enabling a padding oracle that can aid plaintext recovery. This is explicitly described ...

4.3CVSS7.2AI score0.15757EPSS
CVE
CVE
added 2013/02/08 7:0 p.m.15982 views

CVE-2013-0169

The CVE-2013-0169 vulnerability is a timing-side‑channel flaw in CBC padding handling (Lucky Thirteen) that affects TLS/DTLS implementations such as OpenSSL, OpenJDK, and PolarSSL. Root cause: incorrect/insufficient consideration of timing during the MAC/padding check when processing malformed CB...

2.6CVSS6.8AI score0.35584EPSS
CVE
CVE
added 2012/01/06 1:0 a.m.15952 views

CVE-2011-4109

CVE-2011-4109 affects OpenSSL 0.9.8 prior to 0.9.8s. The double-free occurs when X509_V_FLAG_POLICY_CHECK is enabled, allowing remote attackers to trigger a policy-check failure with an unspecified impact. Mitigation: upgrade to OpenSSL 0.9.8s or newer (as reflected in multiple advisories; apply ...

9.3CVSS8.2AI score0.17687EPSS
CVE
CVE
added 2014/06/05 9:0 p.m.15804 views

CVE-2014-3470

CVE-2014-3470 is an OpenSSL vulnerability where the ssl3_send_client_key_exchange in s3_clnt.c can trigger a NULL certificate value when using anonymous ECDH cipher suites, leading to a denial-of-service via NULL pointer dereference and client crash. Affected OpenSSL versions are before 0.9.8za, ...

4.3CVSS7.4AI score0.85784EPSS
CVE
CVE
added 2012/01/06 1:0 a.m.15791 views

CVE-2011-4619

OpenSSL CVE-2011-4619 concerns the Server Gated Cryptography (SGC) handshake restart handling. The vulnerability exists in OpenSSL prior to 0.9.8s and in 1.x prior to 1.0.0f, where improper handling of handshake restarts can allow remote attackers to cause a denial-of-service (CPU consumption). C...

5CVSS7.9AI score0.16645EPSS
CVE
CVE
added 2012/01/19 7:0 p.m.15451 views

CVE-2012-0050

OpenSSL versions affected: 0.9.8s and 1.0.0f. DTLS support flaw leads to remote denial of service via an out-of-bounds read, noted as stemming from an incorrect fix for CVE-2011-4108. Connected ALT Linux advisories show fixes for CVE-2012-0050 by upgrading OpenSSL to 1.0.0h (e.g., openssl1.0h-alt...

5CVSS8.1AI score0.13856EPSS
CVE
CVE
added 2012/01/06 1:0 a.m.9755 views

CVE-2011-4576

OpenSSL CVE-2011-4576 affects SSL 3.0 padding initialization: the implementation does not properly initialize data structures for block cipher padding, allowing a remote attacker to potentially recover plaintext by decrypting the padding data. Affected releases: OpenSSL before 0.9.8s and 1.x befo...

5CVSS8AI score0.14523EPSS
CVE
CVE
added 2014/04/07 12:0 a.m.4286 views

CVE-2014-0160

CVE-2014-0160 (Heartbleed) is an information-disclosure vulnerability in OpenSSL’s TLS/DTLS heartbeat implementation. Affected: OpenSSL 1.0.1 before 1.0.1g. Root cause: improper handling of the Heartbeat extension (d1_both.c, t1_lib.c) leading to a buffer over-read, enabling an attacker to read m...

7.5CVSS7.5AI score0.99999EPSS
In wild
CVE
CVE
added 2016/09/01 12:0 a.m.2082 views

CVE-2016-2183

The CVE-2016-2183 (Sweet32) issue stems from the DES/3DES ciphers used in TLS/SSL, allowing a birthday attack to recover plaintext from long, encrypted sessions. Public advisories and vendor notes show OpenSSL-based stacks (and products relying on it) were affected, with mitigations including de-...

7.5CVSS6.5AI score0.95707EPSS
In wildWeb
CVE
CVE
added 2021/02/16 4:55 p.m.2008 views

CVE-2021-23841

CVE-2021-23841 is described in connected advisories as a NULL pointer dereference in OpenSSL’s X509_issuer_and_serial_hash() when parsing the issuer field. This can crash a process if certificates from untrusted sources are processed and the issuer parsing fails, enabling a potential denial of se...

5.9CVSS7AI score0.07471EPSS
CVE
CVE
added 2022/03/15 5:5 p.m.1352 views

CVE-2022-0778

CVE-2022-0778 describes an infinite loop in BN_mod_sqrt() when parsing certain ASN.1 elliptic-curve parameters, enabling DoS during certificate or key processing. Affected OpenSSL versions include 1.0.2, 1.1.1, and 3.0 (specific ranges: 1.0.2 (1.0.2–1.0.2zc), 1.1.1 (1.1.1–1.1.1m), 3.0 (3.0.0–3.0....

7.5CVSS7.8AI score0.70561EPSS
In wildWeb
CVE
CVE
added 2023/02/08 7:1 p.m.1336 views

CVE-2023-0286

CVE-2023-0286 is a type-confusion bug in OpenSSL related to X.400 address processing inside X.509 GeneralName. The public GENERAL_NAME.x400Address was defined as ASN1_TYPE instead of ASN1_STRING, causing GeneralName_cmp to treat it as a pointer, which under CRL_CHECK can allow an attacker to pass...

7.4CVSS7.7AI score0.59501EPSS
CVE
CVE
added 2023/07/31 3:34 p.m.1318 views

CVE-2023-3817

CVE-2023-3817 concerns OpenSSL: excessive time spent in checks of DH keys/parameters via DH_check(), DH_check_ex(), and EVP_PKEY_param_check(). If key/parameters originate from untrusted sources, an attacker could cause a Denial of Service by triggering long computations. The issue also affects r...

5.3CVSS6.2AI score0.02577EPSS
CVE
CVE
added 2009/11/09 5:0 p.m.1305 views

CVE-2009-3555

CVE-2009-3555 concerns a TLS/SSL renegotiation flaw where renegotiation handshakes were not properly associated with the existing connection, enabling MITM data insertion in HTTPS and other TLS/SSL sessions (Project Mogul). Connected advisories show concrete mitigations and affected software: Pou...

9.8CVSS6AI score0.87264EPSS
CVE
CVE
added 2022/05/03 3:15 p.m.1277 views

CVE-2022-1292

CVE-2022-1292 describes a command-injection risk in the OpenSSL c_rehash script due to improper sanitization of shell metacharacters. The issue can allow local attackers to run arbitrary commands with the script’s privileges on systems where c_rehash runs automatically. Fixes are published in Ope...

10CVSS9AI score0.83223EPSS
CVE
CVE
added 2015/05/21 12:0 a.m.1249 views

CVE-2015-4000

CVE-2015-4000 is the Logjam vulnerability: when a server enables DHE_EXPORT ciphers and the client does not, the TLS handshake may downgrade to 512‑bit export‑grade DH, allowing a MITM to decrypt traffic. Public details describe the issue in TLS as a downgrade attack on Diffie–Hellman key exchang...

4.3CVSS4.8AI score0.9986EPSS
In wild
CVE
CVE
added 2022/06/21 2:45 p.m.1245 views

CVE-2022-2068

The Connected documents corroborate CVE-2022-2068 as a real OpenSSL issue: c_rehash can pass certificate filenames to shell commands, enabling local command execution. Fixed in OpenSSL 3.0.4 (affecting 3.0.0–3.0.3), in OpenSSL 1.1.1p (affecting 1.1.1–1.1.1o), and in OpenSSL 1.0.2zf (affecting 1.0...

10CVSS9.2AI score0.95764EPSS
CVE
CVE
added 2022/11/01 12:0 a.m.1199 views

CVE-2022-3602

OpenSSL CVE-2022-3602 is a stack-based buffer overrun in X.509 name-contraint verification that can crash a TLS client/server or, potentially, allow RCE. The issue is triggered by crafting an email address and affects OpenSSL 3.0.x (3.0.0–3.0.6). Mitigation is upgrading to OpenSSL 3.0.7 or later ...

7.5CVSS8.2AI score0.89804EPSS
CVE
CVE
added 2020/12/08 3:30 p.m.1189 views

CVE-2020-1971

CVE-2020-1971 is described across multiple connected sources as a NULL-dereference in OpenSSL’s GENERAL_NAME_cmp when EDIPARTYNAME is present, potentially enabling a denial-of-service crash. Affected OpenSSL versions include all 1.1.1 and 1.0.2 lines; fixes are published in OpenSSL 1.1.1i and Ope...

5.9CVSS5.7AI score0.06968EPSS
CVE
CVE
added 2022/11/01 12:0 a.m.1071 views

CVE-2022-3786

OpenSSL CVE-2022-3602 and CVE-2022-3786 describe buffer overflows in X.509 name-constraint processing triggered by crafted email addresses in certificates, potentially crashing the TLS client/server and, in some scenarios, enabling remote code execution. Documents confirm the issues affect OpenSS...

7.5CVSS8.1AI score0.91153EPSS
CVE
CVE
added 2014/10/15 12:0 a.m.1034 views

CVE-2014-3566

CVE-2014-3566 (POODLE) affects SSLv3 in AIX and related IBM components. IBM’s advisory (nettcp) states SSLv3 padding oracle vulnerability could allow MITM decryption of SSL sessions. Affected: AIX 6.1/7.1 and VIOS 2.2.x with vulnerable bos.net.tcp.client/server file sets (various lower/upper leve...

4.3CVSS4.4AI score0.99999EPSS
CVE
CVE
added 2023/02/08 7:3 p.m.969 views

CVE-2023-0215

CVE-2023-0215 describes a use-after-free in OpenSSL’s BIO_new_NDEF path used with SMIME/CMS/PKCS7 streaming. When a CMS recipient key is invalid, the filter BIO is freed but the caller’s BIO still holds pointers, allowing use-after-free on BIO_pop(); this can crash the process. Affected internal ...

7.5CVSS7.9AI score0.04494EPSS
CVE
CVE
added 2019/02/27 11:0 p.m.924 views

CVE-2019-1559

OpenSSL vulnerability CVE-2019-1559 describes a padding-oracle weakness where, if an application encounters a fatal protocol error and then calls SSL_shutdown() twice (to send close_notify and to receive one), the server may respond differently to a 0-byte record with invalid padding versus inval...

5.9CVSS6.3AI score0.17139EPSS
CVE
CVE
added 2023/02/08 7:4 p.m.922 views

CVE-2022-4304

CVE-2022-4304 describes a timing-based side‑channel in OpenSSL’s RSA decryption implementation that could allow recovering plaintext over the network via a Bleichenbacher‑style attack. It affects all RSA padding modes (PKCS#1 v1.5, RSA‑OAEP, and RSASVE). The connected Astra Linux bulletin reprodu...

5.9CVSS6.9AI score0.16195EPSS
CVE
CVE
added 2007/10/13 1:0 a.m.915 views

CVE-2007-4995

CVE-2007-4995 describes an off-by-one error in the DTLS implementation of OpenSSL 0.9.8 prior to 0.9.8f that could allow a remote attacker to execute arbitrary code via unspecified vectors. Multiple connected advisories confirm this DTLS flaw and the need to upgrade OpenSSL to a fixed release (0....

9.3CVSS7.3AI score0.11164EPSS
CVE
CVE
added 2023/02/08 7:4 p.m.895 views

CVE-2022-4450

Summary (CVE-2022-4450): OpenSSL’s PEM_read_bio_ex() and wrappers PEM_read_bio()/PEM_read() are vulnerable. If a PEM file is crafted to trigger a 0-byte payload, PEM_read_bio_ex() may return a failure while its header buffer has already been freed; freeing that buffer again can cause a use-after-...

7.5CVSS8AI score0.20444EPSS
CVE
CVE
added 2023/05/30 1:40 p.m.861 views

CVE-2023-2650

CVE-2023-2650 describes a potential Denial of Service caused by extremely slow translation of large ASN.1 OBJECT IDENTIFIERs via OBJ_obj2txt(), affecting OpenSSL-based workflows and related subsystems. Connected docs confirm multiple vendors reference this issue and link patches or updated packag...

6.5CVSS7AI score0.73461EPSS
CVE
CVE
added 2023/07/19 11:31 a.m.837 views

CVE-2023-3446

CVE-2023-3446 affects OpenSSL DH parameter checks (DH_check, DH_check_ex, EVP_PKEY_param_check). Affected checks may slow down or stall when modulus values are large, potentially causing Denial of Service if parameters are from untrusted sources. The issue is tied to how DH parameter validation i...

5.3CVSS6.7AI score0.05533EPSS
CVE
CVE
added 2021/03/25 2:25 p.m.813 views

CVE-2021-3449

CVE-2021-3449 affects OpenSSL 1.1.1.x where a TLSv1.2 server may crash (DoS) if it receives a renegotiation ClientHello that omits the signature_algorithms extension but includes signature_algorithms_cert. The issue is a NULL pointer dereference leading to a denial of service; OpenSSL clients are...

5.9CVSS6.7AI score0.62906EPSS
CVE
CVE
added 2023/03/22 4:36 p.m.807 views

CVE-2023-0464

OpenSSL CVE-2023-0464 is a denial-of-service vulnerability that affects all supported OpenSSL versions by enabling exponential resource usage when verifying X.509 certificate chains that include policy constraints. The root cause is in policy constraint verification during chain processing, allow...

7.5CVSS7.3AI score0.03658EPSS
CVE
CVE
added 2020/04/21 1:45 p.m.804 views

CVE-2020-1967

CVE-2020-1967 describes a NULL pointer dereference in OpenSSL’s SSL_check_chain() during or after a TLS 1.3 handshake, caused by incorrect handling of the signature_algorithms_cert extension. A malicious peer sending an invalid/unrecognized signature algorithm can crash the server/client, enablin...

7.5CVSS7.5AI score0.53336EPSS
CVE
CVE
added 2021/02/16 4:55 p.m.800 views

CVE-2021-23840

CVE-2021-23840 describes an integer-length overflow in EVP_CipherUpdate, EVP_EncryptUpdate, and EVP_DecryptUpdate that can cause a negative output length value when input length is near the platform’s integer limit. This can lead to application crashes or incorrect behavior. Affected OpenSSL rele...

7.5CVSS8AI score0.50732EPSS
CVE
CVE
added 2014/06/05 9:0 p.m.785 views

CVE-2014-0224

CVE-2014-0224 describes an OpenSSL ChangeCipherSpec (CCS) handling flaw that can enable a Man-in-the-Middle to force use of weak key material in TLS/SSL sessions, allowing traffic decryption or modification between vulnerable client and server. The initial OpenSSL disclosures specify affected ser...

7.4CVSS7.5AI score0.95326EPSS
CVE
CVE
added 2016/05/05 12:0 a.m.765 views

CVE-2016-2107

CVE-2016-2107 (OpenSSL) is a padding-oracle vulnerability in the AES-NI CBC MAC check. The issue arises in the AES-CBC padding validation where memory allocation during the padding check is mishandled, enabling potential leakage of plaintext under certain conditions. Affected OpenSSL versions inc...

5.9CVSS6.9AI score0.89058EPSS
CVE
CVE
added 2021/08/24 2:50 p.m.761 views

CVE-2021-3711

CVE-2021-3711 involves a bug in OpenSSL SM2 decryption: the buffer-size calculation during EVP_PKEY_decrypt() first call can under-allocate, enabling a later second call with a too-small buffer and causing a buffer overflow (up to 62 bytes). The issue affects OpenSSL 1.1.1 up to 1.1.1k and is fix...

9.8CVSS9.9AI score0.87816EPSS
CVE
CVE
added 2023/11/06 3:47 p.m.756 views

CVE-2023-5678

CVE-2023-5678 describes a DoS risk from excessive time spent validating X9.42 DH keys/parameters. The issue affects OpenSSL DH-based operations such as DH_generate_key(), DH_check_pub_key(), DH_check_pub_key_ex(), EVP_PKEY_public_check(), and related checks invoked by DH-related functions. OpenSS...

5.3CVSS6.4AI score0.04459EPSS
CVE
CVE
added 2023/02/24 2:53 p.m.741 views

CVE-2022-4203

OpenSSL CVE-2022-4203 is a read buffer overrun in X.509 name-constraint checking that can be triggered after certificate chain verification, potentially crashing the TLS agent and causing a denial of service (memory disclosure was only theoretical in early advisories). It affects TLS clients and ...

4.9CVSS6.9AI score0.01481EPSS
CVE
CVE
added 2023/02/08 7:3 p.m.721 views

CVE-2023-0216

CVE-2023-0216 : OpenSSL contains an invalid pointer dereference on read when an application loads malformed PKCS7 data via d2i_PKCS7(), d2i_PKCS7_bio(), or d2i_PKCS7_fp(). This can cause an application crash and potentially a denial of service. The description notes that the TLS implementation it...

7.5CVSS7.6AI score0.01846EPSS
CVE
CVE
added 2023/02/08 7:0 p.m.716 views

CVE-2023-0401

CVE-2023-0401 describes a NULL pointer dereference during PKCS7 data verification in OpenSSL. The digest initialization can fail when the signature hash algorithm is known but the implementation is unavailable, due to a missing check on the initialization return value. This can lead to invalid di...

7.5CVSS7.7AI score0.01846EPSS
CVE
CVE
added 2023/03/28 2:30 p.m.711 views

CVE-2023-0465

CVE-2023-0465 is an OpenSSL certificate policy handling flaw where non-default policy checks are bypassable, allowing invalid certificate policies to pass verification. Connected entries confirm broader impact on Brocade Fabric OS (all versions) and describe remediation: OpenSSL/OpenSSL-based pro...

5.3CVSS6.8AI score0.01583EPSS
CVE
CVE
added 2021/08/24 2:50 p.m.708 views

CVE-2021-3712

The CVE-2021-3712 issue affects OpenSSL where ASN1_STRING data may not be NUL-terminated if constructed directly (or via ASN1_STRING_set0), causing read-buffer overreads when many OpenSSL print/name-constraining paths handle such ASN.1 strings. Exploitation could crash the application (DoS) or di...

7.4CVSS8AI score0.50445EPSS
CVE
CVE
added 2023/02/08 7:2 p.m.687 views

CVE-2023-0217

CVE-2023-0217 is an OpenSSL vulnerability: an invalid pointer dereference on read when validating a malformed DSA public key via EVP_PKEY_public_check(), likely crashing the application and enabling denial of service. Affected context in connected documents confirms OpenSSL-related advisories and...

7.5CVSS7.5AI score0.01846EPSS
CVE
CVE
added 2024/01/26 8:57 a.m.678 views

CVE-2024-0727

CVE-2024-0727 affects OpenSSL via processing of PKCS12 files from untrusted sources, causing a NULL pointer dereference that can crash the library and trigger DoS. Affected APIs include PKCS12_parse(), PKCS12_unpack_p7data(), PKCS12_unpack_p7encdata(), PKCS12_unpack_authsafes(), and PKCS12_newpas...

5.5CVSS5.8AI score0.03174EPSS
CVE
CVE
added 2018/11/15 9:0 p.m.670 views

CVE-2018-5407

CVE-2018-5407 is a PortSmash timing-side channel vulnerability in SMT/Hyper-Threading affecting OpenSSL. Local attackers could exploit a timing leakage during cryptographic operations to gain information. Documented in multiple advisories (e.g., ALAS/ALAS2 for OpenSSL) with remediation stating to...

4.7CVSS5.6AI score0.03418EPSS
CVE
CVE
added 2023/09/08 11:1 a.m.613 views

CVE-2023-4807

CVE-2023-4807 : OpenSSL POLY1305 MAC state corruption on Windows x64 with AVX512-IFMA. Affected: OpenSSL library used by server apps (e.g., TLS with CHACHA20-POLY1305). Root cause: POLY1305 MAC implementation does not save/restore non-volatile XMM registers on Windows 64 when MACing data beyond 6...

7.8CVSS7.9AI score0.00862EPSS
CVE
CVE
added 2023/10/24 3:31 p.m.603 views

CVE-2023-5363

CVE-2023-5363 : OpenSSL 3.0 and 3.1 are affected by a bug in key/IV length processing during EVP_Init_ex2/2 and EVP_CipherInit_ex2, where alterations to keylen/ivlen via OSSL_PARAM may not apply, causing truncation or overruns. This can yield non-unique IVs and, in CCM/GCM/OCB modes, potential lo...

7.5CVSS7.5AI score0.03332EPSS
CVE
CVE
added 2022/12/13 3:43 p.m.591 views

CVE-2022-3996

CVE-2022-3996 describes an OpenSSL policy-contraint processing issue where a malformed certificate policy can trigger a write lock to be taken recursively, enabling DoS for affected processes. The vulnerability is tied to OpenSSL policy checks and the use of policy processing via -policy or X509_...

7.5CVSS6.8AI score0.0123EPSS
CVE
CVE
added 2023/04/20 4:14 p.m.572 views

CVE-2023-1255

The CVE-2023-1255 vulnerability affects OpenSSL’s AES-XTS decryption on 64-bit ARM, where the implementation may read beyond the ciphertext buffer (for ciphertext sizes that are 4 mod 5 in 16-byte blocks), causing a crash and potential denial of service. Affected OpenSSL deployments may crash if ...

5.9CVSS6.5AI score0.00953EPSS
CVE
CVE
added 2018/10/29 1:0 p.m.567 views

CVE-2018-0735

CVE-2018-0735 corresponds to a timing side-channel vulnerability in OpenSSL’s ECDSA signature generation. An attacker could exploit variations in signing to recover the private key. Affected: OpenSSL 1.1.0 (1.1.0-1.1.0i) and OpenSSL 1.1.1 (1.1.1) prior to the fixes. Fixes were released in OpenSSL...

5.9CVSS5.7AI score0.04763EPSS
CVE
CVE
added 2021/03/25 2:25 p.m.564 views

CVE-2021-3450

CVE-2021-3450 affects OpenSSL 1.1.1h–1.1.1j where a bug in the X509_V_FLAG_X509_STRICT path overwrote a prior CA-check result, bypassing the non-CA certificates prohibition unless a programmed purpose is used. When a purpose is configured, the certificate chain is still rejected; the issue is fix...

7.4CVSS7.6AI score0.18339EPSS
Total number of security vulnerabilities286