Skip to main content

Lua Openssl

3 CVEs product

Monthly

CVE-2020-9434 CRITICAL PATCH Act Now

openssl_x509_check_ip_asc in lua-openssl 0.7.7-1 mishandles X.509 certificate validation because it uses lua_pushboolean for certain non-boolean return values. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

OpenSSL Information Disclosure Lua Openssl
NVD GitHub
CVSS 3.1
9.1
EPSS
0.8%
CVE-2020-9433 CRITICAL PATCH Act Now

openssl_x509_check_email in lua-openssl 0.7.7-1 mishandles X.509 certificate validation because it uses lua_pushboolean for certain non-boolean return values. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

OpenSSL Information Disclosure Lua Openssl
NVD GitHub
CVSS 3.1
9.1
EPSS
0.8%
CVE-2020-9432 CRITICAL PATCH Act Now

openssl_x509_check_host in lua-openssl 0.7.7-1 mishandles X.509 certificate validation because it uses lua_pushboolean for certain non-boolean return values. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

OpenSSL Information Disclosure Lua Openssl
NVD GitHub
CVSS 3.1
9.1
EPSS
0.8%
EPSS 1% CVSS 9.1
CRITICAL PATCH Act Now

openssl_x509_check_ip_asc in lua-openssl 0.7.7-1 mishandles X.509 certificate validation because it uses lua_pushboolean for certain non-boolean return values. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

OpenSSL Information Disclosure Lua Openssl
NVD GitHub
EPSS 1% CVSS 9.1
CRITICAL PATCH Act Now

openssl_x509_check_email in lua-openssl 0.7.7-1 mishandles X.509 certificate validation because it uses lua_pushboolean for certain non-boolean return values. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

OpenSSL Information Disclosure Lua Openssl
NVD GitHub
EPSS 1% CVSS 9.1
CRITICAL PATCH Act Now

openssl_x509_check_host in lua-openssl 0.7.7-1 mishandles X.509 certificate validation because it uses lua_pushboolean for certain non-boolean return values. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

OpenSSL Information Disclosure Lua Openssl
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy