Skip to main content

Suse Linux Enterprise Module For Web Scripting

3 CVEs product

Monthly

CVE-2016-7052 HIGH PATCH This Week

crypto/x509/x509_vfy.c in OpenSSL 1.0.2i allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) by triggering a CRL operation. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

OpenSSL Denial Of Service Null Pointer Dereference Suse Linux Enterprise Module For Web Scripting Node Js
NVD
CVSS 3.1
7.5
EPSS
9.9%
CVE-2016-6306 MEDIUM PATCH This Month

The certificate parser in OpenSSL before 1.0.1u and 1.0.2 before 1.0.2i might allow remote attackers to cause a denial of service (out-of-bounds read) via crafted certificate operations, related to. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required.

OpenSSL Denial Of Service Information Disclosure Buffer Overflow Icewall Federation Agent +7
NVD
CVSS 3.1
5.9
EPSS
8.1%
CVE-2016-6304 HIGH PATCH Act Now

Multiple memory leaks in t1_lib.c in OpenSSL before 1.0.1u, 1.0.2 before 1.0.2i, and 1.1.0 before 1.1.0a allow remote attackers to cause a denial of service (memory consumption) via large OCSP Status. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Epss exploitation probability 18.0%.

Denial Of Service OpenSSL Node Js Suse Linux Enterprise Module For Web Scripting
NVD
CVSS 3.1
7.5
EPSS
18.0%
EPSS 10% CVSS 7.5
HIGH PATCH This Week

crypto/x509/x509_vfy.c in OpenSSL 1.0.2i allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) by triggering a CRL operation. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

OpenSSL Denial Of Service Null Pointer Dereference +2
NVD
EPSS 8% CVSS 5.9
MEDIUM PATCH This Month

The certificate parser in OpenSSL before 1.0.1u and 1.0.2 before 1.0.2i might allow remote attackers to cause a denial of service (out-of-bounds read) via crafted certificate operations, related to. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required.

OpenSSL Denial Of Service Information Disclosure +9
NVD
EPSS 18% CVSS 7.5
HIGH PATCH Act Now

Multiple memory leaks in t1_lib.c in OpenSSL before 1.0.1u, 1.0.2 before 1.0.2i, and 1.1.0 before 1.1.0a allow remote attackers to cause a denial of service (memory consumption) via large OCSP Status. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Epss exploitation probability 18.0%.

Denial Of Service OpenSSL Node Js +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy