cisco registered envelope service 5.0 vulnerabilities and exploits

(subscribe to this query)

3.5

CVSSv2

A vulnerability in the web-based management interface of the Cisco Registered Envelope Service could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of the affected service. The vuln...

Cisco Registered Envelope Service 5.3.1 Cisco Registered Envelope Service 5.0 Cisco Registered Envelope Service 5.3 Cisco Registered Envelope Service 5.3.4 Cisco Registered Envelope Service 4.7

5

CVSSv2

The Montgomery squaring implementation in crypto/bn/asm/x86_64-mont5.pl in OpenSSL 1.0.2 prior to 1.0.2e on the x86_64 platform, as used by the BN_mod_exp function, mishandles carry propagation and produces incorrect output, which makes it easier for remote malicious users to obt...

Openssl Openssl 1.0.2a Openssl Openssl 1.0.2b Openssl Openssl 1.0.2c Openssl Openssl 1.0.2 Openssl Openssl 1.0.2d Nodejs Node.js Canonical Ubuntu Linux 15.10 Canonical Ubuntu Linux 15.04 Canonical Ubuntu Linux 14.04 Canonical Ubuntu Linux 12.04

1 Github repository

5

CVSSv2

The ssl3_get_key_exchange function in ssl/s3_clnt.c in OpenSSL 1.0.2 prior to 1.0.2e allows remote servers to cause a denial of service (segmentation fault) via a zero p value in an anonymous Diffie-Hellman (DH) ServerKeyExchange message.

Openssl Openssl 1.0.2a Openssl Openssl 1.0.2b Openssl Openssl 1.0.2c Openssl Openssl 1.0.2 Openssl Openssl 1.0.2d

1 Article

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook