Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
polarssl polarssl 1.3.1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-8628
Memory leak in PolarSSL prior to 1.2.12 and 1.3.x prior to 1.3.9 allows remote malicious users to cause a denial of service (memory consumption) via a large number of crafted X.509 certificates. NOTE: this identifier has been SPLIT per ADT3 due to different affected versions. See...
Polarssl Polarssl 1.3.1
Polarssl Polarssl 1.3.4
Polarssl Polarssl 1.3.2
Polarssl Polarssl 1.3.6
Polarssl Polarssl 1.3.7
Polarssl Polarssl 1.3.3
Polarssl Polarssl 1.3.8
Polarssl Polarssl 1.3.5
Polarssl Polarssl
Polarssl Polarssl 1.3.0
NA
CVE-2015-1182
The asn1_get_sequence_of function in library/asn1parse.c in PolarSSL 1.0 up to and including 1.2.12 and 1.3.x up to and including 1.3.9 does not properly initialize a pointer in the asn1_sequence linked list, which allows remote malicious users to cause a denial of service (crash...
Opensuse Opensuse 13.2
Polarssl Polarssl 1.2.4
Polarssl Polarssl 1.2.12
Polarssl Polarssl 1.2.6
Polarssl Polarssl 1.3.1
Polarssl Polarssl 1.1.7
Polarssl Polarssl 1.0.0
Polarssl Polarssl 1.1.3
Polarssl Polarssl 1.2.9
Polarssl Polarssl 1.3.4
Polarssl Polarssl 1.3.0
Polarssl Polarssl 1.3.2
Polarssl Polarssl 1.2.11
Polarssl Polarssl 1.1.4
Polarssl Polarssl 1.3.6
Polarssl Polarssl 1.3.7
Polarssl Polarssl 1.3.3
Polarssl Polarssl 1.3.8
Polarssl Polarssl 1.2.2
Polarssl Polarssl 1.1.8
Polarssl Polarssl 1.1.6
Polarssl Polarssl 1.2.3
NA
CVE-2014-4911
The ssl_decrypt_buf function in library/ssl_tls.c in PolarSSL prior to 1.2.11 and 1.3.x prior to 1.3.8 allows remote malicious users to cause a denial of service (crash) via vectors related to the GCM ciphersuites, as demonstrated using the Codenomicon Defensics toolkit.
Polarssl Polarssl 1.3.1
Polarssl Polarssl 1.3.4
Polarssl Polarssl 1.3.0
Polarssl Polarssl 1.3.2
Polarssl Polarssl 1.3.6
Polarssl Polarssl 1.3.7
Polarssl Polarssl 1.3.3
Polarssl Polarssl 1.3.5
Polarssl Polarssl 1.2.4
Polarssl Polarssl 1.2.6
Polarssl Polarssl 1.2.9
Polarssl Polarssl
Polarssl Polarssl 1.2.2
Polarssl Polarssl 1.2.3
Polarssl Polarssl 1.2.0
Polarssl Polarssl 1.2.1
Polarssl Polarssl 1.2.7
Polarssl Polarssl 1.2.5
Polarssl Polarssl 1.2.8
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Debian Debian Linux 6.0
NA
CVE-2013-5914
Buffer overflow in the ssl_read_record function in ssl_tls.c in PolarSSL prior to 1.1.8, when using TLS 1.1, might allow remote malicious users to execute arbitrary code via a long packet.
Polarssl Polarssl 1.0.0
Polarssl Polarssl 1.1.3
Polarssl Polarssl 1.1.4
Polarssl Polarssl 1.1.6
Polarssl Polarssl 1.1.1
Polarssl Polarssl 1.1.2
Polarssl Polarssl 1.1.0
Polarssl Polarssl 1.1.5
Polarssl Polarssl
NA
CVE-2013-5915
The RSA-CRT implementation in PolarSSL prior to 1.2.9 does not properly perform Montgomery multiplication, which might allow remote malicious users to conduct a timing side-channel attack and retrieve RSA private keys.
Polarssl Polarssl 1.2.4
Polarssl Polarssl 0.14.2
Polarssl Polarssl 1.2.6
Polarssl Polarssl 0.11.0
Polarssl Polarssl 1.0.0
Polarssl Polarssl 0.13.1
Polarssl Polarssl 1.1.3
Polarssl Polarssl 0.12.1
Polarssl Polarssl 0.99
Polarssl Polarssl 0.11.1
Polarssl Polarssl 1.1.4
Polarssl Polarssl 1.2.2
Polarssl Polarssl 1.1.8
Polarssl Polarssl 0.14.0
Polarssl Polarssl 1.1.6
Polarssl Polarssl 1.2.3
Polarssl Polarssl 1.1.1
Polarssl Polarssl 1.2.0
Polarssl Polarssl 1.2.1
Polarssl Polarssl
Polarssl Polarssl 1.1.2
Polarssl Polarssl 0.14.3
NA
CVE-2013-4623
The x509parse_crt function in x509.h in PolarSSL 1.1.x prior to 1.1.7 and 1.2.x prior to 1.2.8 does not properly parse certificate messages during the SSL/TLS handshake, which allows remote malicious users to cause a denial of service (infinite loop and CPU consumption) via a cer...
Polarssl Polarssl 1.2.4
Polarssl Polarssl 1.2.6
Polarssl Polarssl 1.1.3
Polarssl Polarssl 1.1.4
Polarssl Polarssl 1.2.2
Polarssl Polarssl 1.1.6
Polarssl Polarssl 1.2.3
Polarssl Polarssl 1.1.1
Polarssl Polarssl 1.2.0
Polarssl Polarssl 1.2.1
Polarssl Polarssl 1.1.2
Polarssl Polarssl 1.2.7
Polarssl Polarssl 1.2.5
Polarssl Polarssl 1.1.0
Polarssl Polarssl 1.1.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started