Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
openssl openssl 1.0.2a vulnerabilities and exploits
(subscribe to this query)
8.2
CVSSv3
CVE-2016-2176
The X509_NAME_oneline function in crypto/x509/x509_obj.c in OpenSSL prior to 1.0.1t and 1.0.2 prior to 1.0.2h allows remote malicious users to obtain sensitive information from process stack memory or cause a denial of service (buffer over-read) via crafted EBCDIC ASN.1 data.
Openssl Openssl
Openssl Openssl 1.0.2
Openssl Openssl 1.0.2a
Openssl Openssl 1.0.2b
Openssl Openssl 1.0.2c
Openssl Openssl 1.0.2d
Openssl Openssl 1.0.2e
Openssl Openssl 1.0.2f
Openssl Openssl 1.0.2g
1 Article
7.5
CVSSv3
CVE-2016-0798
Memory leak in the SRP_VBASE_get_by_user implementation in OpenSSL 1.0.1 prior to 1.0.1s and 1.0.2 prior to 1.0.2g allows remote malicious users to cause a denial of service (memory consumption) by providing an invalid username in a connection attempt, related to apps/s_server.c ...
Openssl Openssl 1.0.1
Openssl Openssl 1.0.1a
Openssl Openssl 1.0.1b
Openssl Openssl 1.0.1c
Openssl Openssl 1.0.1d
Openssl Openssl 1.0.1e
Openssl Openssl 1.0.1f
Openssl Openssl 1.0.1g
Openssl Openssl 1.0.1h
Openssl Openssl 1.0.1i
Openssl Openssl 1.0.1j
Openssl Openssl 1.0.1k
9.8
CVSSv3
CVE-2016-2842
The doapr_outch function in crypto/bio/b_print.c in OpenSSL 1.0.1 prior to 1.0.1s and 1.0.2 prior to 1.0.2g does not verify that a certain memory allocation succeeds, which allows remote malicious users to cause a denial of service (out-of-bounds write or memory consumption) or p...
Openssl Openssl 1.0.1
Openssl Openssl 1.0.1a
Openssl Openssl 1.0.1b
Openssl Openssl 1.0.1c
Openssl Openssl 1.0.1d
Openssl Openssl 1.0.1e
Openssl Openssl 1.0.1f
Openssl Openssl 1.0.1g
Openssl Openssl 1.0.1h
Openssl Openssl 1.0.1i
Openssl Openssl 1.0.1j
Openssl Openssl 1.0.1k
9.8
CVSSv3
CVE-2016-0799
The fmtstr function in crypto/bio/b_print.c in OpenSSL 1.0.1 prior to 1.0.1s and 1.0.2 prior to 1.0.2g improperly calculates string lengths, which allows remote malicious users to cause a denial of service (overflow and out-of-bounds read) or possibly have unspecified other impac...
Openssl Openssl 1.0.1
Openssl Openssl 1.0.1a
Openssl Openssl 1.0.1b
Openssl Openssl 1.0.1c
Openssl Openssl 1.0.1d
Openssl Openssl 1.0.1e
Openssl Openssl 1.0.1f
Openssl Openssl 1.0.1g
Openssl Openssl 1.0.1h
Openssl Openssl 1.0.1i
Openssl Openssl 1.0.1j
Openssl Openssl 1.0.1k
5.9
CVSSv3
CVE-2016-0800
The SSLv2 protocol, as used in OpenSSL prior to 1.0.1s and 1.0.2 prior to 1.0.2g and other products, requires a server to send a ServerVerify message before establishing that a client possesses certain plaintext RSA data, which makes it easier for remote malicious users to decryp...
Openssl Openssl 1.0.1
Openssl Openssl 1.0.1a
Openssl Openssl 1.0.1b
Openssl Openssl 1.0.1c
Openssl Openssl 1.0.1d
Openssl Openssl 1.0.1e
Openssl Openssl 1.0.1f
Openssl Openssl 1.0.1g
Openssl Openssl 1.0.1h
Openssl Openssl 1.0.1i
Openssl Openssl 1.0.1j
Openssl Openssl 1.0.1k
2 Nmap scripts
1 Github repository
2 Articles
7.5
CVSSv3
CVE-2016-0797
Multiple integer overflows in OpenSSL 1.0.1 prior to 1.0.1s and 1.0.2 prior to 1.0.2g allow remote malicious users to cause a denial of service (heap memory corruption or NULL pointer dereference) or possibly have unspecified other impact via a long digit string that is mishandle...
Openssl Openssl 1.0.1
Openssl Openssl 1.0.1a
Openssl Openssl 1.0.1b
Openssl Openssl 1.0.1c
Openssl Openssl 1.0.1d
Openssl Openssl 1.0.1e
Openssl Openssl 1.0.1f
Openssl Openssl 1.0.1g
Openssl Openssl 1.0.1h
Openssl Openssl 1.0.1i
Openssl Openssl 1.0.1j
Openssl Openssl 1.0.1k
5.1
CVSSv3
CVE-2016-0702
The MOD_EXP_CTIME_COPY_FROM_PREBUF function in crypto/bn/bn_exp.c in OpenSSL 1.0.1 prior to 1.0.1s and 1.0.2 prior to 1.0.2g does not properly consider cache-bank access times during modular exponentiation, which makes it easier for local users to discover RSA keys by running a c...
Openssl Openssl 1.0.1
Openssl Openssl 1.0.1a
Openssl Openssl 1.0.1b
Openssl Openssl 1.0.1c
Openssl Openssl 1.0.1d
Openssl Openssl 1.0.1e
Openssl Openssl 1.0.1f
Openssl Openssl 1.0.1g
Openssl Openssl 1.0.1h
Openssl Openssl 1.0.1i
Openssl Openssl 1.0.1j
Openssl Openssl 1.0.1k
1 Github repository
5.3
CVSSv3
CVE-2023-3817
Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_check(), DH_check_ex() or EVP_PKEY_param_check() to check a DH key or DH parameters may experience long delays. Where the key or parameters that...
Openssl Openssl
Openssl Openssl 1.0.2
Openssl Openssl 1.0.2a
Openssl Openssl 1.0.2b
Openssl Openssl 1.0.2c
Openssl Openssl 1.0.2d
Openssl Openssl 1.0.2e
Openssl Openssl 1.0.2f
Openssl Openssl 1.0.2g
Openssl Openssl 1.0.2h
Openssl Openssl 1.0.2i
Openssl Openssl 1.0.2j
1 Github repository
5.9
CVSSv3
CVE-2016-0703
The get_client_master_key function in s2_srvr.c in the SSLv2 implementation in OpenSSL prior to 0.9.8zf, 1.0.0 prior to 1.0.0r, 1.0.1 prior to 1.0.1m, and 1.0.2 prior to 1.0.2a accepts a nonzero CLIENT-MASTER-KEY CLEAR-KEY-LENGTH value for an arbitrary cipher, which allows man-in...
Openssl Openssl
Openssl Openssl 1.0.0
Openssl Openssl 1.0.0a
Openssl Openssl 1.0.0b
Openssl Openssl 1.0.0c
Openssl Openssl 1.0.0d
Openssl Openssl 1.0.0e
Openssl Openssl 1.0.0f
Openssl Openssl 1.0.0g
Openssl Openssl 1.0.0h
Openssl Openssl 1.0.0i
Openssl Openssl 1.0.0j
2 Nmap scripts
5.9
CVSSv3
CVE-2016-0704
An oracle protection mechanism in the get_client_master_key function in s2_srvr.c in the SSLv2 implementation in OpenSSL prior to 0.9.8zf, 1.0.0 prior to 1.0.0r, 1.0.1 prior to 1.0.1m, and 1.0.2 prior to 1.0.2a overwrites incorrect MASTER-KEY bytes during use of export cipher sui...
Openssl Openssl
Openssl Openssl 1.0.0
Openssl Openssl 1.0.0a
Openssl Openssl 1.0.0b
Openssl Openssl 1.0.0c
Openssl Openssl 1.0.0d
Openssl Openssl 1.0.0e
Openssl Openssl 1.0.0f
Openssl Openssl 1.0.0g
Openssl Openssl 1.0.0h
Openssl Openssl 1.0.0i
Openssl Openssl 1.0.0j
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
local
IMAP
CVE-2024-8504
CVE-2024-42327
CVE-2024-11904
CVE-2024-47107
CVE-2024-53143
XML injection
CVE-2024-54750
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »