Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
openssl openssl 1.0.2b vulnerabilities and exploits
(subscribe to this query)
8.2
CVSSv3
CVE-2016-2176
The X509_NAME_oneline function in crypto/x509/x509_obj.c in OpenSSL prior to 1.0.1t and 1.0.2 prior to 1.0.2h allows remote malicious users to obtain sensitive information from process stack memory or cause a denial of service (buffer over-read) via crafted EBCDIC ASN.1 data.
Openssl Openssl
Openssl Openssl 1.0.2
Openssl Openssl 1.0.2a
Openssl Openssl 1.0.2b
Openssl Openssl 1.0.2c
Openssl Openssl 1.0.2d
Openssl Openssl 1.0.2e
Openssl Openssl 1.0.2f
Openssl Openssl 1.0.2g
1 Article
7.5
CVSSv3
CVE-2016-0798
Memory leak in the SRP_VBASE_get_by_user implementation in OpenSSL 1.0.1 prior to 1.0.1s and 1.0.2 prior to 1.0.2g allows remote malicious users to cause a denial of service (memory consumption) by providing an invalid username in a connection attempt, related to apps/s_server.c ...
Openssl Openssl 1.0.1
Openssl Openssl 1.0.1a
Openssl Openssl 1.0.1b
Openssl Openssl 1.0.1c
Openssl Openssl 1.0.1d
Openssl Openssl 1.0.1e
Openssl Openssl 1.0.1f
Openssl Openssl 1.0.1g
Openssl Openssl 1.0.1h
Openssl Openssl 1.0.1i
Openssl Openssl 1.0.1j
Openssl Openssl 1.0.1k
9.8
CVSSv3
CVE-2016-2842
The doapr_outch function in crypto/bio/b_print.c in OpenSSL 1.0.1 prior to 1.0.1s and 1.0.2 prior to 1.0.2g does not verify that a certain memory allocation succeeds, which allows remote malicious users to cause a denial of service (out-of-bounds write or memory consumption) or p...
Openssl Openssl 1.0.1
Openssl Openssl 1.0.1a
Openssl Openssl 1.0.1b
Openssl Openssl 1.0.1c
Openssl Openssl 1.0.1d
Openssl Openssl 1.0.1e
Openssl Openssl 1.0.1f
Openssl Openssl 1.0.1g
Openssl Openssl 1.0.1h
Openssl Openssl 1.0.1i
Openssl Openssl 1.0.1j
Openssl Openssl 1.0.1k
6.5
CVSSv3
CVE-2015-1793
The X509_verify_cert function in crypto/x509/x509_vfy.c in OpenSSL 1.0.1n, 1.0.1o, 1.0.2b, and 1.0.2c does not properly process X.509 Basic Constraints cA values during identification of alternative certificate chains, which allows remote malicious users to spoof a Certification ...
Oracle Supply Chain Products Suite 6.1.2.2
Oracle Supply Chain Products Suite 6.1.3.0
Oracle Supply Chain Products Suite 6.2.0
Oracle Jd Edwards Enterpriseone Tools 9.1
Oracle Jd Edwards Enterpriseone Tools 9.2
Openssl Openssl 1.0.1n
Openssl Openssl 1.0.1o
Openssl Openssl 1.0.2b
Openssl Openssl 1.0.2c
Oracle Opus 10g Ethernet Switch Family
1 EDB exploit
1 Article
9.8
CVSSv3
CVE-2016-0799
The fmtstr function in crypto/bio/b_print.c in OpenSSL 1.0.1 prior to 1.0.1s and 1.0.2 prior to 1.0.2g improperly calculates string lengths, which allows remote malicious users to cause a denial of service (overflow and out-of-bounds read) or possibly have unspecified other impac...
Openssl Openssl 1.0.1
Openssl Openssl 1.0.1a
Openssl Openssl 1.0.1b
Openssl Openssl 1.0.1c
Openssl Openssl 1.0.1d
Openssl Openssl 1.0.1e
Openssl Openssl 1.0.1f
Openssl Openssl 1.0.1g
Openssl Openssl 1.0.1h
Openssl Openssl 1.0.1i
Openssl Openssl 1.0.1j
Openssl Openssl 1.0.1k
5.9
CVSSv3
CVE-2016-0800
The SSLv2 protocol, as used in OpenSSL prior to 1.0.1s and 1.0.2 prior to 1.0.2g and other products, requires a server to send a ServerVerify message before establishing that a client possesses certain plaintext RSA data, which makes it easier for remote malicious users to decryp...
Openssl Openssl 1.0.1
Openssl Openssl 1.0.1a
Openssl Openssl 1.0.1b
Openssl Openssl 1.0.1c
Openssl Openssl 1.0.1d
Openssl Openssl 1.0.1e
Openssl Openssl 1.0.1f
Openssl Openssl 1.0.1g
Openssl Openssl 1.0.1h
Openssl Openssl 1.0.1i
Openssl Openssl 1.0.1j
Openssl Openssl 1.0.1k
2 Nmap scripts
1 Github repository
2 Articles
7.5
CVSSv3
CVE-2016-0797
Multiple integer overflows in OpenSSL 1.0.1 prior to 1.0.1s and 1.0.2 prior to 1.0.2g allow remote malicious users to cause a denial of service (heap memory corruption or NULL pointer dereference) or possibly have unspecified other impact via a long digit string that is mishandle...
Openssl Openssl 1.0.1
Openssl Openssl 1.0.1a
Openssl Openssl 1.0.1b
Openssl Openssl 1.0.1c
Openssl Openssl 1.0.1d
Openssl Openssl 1.0.1e
Openssl Openssl 1.0.1f
Openssl Openssl 1.0.1g
Openssl Openssl 1.0.1h
Openssl Openssl 1.0.1i
Openssl Openssl 1.0.1j
Openssl Openssl 1.0.1k
5.1
CVSSv3
CVE-2016-0702
The MOD_EXP_CTIME_COPY_FROM_PREBUF function in crypto/bn/bn_exp.c in OpenSSL 1.0.1 prior to 1.0.1s and 1.0.2 prior to 1.0.2g does not properly consider cache-bank access times during modular exponentiation, which makes it easier for local users to discover RSA keys by running a c...
Openssl Openssl 1.0.1
Openssl Openssl 1.0.1a
Openssl Openssl 1.0.1b
Openssl Openssl 1.0.1c
Openssl Openssl 1.0.1d
Openssl Openssl 1.0.1e
Openssl Openssl 1.0.1f
Openssl Openssl 1.0.1g
Openssl Openssl 1.0.1h
Openssl Openssl 1.0.1i
Openssl Openssl 1.0.1j
Openssl Openssl 1.0.1k
1 Github repository
5.3
CVSSv3
CVE-2023-3817
Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_check(), DH_check_ex() or EVP_PKEY_param_check() to check a DH key or DH parameters may experience long delays. Where the key or parameters that...
Openssl Openssl
Openssl Openssl 1.0.2
Openssl Openssl 1.0.2a
Openssl Openssl 1.0.2b
Openssl Openssl 1.0.2c
Openssl Openssl 1.0.2d
Openssl Openssl 1.0.2e
Openssl Openssl 1.0.2f
Openssl Openssl 1.0.2g
Openssl Openssl 1.0.2h
Openssl Openssl 1.0.2i
Openssl Openssl 1.0.2j
1 Github repository
NA
CVE-2015-1788
The BN_GF2m_mod_inv function in crypto/bn/bn_gf2m.c in OpenSSL prior to 0.9.8s, 1.0.0 prior to 1.0.0e, 1.0.1 prior to 1.0.1n, and 1.0.2 prior to 1.0.2b does not properly handle ECParameters structures in which the curve is over a malformed binary polynomial field, which allows re...
Openssl Openssl
Openssl Openssl 1.0.0
Openssl Openssl 1.0.0a
Openssl Openssl 1.0.0b
Openssl Openssl 1.0.0c
Openssl Openssl 1.0.0d
Openssl Openssl 1.0.0e
Openssl Openssl 1.0.0f
Openssl Openssl 1.0.0g
Openssl Openssl 1.0.0h
Openssl Openssl 1.0.0i
Openssl Openssl 1.0.0j
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
local
IMAP
CVE-2024-8504
CVE-2024-42327
CVE-2024-11904
CVE-2024-47107
CVE-2024-53143
XML injection
CVE-2024-54750
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »