Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
matrixssl vulnerabilities and exploits
(subscribe to this query)
5.9
CVSSv3
CVE-2016-6887
The pstm_exptmod function in MatrixSSL 3.8.6 and previous versions does not properly perform modular exponentiation, which might allow remote malicious users to predict the secret key via a CRT attack.
Matrixssl Matrixssl
9.8
CVSSv3
CVE-2016-6890
Heap-based buffer overflow in MatrixSSL prior to 3.8.6 allows remote malicious users to execute arbitrary code via a crafted Subject Alt Name in an X.509 certificate.
Matrixssl Matrixssl
7.5
CVSSv3
CVE-2016-6891
MatrixSSL prior to 3.8.6 allows remote malicious users to cause a denial of service (out-of-bounds read) via a crafted ASN.1 Bit Field primitive in an X.509 certificate.
Matrixssl Matrixssl
7.5
CVSSv3
CVE-2016-6892
The x509FreeExtensions function in MatrixSSL prior to 3.8.6 allows remote malicious users to cause a denial of service (free of unallocated memory) via a crafted X.509 certificate.
Matrixssl Matrixssl
NA
CVE-2004-2681
PeerSec MatrixSSL prior to 1.1 caches session keys for an indefinitely long time, which might make it easier for remote malicious users to hijack a session.
Peersec Networks Matrixssl
NA
CVE-2004-2682
PeerSec MatrixSSL prior to 1.1 does not implement RSA blinding, which allows context-dependent malicious users to obtain the server's private key by determining factors using timing differences on (1) the number of extra reductions during Montgomery reduction, and (2) the us...
Peersec Networks Matrixssl
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3