Openssl Vulnerabilidad

Cronología

El año pasado

Versión

1.0.2	71
1.0.1	60
0.9.8	55
1.0.0	48
1.0.1a	41

Contramedidas

Official Fix	260
Temporary Fix	0
Workaround	0
Unavailable	2
Not Defined	22

Explotabilidad

High	7
Functional	1
Proof-of-Concept	47
Unproven	56
Not Defined	173

Vector de acceso

Not Defined	0
Physical	0
Local	10
Adjacent	8
Network	266

Autenticación

Not Defined	0
High	0
Low	22
None	262

La interacción del usuario

Not Defined	0
Required	4
None	280

CVSSv3 Base

≤1	0
≤2	0
≤3	1
≤4	20
≤5	12
≤6	119
≤7	48
≤8	58
≤9	10
≤10	16

CVSSv3 Temp

≤1	0
≤2	0
≤3	3
≤4	18
≤5	46
≤6	93
≤7	79
≤8	21
≤9	13
≤10	11

VulDB

≤1	0
≤2	0
≤3	1
≤4	35
≤5	9
≤6	138
≤7	14
≤8	62
≤9	1
≤10	24

NVD

≤1	0
≤2	0
≤3	0
≤4	4
≤5	1
≤6	36
≤7	5
≤8	56
≤9	3
≤10	17

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	1
≤7	0
≤8	1
≤9	0
≤10	0

Proveedor

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Explotar día 0

<1k	0
<2k	3
<5k	4
<10k	13
<25k	192
<50k	52
<100k	18
≥100k	2

Explotar hoy

<1k	204
<2k	19
<5k	24
<10k	24
<25k	13
<50k	0
<100k	0
≥100k	0

Explotar el volumen del mercado

Affected Versions (243): 0.1, 0.2, 0.3, 0.4, 0.5, 0.5.1, 0.5.2, 0.5.3, 0.5.4, 0.5.5, 0.5.6, 0.5.7, 0.5.8, 0.5.9, 0.5.11, 0.5.12, 0.5.13, 0.5.14, 0.5.15, 0.5.16, 0.5.17, 0.5.18, 0.6, 0.7, 0.7.7-1, 0.8, 0.9, 0.9.1c, 0.9.2b, 0.9.3, 0.9.3a, 0.9.4, 0.9.5, 0.9.5a, 0.9.6, 0.9.6-15, 0.9.6a, 0.9.6b, 0.9.6b-3, 0.9.6c, 0.9.6d, 0.9.6e, 0.9.6f, 0.9.6g, 0.9.6h, 0.9.6i, 0.9.6j, 0.9.6k, 0.9.6l, 0.9.6m, 0.9.7, 0.9.7a, 0.9.7a-2, 0.9.7b, 0.9.7c, 0.9.7d, 0.9.7e, 0.9.7f, 0.9.7g, 0.9.7h, 0.9.7i, 0.9.7j, 0.9.7k, 0.9.7l, 0.9.8, 0.9.8a, 0.9.8b, 0.9.8c, 0.9.8d, 0.9.8e, 0.9.8f, 0.9.8f-4, 0.9.8g, 0.9.8h, 0.9.8i, 0.9.8j, 0.9.8k, 0.9.8l, 0.9.8m, 0.9.8n, 0.9.8o, 0.9.8p, 0.9.8q, 0.9.8r, 0.9.8s, 0.9.8t, 0.9.8u, 0.9.8v, 0.9.8w, 0.9.8za, 0.9.8zb, 0.9.8zc, 0.9.8zd, 0.9.8ze, 0.9.8zf, 0.9.8zg, 0.10.1, 0.10.2, 0.10.3, 0.10.4, 0.10.5, 0.10.6, 0.10.7, 0.10.8, 1, 1.0, 1.0.0a, 1.0.0b, 1.0.0c, 1.0.0d, 1.0.0e, 1.0.0f, 1.0.0g, 1.0.0h, 1.0.0i, 1.0.0j, 1.0.0k, 1.0.0l, 1.0.0m, 1.0.0n, 1.0.0o, 1.0.0p, 1.0.0q, 1.0.0r, 1.0.0s, 1.0.1, 1.0.1a, 1.0.1b, 1.0.1c, 1.0.1d, 1.0.1e, 1.0.1e-25.el7, 1.0.1f, 1.0.1g, 1.0.1h, 1.0.1i, 1.0.1j, 1.0.1k, 1.0.1l, 1.0.1m, 1.0.1n, 1.0.1o, 1.0.1p, 1.0.1q, 1.0.1r, 1.0.1s, 1.0.1t, 1.0.1u, 1.0.2, 1.0.2a, 1.0.2b, 1.0.2c, 1.0.2d, 1.0.2e, 1.0.2f, 1.0.2g, 1.0.2h, 1.0.2i, 1.0.2j, 1.0.2k, 1.0.2l, 1.0.2m, 1.0.2n, 1.0.2o, 1.0.2p, 1.0.2q, 1.0.2r, 1.0.2s, 1.0.2t, 1.0.2u, 1.0.2v, 1.0.2w, 1.0.2y, 1.0.2za, 1.0.2zb, 1.0.2zc, 1.0.2zd, 1.0.2ze, 1.0.2zf, 1.0.2zg, 1.0.2zh, 1.0.2zi, 1.1, 1.1.0a, 1.1.0b, 1.1.0c, 1.1.0d, 1.1.0e, 1.1.0f, 1.1.0g, 1.1.0h, 1.1.0i, 1.1.0j, 1.1.0k, 1.1.1, 1.1.1a, 1.1.1b, 1.1.1c, 1.1.1d, 1.1.1e, 1.1.1f, 1.1.1g, 1.1.1h, 1.1.1i, 1.1.1j, 1.1.1k, 1.1.1l, 1.1.1m, 1.1.1n, 1.1.1o, 1.1.1p, 1.1.1q, 1.1.1r, 1.1.1s, 1.1.1t, 1.1.1u, 1.1.1v, 1.1.1w, 1.1.2, 1.5, 2.0, 3, 3.0, 3.0.1, 3.0.2, 3.0.3, 3.0.4, 3.0.5, 3.0.6, 3.0.7, 3.0.8, 3.0.9, 3.0.11, 3.0.12, 3.0.13, 3.1, 3.1.1, 3.1.2, 3.1.3, 3.1.4, 3.1.5, 3.2, 3.2.1

Link to Product Website: https://www.openssl.org/

Tipo de software: Network Encryption Software

Fecha de publicación	Base	Temp	Vulnerabilidad	0day	Hoy	Exp	Con	CTI	CVE
2024-04-08	5.3	5.1	OpenSSL TLSv1.3 denegación de servicio	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2024-2511
2024-04-04	3.7	3.7	rust-openssl PKCS 1.5 RSA Encryption Padding Mode divulgación de información	$5k-$25k	$5k-$25k	Not Defined	Not Defined	0.00	CVE-2024-3296
2024-03-18	3.7	3.7	Crypt-OpenSSL-RSA PKCS#1 Padding Marvin Attack divulgación de información	$0-$5k	$0-$5k	Not Defined	Not Defined	0.04	CVE-2024-2467
2024-01-25	5.4	5.3	OpenSSL denegación de servicio	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.05	CVE-2024-0727
2024-01-15	5.3	5.1	OpenSSL RSA Public Key EVP_PKEY_public_check denegación de servicio	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.03	CVE-2023-6237
2024-01-09	6.0	5.9	OpenSSL POLY1305 MAC autenticación débil	$5k-$25k	$5k-$25k	Not Defined	Official Fix	0.06	CVE-2023-6129
2023-11-23	7.6	7.5	node-openssl escalada de privilegios	$5k-$25k	$5k-$25k	Not Defined	Not Defined	0.03	CVE-2023-49210
2023-11-06	5.3	5.2	OpenSSL X9.42 DH Keys dh_check.c DH_generate_key denegación de servicio	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2023-5678
2023-10-24	5.5	5.3	OpenSSL Length EVP_CipherInit_ex2 Privilege Escalation	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.03	CVE-2023-5363
2023-09-08	7.0	6.9	OpenSSL POLY1305 MAC poly1305-x86_64.pl escalada de privilegios	$5k-$25k	$5k-$25k	Not Defined	Official Fix	0.00	CVE-2023-4807
2023-07-31	5.3	5.2	OpenSSL DH Key dh_check.c DH_check denegación de servicio	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.02	CVE-2023-3817
2023-07-19	5.3	5.2	OpenSSL DH Key dh_check.c DH_check denegación de servicio	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.02	CVE-2023-3446
2023-07-14	5.5	5.4	OpenSSL AES-SIV Mode cipher_aes_siv.c siv_cipher autenticación débil	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.02	CVE-2023-2975
2023-05-30	5.6	5.5	OpenSSL ASN.1 Object Identifier Translation obj_dat.c OBJ_obj2txt denegación de servicio	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.03	CVE-2023-2650
2023-05-10	7.9	7.8	Intel QAT Engine for OpenSSL desbordamiento de búfer	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2022-43507
2023-04-20	5.6	5.5	OpenSSL AES-XTS aesv8-armx.pl denegación de servicio	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2023-1255
2023-03-28	5.5	5.4	OpenSSL Certificate Policy Check X509_VERIFY_PARAM_add0_policy autenticación débil	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2023-0466
2023-03-28	5.6	5.4	OpenSSL Leaf Certificate x509_vfy.c check_policy autenticación débil	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2023-0465
2023-03-22	5.3	5.2	OpenSSL X.509 Certificate X509_VERIFY_PARAM_set1_policies denegación de servicio	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.03	CVE-2023-0464
2023-02-07	6.4	6.3	OpenSSL PKCS7 Data Verification denegación de servicio	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.02	CVE-2023-0401
2023-02-07	6.4	6.3	OpenSSL DSA Public Key EVP_PKEY_public_check denegación de servicio	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2023-0217
2023-02-07	5.3	5.1	OpenSSL d2i_PKCS7_fp denegación de servicio	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2023-0216
2023-02-07	6.5	6.4	OpenSSL PEM File PEM_read_bio_ex desbordamiento de búfer	$5k-$25k	$5k-$25k	Not Defined	Official Fix	0.04	CVE-2022-4450
2023-02-07	6.5	6.4	OpenSSL ASN.1 Data BIO_new_NDEF desbordamiento de búfer	$5k-$25k	$5k-$25k	Not Defined	Official Fix	0.08	CVE-2023-0215
2023-02-07	5.6	5.4	OpenSSL X.509 Certificate Verification desbordamiento de búfer	$5k-$25k	$5k-$25k	Not Defined	Official Fix	0.00	CVE-2022-4203

259 no se muestran más entradas

🔒 Login Required

You need to signup and login to see more of the remaining 259 results.

◂ AnteriorVisión De ConjuntoPróximo ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!

Openssl Vulnerabilidad

Cronología

El año pasado

Versión

Contramedidas

Explotabilidad

Vector de acceso

Autenticación

La interacción del usuario

C3BM Index

El año pasado

CVSSv3 Base

CVSSv3 Temp

VulDB

NVD

CNA

Proveedor

Research

Explotar día 0

Explotar hoy

Explotar el volumen del mercado

El año pasado

🔴 CTI Ocupaciones

🔒 Login Required

Want to stay up to date on a daily basis?