Openssl Vulnerabilità

Sequenza temporale

L'anno scorso

Versione

1.0.271
1.0.160
0.9.855
1.0.048
1.0.1a41

Contromisure

Official Fix260
Temporary Fix0
Workaround0
Unavailable2
Not Defined22

Sfruttabilità

High7
Functional1
Proof-of-Concept47
Unproven56
Not Defined173

Accesso al vettore

Not Defined0
Physical0
Local10
Adjacent8
Network266

Autenticazione

Not Defined0
High0
Low22
None262

Interazione dell'utente

Not Defined0
Required4
None280

C3BM Index

L'anno scorso

CVSSv3 Base

≤10
≤20
≤31
≤420
≤512
≤6119
≤748
≤858
≤910
≤1016

CVSSv3 Temp

≤10
≤20
≤33
≤418
≤546
≤693
≤779
≤821
≤913
≤1011

VulDB

≤10
≤20
≤31
≤435
≤59
≤6138
≤714
≤862
≤91
≤1024

NVD

≤10
≤20
≤30
≤44
≤51
≤636
≤75
≤856
≤93
≤1017

CNA

≤10
≤20
≤30
≤40
≤50
≤61
≤70
≤81
≤90
≤100

Fornitore

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k0
<2k3
<5k4
<10k13
<25k192
<50k52
<100k18
≥100k2

Exploiter aujourd'hui

<1k204
<2k20
<5k24
<10k23
<25k13
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

L'anno scorso

🔴 CTI Attività

Affected Versions (243): 0.1, 0.2, 0.3, 0.4, 0.5, 0.5.1, 0.5.2, 0.5.3, 0.5.4, 0.5.5, 0.5.6, 0.5.7, 0.5.8, 0.5.9, 0.5.11, 0.5.12, 0.5.13, 0.5.14, 0.5.15, 0.5.16, 0.5.17, 0.5.18, 0.6, 0.7, 0.7.7-1, 0.8, 0.9, 0.9.1c, 0.9.2b, 0.9.3, 0.9.3a, 0.9.4, 0.9.5, 0.9.5a, 0.9.6, 0.9.6-15, 0.9.6a, 0.9.6b, 0.9.6b-3, 0.9.6c, 0.9.6d, 0.9.6e, 0.9.6f, 0.9.6g, 0.9.6h, 0.9.6i, 0.9.6j, 0.9.6k, 0.9.6l, 0.9.6m, 0.9.7, 0.9.7a, 0.9.7a-2, 0.9.7b, 0.9.7c, 0.9.7d, 0.9.7e, 0.9.7f, 0.9.7g, 0.9.7h, 0.9.7i, 0.9.7j, 0.9.7k, 0.9.7l, 0.9.8, 0.9.8a, 0.9.8b, 0.9.8c, 0.9.8d, 0.9.8e, 0.9.8f, 0.9.8f-4, 0.9.8g, 0.9.8h, 0.9.8i, 0.9.8j, 0.9.8k, 0.9.8l, 0.9.8m, 0.9.8n, 0.9.8o, 0.9.8p, 0.9.8q, 0.9.8r, 0.9.8s, 0.9.8t, 0.9.8u, 0.9.8v, 0.9.8w, 0.9.8za, 0.9.8zb, 0.9.8zc, 0.9.8zd, 0.9.8ze, 0.9.8zf, 0.9.8zg, 0.10.1, 0.10.2, 0.10.3, 0.10.4, 0.10.5, 0.10.6, 0.10.7, 0.10.8, 1, 1.0, 1.0.0a, 1.0.0b, 1.0.0c, 1.0.0d, 1.0.0e, 1.0.0f, 1.0.0g, 1.0.0h, 1.0.0i, 1.0.0j, 1.0.0k, 1.0.0l, 1.0.0m, 1.0.0n, 1.0.0o, 1.0.0p, 1.0.0q, 1.0.0r, 1.0.0s, 1.0.1, 1.0.1a, 1.0.1b, 1.0.1c, 1.0.1d, 1.0.1e, 1.0.1e-25.el7, 1.0.1f, 1.0.1g, 1.0.1h, 1.0.1i, 1.0.1j, 1.0.1k, 1.0.1l, 1.0.1m, 1.0.1n, 1.0.1o, 1.0.1p, 1.0.1q, 1.0.1r, 1.0.1s, 1.0.1t, 1.0.1u, 1.0.2, 1.0.2a, 1.0.2b, 1.0.2c, 1.0.2d, 1.0.2e, 1.0.2f, 1.0.2g, 1.0.2h, 1.0.2i, 1.0.2j, 1.0.2k, 1.0.2l, 1.0.2m, 1.0.2n, 1.0.2o, 1.0.2p, 1.0.2q, 1.0.2r, 1.0.2s, 1.0.2t, 1.0.2u, 1.0.2v, 1.0.2w, 1.0.2y, 1.0.2za, 1.0.2zb, 1.0.2zc, 1.0.2zd, 1.0.2ze, 1.0.2zf, 1.0.2zg, 1.0.2zh, 1.0.2zi, 1.1, 1.1.0a, 1.1.0b, 1.1.0c, 1.1.0d, 1.1.0e, 1.1.0f, 1.1.0g, 1.1.0h, 1.1.0i, 1.1.0j, 1.1.0k, 1.1.1, 1.1.1a, 1.1.1b, 1.1.1c, 1.1.1d, 1.1.1e, 1.1.1f, 1.1.1g, 1.1.1h, 1.1.1i, 1.1.1j, 1.1.1k, 1.1.1l, 1.1.1m, 1.1.1n, 1.1.1o, 1.1.1p, 1.1.1q, 1.1.1r, 1.1.1s, 1.1.1t, 1.1.1u, 1.1.1v, 1.1.1w, 1.1.2, 1.5, 2.0, 3, 3.0, 3.0.1, 3.0.2, 3.0.3, 3.0.4, 3.0.5, 3.0.6, 3.0.7, 3.0.8, 3.0.9, 3.0.11, 3.0.12, 3.0.13, 3.1, 3.1.1, 3.1.2, 3.1.3, 3.1.4, 3.1.5, 3.2, 3.2.1

Link to Product Website: https://www.openssl.org/

Tipo di software: Network Encryption Software

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
08/04/20245.35.1OpenSSL TLSv1.3 denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2024-2511
04/04/20243.73.7rust-openssl PKCS 1.5 RSA Encryption Padding Mode rivelazione di un 'informazione$5k-$25k$5k-$25kNot DefinedNot Defined0.00CVE-2024-3296
18/03/20243.73.7Crypt-OpenSSL-RSA PKCS#1 Padding Marvin Attack rivelazione di un 'informazione$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2024-2467
25/01/20245.45.3OpenSSL denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2024-0727
15/01/20245.35.1OpenSSL RSA Public Key EVP_PKEY_public_check denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2023-6237
09/01/20246.05.9OpenSSL POLY1305 MAC autenticazione debole$5k-$25k$5k-$25kNot DefinedOfficial Fix0.06CVE-2023-6129
23/11/20237.67.5node-openssl escalazione di privilegi$5k-$25k$5k-$25kNot DefinedNot Defined0.03CVE-2023-49210
06/11/20235.35.2OpenSSL X9.42 DH Keys dh_check.c DH_generate_key denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-5678
24/10/20235.55.3OpenSSL Length EVP_CipherInit_ex2 Privilege Escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2023-5363
08/09/20237.06.9OpenSSL POLY1305 MAC poly1305-x86_64.pl escalazione di privilegi$5k-$25k$5k-$25kNot DefinedOfficial Fix0.00CVE-2023-4807
31/07/20235.35.2OpenSSL DH Key dh_check.c DH_check denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-3817
19/07/20235.35.2OpenSSL DH Key dh_check.c DH_check denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-3446
14/07/20235.55.4OpenSSL AES-SIV Mode cipher_aes_siv.c siv_cipher autenticazione debole$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-2975
30/05/20235.65.5OpenSSL ASN.1 Object Identifier Translation obj_dat.c OBJ_obj2txt denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2023-2650
10/05/20237.97.8Intel QAT Engine for OpenSSL buffer overflow$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-43507
20/04/20235.65.5OpenSSL AES-XTS aesv8-armx.pl denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-1255
28/03/20235.55.4OpenSSL Certificate Policy Check X509_VERIFY_PARAM_add0_policy autenticazione debole$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-0466
28/03/20235.65.4OpenSSL Leaf Certificate x509_vfy.c check_policy autenticazione debole$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-0465
22/03/20235.35.2OpenSSL X.509 Certificate X509_VERIFY_PARAM_set1_policies denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2023-0464
07/02/20236.46.3OpenSSL PKCS7 Data Verification denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-0401
07/02/20236.46.3OpenSSL DSA Public Key EVP_PKEY_public_check denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-0217
07/02/20235.35.1OpenSSL d2i_PKCS7_fp denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-0216
07/02/20236.56.4OpenSSL PEM File PEM_read_bio_ex buffer overflow$5k-$25k$5k-$25kNot DefinedOfficial Fix0.04CVE-2022-4450
07/02/20236.56.4OpenSSL ASN.1 Data BIO_new_NDEF buffer overflow$5k-$25k$5k-$25kNot DefinedOfficial Fix0.08CVE-2023-0215
07/02/20235.65.4OpenSSL X.509 Certificate Verification buffer overflow$5k-$25k$5k-$25kNot DefinedOfficial Fix0.00CVE-2022-4203

259 non vengono visualizzate più voci

🔒 Login Required

You need to signup and login to see more of the remaining 259 results.

PrecedenteVisione D'insiemeIl prossimo

Do you need the next level of professionalism?

Upgrade your account now!