openssl

298 tracked vulnerabilities.

CVE-2005-2969
OpenSSL <0.9.7h-0.9.8a - Protocol Version Rollback
Oct 18, 2005
EPSS 0.05
CVE-2005-2946 HIGH
OpenSSL < 0.9.8 - Use of a Broken or Risky Cryptographic Algorithm
Sep 16, 2005
CVSS 7.5
EPSS 0.01
CVE-2005-1797
OpenSSL - Timing Attack on AES S-box Lookups
May 26, 2005
EPSS 0.01
CVE-2004-0975
Trustix Secure Linux <2.1 - Local File Overwrite
Feb 09, 2005
EPSS 0.00
CVE-2004-0079 HIGH
Cisco Firewall Services Module - NULL Pointer Dereference
Nov 23, 2004
CVSS 7.5
EPSS 0.10
CVE-2004-0081
Cisco Firewall Services Module - Denial of Service
Nov 23, 2004
EPSS 0.07
CVE-2004-0112
Avaya Vsu - Out-of-Bounds Read
Nov 23, 2004
EPSS 0.10
CVE-2003-0851
OpenSSL 0.9.6k - DoS
Dec 01, 2003
EPSS 0.05
CVE-2003-0543
OpenSSL 0.9.6 and 0.9.7 - Denial of Service via ASN.1 Tag Integer Overflow
Nov 17, 2003
EPSS 0.25
CVE-2003-0544
OpenSSL 0.9.6 and 0.9.7 - Denial of Service via ASN.1 Input Buffer Overflow
Nov 17, 2003
EPSS 0.06
CVE-2003-0545 CRITICAL
OpenSSL 0.9.7 - Double Free via Invalid ASN.1 Encoding in SSL Client Certificate
Nov 17, 2003
CVSS 9.8
EPSS 0.85
CVE-2003-0147
OpenSSL - Info Disclosure
Mar 31, 2003
EPSS 0.06
CVE-2003-0131
OpenSSL 0.9.6i and earlier, 0.9.7, 0.9.7a - Unauthorized RSA Private Key Operation via Klima-Pokorny-Rosa Attack
Mar 24, 2003
EPSS 0.06
CVE-2003-0078
OpenSSL < 0.9.7a and 0.9.6 < 0.9.6i - Timing Side-Channel Attack via Incorrect Block Cipher Padding
Mar 03, 2003
EPSS 0.14
CVE-2002-1568
OpenSSL 0.9.6e - Denial of Service via SSLv2 CLIENT_MASTER_KEY Assertion Failure
Nov 17, 2003
EPSS 0.03
CVE-2002-0655
OpenSSL 0.9.6d and earlier, 0.9.7-beta2 and earlier - Denial of Service and Possible Remote Code Execution
Aug 12, 2002
EPSS 0.08
CVE-2002-0656
OpenSSL 0.9.6d and earlier, 0.9.7-beta2 and earlier - Remote Code Execution via Large Client Master Key or Session ID
Aug 12, 2002
EPSS 0.90
CVE-2002-0657
OpenSSL 0.9.7 - Buffer Overflow via Long Master Key with Kerberos Enabled
Aug 12, 2002
EPSS 0.09
CVE-2002-0659
OpenSSL 0.9.6d and earlier, 0.9.7-beta2 and earlier - Denial of Service via Invalid ASN1 Encodings
Aug 12, 2002
EPSS 0.36
CVE-2001-1141
OpenSSL - PRNG State Exposure via Small Output Requests
Jul 10, 2001
EPSS 0.05
CVE-2000-1254 HIGH
OpenSSL < 0.9.6 - RSA Key Generation Weakness on 64-bit HP-UX
May 05, 2016
CVSS 7.5
EPSS 0.03
CVE-2000-0535
OpenSSL 0.9.4 - Weak Key Generation on FreeBSD Alpha Systems
Jun 12, 2000
EPSS 0.01
CVE-1999-0428
OpenSSL < 0.9.2b - Session Fixation
Mar 22, 1999
EPSS 0.03