openssl
298 tracked vulnerabilities.
CVE-2015-0288
OpenSSL < 0.9.8zf, 1.0.0 < 1.0.0r, 1.0.1 < 1.0.1m, 1.0.2 < 1.0.2a - Denial of Service via Invalid Certificate Key
Mar 19, 2015
EPSS 0.09
CVE-2015-0287
OpenSSL < 0.9.8zf, 1.0.0 < 1.0.0r, 1.0.1 < 1.0.1m, 1.0.2 < 1.0.2a - Denial of Service via ASN1 Structure Reuse
Mar 19, 2015
EPSS 0.08
CVE-2015-0286
OpenSSL < 0.9.8zf 1.0.0 < 1.0.0r 1.0.1 < 1.0.1m 1.0.2 < 1.0.2a - Denial of Service via ASN1_TYPE_cmp Boolean Comparison
Mar 19, 2015
EPSS 0.21
CVE-2015-0285
OpenSSL 1.0.2 - Remote Brute-Force Attack via Unseeded PRNG in SSL Handshake
Mar 19, 2015
EPSS 0.06
CVE-2015-0209
OpenSSL < 0.9.8zf, 1.0.0 < 1.0.0r, 1.0.1 < 1.0.1m, 1.0.2 < 1.0.2a - Use-After-Free in EC Private Key Import
Mar 19, 2015
EPSS 0.16
CVE-2015-0208
OpenSSL 1.0.2 - Denial of Service via RSA PSS Parameter Handling
Mar 19, 2015
EPSS 0.33
CVE-2015-0207
OpenSSL 1.0.2 - Denial of Service via DTLS State Isolation Failure
Mar 19, 2015
EPSS 0.07
CVE-2015-0206
OpenSSL 1.0.0-1.0.0o and 1.0.1-1.0.1j - Denial of Service via Duplicate DTLS Records
Jan 09, 2015
EPSS 0.59
CVE-2015-0205
OpenSSL 1.0.0-1.0.0o and 1.0.1-1.0.1j - Unauthenticated Access via Missing CertificateVerify in DH Authentication
Jan 09, 2015
EPSS 0.25
CVE-2015-0204
OpenSSL < 0.9.8zd, 1.0.0 < 1.0.0p, 1.0.1 < 1.0.1k - RSA-to-EXPORT_RSA Downgrade Attack via Weak Ephemeral RSA Key
Jan 09, 2015
EPSS 0.99
CVE-2014-8176
OpenSSL < 0.9.8za, 1.0.0 < 1.0.0m, 1.0.1 < 1.0.1h - Denial of Service via DTLS ChangeCipherSpec Handling
Jun 12, 2015
EPSS 0.17
CVE-2014-8275
OpenSSL < 0.9.8zd 1.0.0 < 1.0.0p 1.0.1 < 1.0.1k - Certificate Blacklist Bypass via Unsigned Certificate Data
Jan 09, 2015
EPSS 0.17
CVE-2014-3572
OpenSSL < 0.9.8zd, 1.0.0 < 1.0.0p, 1.0.1 < 1.0.1k - Loss of Forward Secrecy via ECDHE-to-ECDH Downgrade
Jan 09, 2015
EPSS 0.07
CVE-2014-3571
OpenSSL < 0.9.8zd 1.0.0 < 1.0.0p 1.0.1 < 1.0.1k - Denial of Service via DTLS Handshake Header Processing
Jan 09, 2015
EPSS 0.23
CVE-2014-3570
OpenSSL < 0.9.8zd, 1.0.0 < 1.0.0p, 1.0.1 < 1.0.1k - Cryptographic Protection Bypass via BN_sqr BIGNUM Calculation
Jan 09, 2015
EPSS 0.21
CVE-2014-3569
OpenSSL 0.9.8zc, 1.0.0o, 1.0.1j - Denial of Service via SSLv3 Handshake to no-ssl3 Application
Dec 24, 2014
EPSS 0.21
CVE-2014-3568
OpenSSL < 0.9.8zc, 1.0.0 < 1.0.0o, 1.0.1 < 1.0.1j - SSL 3.0 Handshake Access Bypass
Oct 19, 2014
EPSS 0.14
CVE-2014-3567
OpenSSL < 0.9.8zb - Denial of Service via Session Ticket Integrity Check Failure
Oct 19, 2014
EPSS 0.24
CVE-2014-3513
OpenSSL 1.0.1 - Denial of Service via DTLS SRTP Handshake Message
Oct 19, 2014
EPSS 0.37
CVE-2014-3566
LOW
SSL/TLS Version Detection
Oct 15, 2014
CVSS 3.4
EPSS 1.00
CVE-2014-5139
OpenSSL 1.0.1 - Denial of Service via SRP Ciphersuite ServerHello Message
Aug 13, 2014
EPSS 0.20
CVE-2014-3512
OpenSSL 1.0.1 - Buffer Overflow in SRP Parameter Handling
Aug 13, 2014
EPSS 0.74
CVE-2014-3511
OpenSSL 1.0.1 - Protocol Downgrade via ClientHello Message Fragmentation
Aug 13, 2014
EPSS 0.13
CVE-2014-3510
OpenSSL 0.9.8-0.9.8za 1.0.0-1.0.0m 1.0.1-1.0.1h - Denial of Service via DTLS Handshake Message
Aug 13, 2014
EPSS 0.17
CVE-2014-3509
OpenSSL 1.0.0-1.0.0m and 1.0.1-1.0.1h - Denial of Service via EC Supported Point Formats Extension Race Condition
Aug 13, 2014
EPSS 0.13
Products
Quick Filters