OpenSSL Latest Vulnerabilities
Latest vulnerabilities published by openssl
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Man-in-the-Middle Vulnerability in OpenSSL Affecting Raw Public Key Authentication
CVE-2024-12797OpenSSLOpenSSLπΎπ°6.3MEDIUMECDSA Timing Side-Channel Vulnerability in OpenSSL Library
CVE-2024-13176OpenSSLOpenSSL4.1MEDIUMIncorrect Buffer Freedom in OpenSSL May Lead to Use After Free Vulnerability
CVE-2024-4741OpenSSLπ°Insecure Password Hash Retrieval via Injection into Logical Network
CVE-2024-8933OpenSSLOut-of-Bound Memory Reads or Writes in Low-Level GF(2^m) Elliptic Curve APIs
CVE-2024-9143OpenSSLOpenSSLπΎπ°Memory Access Issue in OpenSSL Affects Certificate Name Checks
CVE-2024-6119OpenSSLOpenSSLBuffer Overread in SSL_select_next_proto May Lead to Loss of Confidentiality
CVE-2024-5535OpenSSLOpenSSL9.1CRITICALExcessive delays in checking DSA keys or parameters may lead to Denial of Service attacks
CVE-2024-4603OpenSSLOpenSSLTiming-Based Side-Channel Flaw in PKCS#1v1.5 RSA Encryption Padding Mode Could Lead to Decryption
CVE-2024-2467perl-Crypt-OpenSS...Excessive time spent checking invalid RSA public keys
CVE-2023-6237OpenSSLOpenSSLUnbounded Memory Growth in TLSv1.3 Sessions Due to Non-Default Server Configurations
CVE-2024-2511OpenSSLOpenSSLOpenSSL Crashes Due to Maliciously Formatted PKCS12 Files
CVE-2024-0727OpenSSLOpenSSL5.5MEDIUMPOLY1305 MAC implementation corrupts vector registers on PowerPC
CVE-2023-6129OpenSSLOpenSSL6.5MEDIUMCommand Execution Vulnerability in OpenSSL NPM Package by OpenSSL
CVE-2023-49210Node-OpenSSL ProjectNode-OpenSSL9.8CRITICALExcessive time spent in DH check / generation with large Q parameter value
CVE-2023-5678OpenSSLOpenSSL5.3MEDIUMIncorrect cipher key & IV length processing
CVE-2023-5363OpenSSLOpenSSL7.5HIGHPOLY1305 MAC implementation corrupts XMM registers on Windows
CVE-2023-4807OpenSSLOpenSSL7.8HIGHExcessive time spent checking DH q parameter value
CVE-2023-3817OpenSSLOpenSSL5.3MEDIUMExcessive time spent checking DH keys and parameters
CVE-2023-3446OpenSSLOpenSSL5.3MEDIUMAES-SIV implementation ignores empty associated data entries
CVE-2023-2975OpenSSLOpenSSL5.3MEDIUMPossible DoS translating ASN.1 object identifiers
CVE-2023-2650OpenSSLOpenSSLπΎπ‘6.5MEDIUMInput buffer over-read in AES-XTS implementation on 64 bit ARM
CVE-2023-1255OpenSSLOpenSSL5.9MEDIUMCertificate policy check not enabled
CVE-2023-0466OpenSSLOpenSSL5.3MEDIUMInvalid certificate policies in leaf certificates are silently ignored
CVE-2023-0465OpenSSLOpenSSL5.3MEDIUMExcessive Resource Usage Verifying X.509 Policy Constraints
CVE-2023-0464OpenSSLOpenSSLπΎπ‘7.5HIGH