exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2024-53846

7 месяцев назад

OTP is a set of Erlang libraries, which consists of the Erlang runtime system, a number of ready-to-use components mainly written in Erlang, and a set of design principles for Erlang programs. A regression was introduced into the ssl application of OTP starting at OTP-25.3.2.8, OTP-26.2, and OTP-27.0, resulting in a server or client verifying the peer when incorrect extended key usage is presented (i.e., a server will verify a client if they have server auth ext key usage and vice versa).

CVSS3: 5.5

EPSS: Низкий

CVE-2024-53846

7 месяцев назад

OTP is a set of Erlang libraries, which consists of the Erlang runtime system, a number of ready-to-use components mainly written in Erlang, and a set of design principles for Erlang programs. A regression was introduced into the ssl application of OTP starting at OTP-25.3.2.8, OTP-26.2, and OTP-27.0, resulting in a server or client verifying the peer when incorrect extended key usage is presented (i.e., a server will verify a client if they have server auth ext key usage and vice versa).

CVSS3: 5.5

EPSS: Низкий

CVE-2024-53846

6 месяцев назад

CVSS3: 5.5

EPSS: Низкий

ROS-20250110-09

5 месяцев назад

Уязвимость erlang

CVSS3: 5.5

EPSS: Низкий

BDU:2025-00339

7 месяцев назад

Уязвимость набора библиотек OTP языка программирования Erlang, позволяющая нарушителю проводить атаки типа "человек по середине"

CVSS3: 5.5

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2024-53846 OTP is a set of Erlang libraries, which consists of the Erlang runtime system, a number of ready-to-use components mainly written in Erlang, and a set of design principles for Erlang programs. A regression was introduced into the ssl application of OTP starting at OTP-25.3.2.8, OTP-26.2, and OTP-27.0, resulting in a server or client verifying the peer when incorrect extended key usage is presented (i.e., a server will verify a client if they have server auth ext key usage and vice versa).	CVSS3: 5.5	0% Низкий	7 месяцев назад
CVE-2024-53846 OTP is a set of Erlang libraries, which consists of the Erlang runtime system, a number of ready-to-use components mainly written in Erlang, and a set of design principles for Erlang programs. A regression was introduced into the ssl application of OTP starting at OTP-25.3.2.8, OTP-26.2, and OTP-27.0, resulting in a server or client verifying the peer when incorrect extended key usage is presented (i.e., a server will verify a client if they have server auth ext key usage and vice versa).	CVSS3: 5.5	0% Низкий	7 месяцев назад
CVE-2024-53846	CVSS3: 5.5	0% Низкий	6 месяцев назад
ROS-20250110-09 Уязвимость erlang	CVSS3: 5.5	0% Низкий	5 месяцев назад
BDU:2025-00339 Уязвимость набора библиотек OTP языка программирования Erlang, позволяющая нарушителю проводить атаки типа "человек по середине"	CVSS3: 5.5	0% Низкий	7 месяцев назад

Уязвимостей на страницу