Количество 37
Количество 37
CVE-2013-0169
The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as used in OpenSSL, OpenJDK, PolarSSL, and other products, do not properly consider timing side-channel attacks on a MAC check requirement during the processing of malformed CBC padding, which allows remote attackers to conduct distinguishing attacks and plaintext-recovery attacks via statistical analysis of timing data for crafted packets, aka the "Lucky Thirteen" issue.
CVE-2013-0169
The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as used in OpenSSL, OpenJDK, PolarSSL, and other products, do not properly consider timing side-channel attacks on a MAC check requirement during the processing of malformed CBC padding, which allows remote attackers to conduct distinguishing attacks and plaintext-recovery attacks via statistical analysis of timing data for crafted packets, aka the "Lucky Thirteen" issue.
CVE-2013-0169
The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as use ...
GHSA-vjwx-g4g2-r336
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 13 and earlier, 6 Update 39 and earlier, and 5.0 Update 39 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX.
GHSA-pg96-42c4-p633
The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as used in OpenSSL, OpenJDK, PolarSSL, and other products, do not properly consider timing side-channel attacks on a MAC check requirement during the processing of malformed CBC padding, which allows remote attackers to conduct distinguishing attacks and plaintext-recovery attacks via statistical analysis of timing data for crafted packets, aka the "Lucky Thirteen" issue.
ELSA-2013-0587
ELSA-2013-0587: openssl security update (MODERATE)
BDU:2015-09702
Уязвимости операционной системы Gentoo Linux, позволяющие удаленному злоумышленнику нарушить доступность защищаемой информации
SUSE-SU-2015:1086-1
Security update for IBM Java 6
SUSE-SU-2015:0392-1
Security update for IBM Java 6
SUSE-SU-2015:1183-1
Security update for compat-openssl097g
SUSE-SU-2015:0578-1
Security update for compat-openssl097g
SUSE-SU-2015:0543-1
Security update for compat-openssl097g
SUSE-SU-2015:0182-2
Security update for compat-openssl097g
SUSE-SU-2015:1184-2
Security update for OpenSSL
SUSE-SU-2015:0545-1
Security update for OpenSSL
openSUSE-SU-2016:0640-1
Security update for libopenssl0_9_8
SUSE-SU-2015:1184-1
Security update for OpenSSL
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2013-0169 The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as used in OpenSSL, OpenJDK, PolarSSL, and other products, do not properly consider timing side-channel attacks on a MAC check requirement during the processing of malformed CBC padding, which allows remote attackers to conduct distinguishing attacks and plaintext-recovery attacks via statistical analysis of timing data for crafted packets, aka the "Lucky Thirteen" issue. | CVSS2: 5.1 | 1% Низкий | больше 12 лет назад |
 | CVE-2013-0169 The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as used in OpenSSL, OpenJDK, PolarSSL, and other products, do not properly consider timing side-channel attacks on a MAC check requirement during the processing of malformed CBC padding, which allows remote attackers to conduct distinguishing attacks and plaintext-recovery attacks via statistical analysis of timing data for crafted packets, aka the "Lucky Thirteen" issue. | CVSS2: 2.6 | 1% Низкий | больше 12 лет назад |
| CVE-2013-0169 The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as use ... | CVSS2: 2.6 | 1% Низкий | больше 12 лет назад |
| GHSA-vjwx-g4g2-r336 Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 13 and earlier, 6 Update 39 and earlier, and 5.0 Update 39 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX. | 1% Низкий | около 3 лет назад | |
| GHSA-pg96-42c4-p633 The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as used in OpenSSL, OpenJDK, PolarSSL, and other products, do not properly consider timing side-channel attacks on a MAC check requirement during the processing of malformed CBC padding, which allows remote attackers to conduct distinguishing attacks and plaintext-recovery attacks via statistical analysis of timing data for crafted packets, aka the "Lucky Thirteen" issue. | 1% Низкий | около 3 лет назад | |
| ELSA-2013-0587 ELSA-2013-0587: openssl security update (MODERATE) | больше 12 лет назад | ||
 | BDU:2015-09702 Уязвимости операционной системы Gentoo Linux, позволяющие удаленному злоумышленнику нарушить доступность защищаемой информации | CVSS2: 4.3 | больше 11 лет назад | |
 | SUSE-SU-2015:1086-1 Security update for IBM Java 6 | больше 11 лет назад | ||
| SUSE-SU-2015:0392-1 Security update for IBM Java 6 | больше 11 лет назад | ||
| SUSE-SU-2015:1183-1 Security update for compat-openssl097g | почти 13 лет назад | ||
| SUSE-SU-2015:0578-1 Security update for compat-openssl097g | почти 13 лет назад | ||
| SUSE-SU-2015:0543-1 Security update for compat-openssl097g | почти 13 лет назад | ||
| SUSE-SU-2015:0182-2 Security update for compat-openssl097g | почти 13 лет назад | ||
| SUSE-SU-2015:1184-2 Security update for OpenSSL | около 12 лет назад | ||
| SUSE-SU-2015:0545-1 Security update for OpenSSL | около 12 лет назад | ||
| openSUSE-SU-2016:0640-1 Security update for libopenssl0_9_8 | больше 9 лет назад | ||
| SUSE-SU-2015:1184-1 Security update for OpenSSL | больше 10 лет назад |
Уязвимостей на страницу