Vulnerabilidades en OpenSSL
117 resultadosCVE-2023-3446MEDIUMExcessive time spent checking DH keys and parametersEPSS 5.5%CVE-2020-1968LOWRaccoon attackEPSS 4.8%CVE-2018-0735—Timing attack against ECDSA signature generationEPSS 4.7%CVE-2023-0215HIGHUse-after-free following BIO_new_NDEFEPSS 4.5%CVE-2023-5678MEDIUMExcessive time spent in DH check / generation with large Q parameter valueEPSS 4.5%CVE-2019-1563—Padding Oracle in PKCS7_dataDecode and CMS_decrypt_set1_pkeyEPSS 3.8%CVE-2021-4160—BN_mod_exp may produce incorrect results on MIPSEPSS 3.8%CVE-2023-0464HIGHExcessive Resource Usage Verifying X.509 Policy ConstraintsEPSS 3.7%CVE-2023-5363HIGHIncorrect cipher key & IV length processingEPSS 3.3%CVE-2024-0727MEDIUMPKCS12 Decoding crashesEPSS 3.2%CVE-2021-23839—Incorrect SSLv2 rollback protectionEPSS 3.0%CVE-2024-4741HIGHUse After Free with SSL_free_buffersEPSS 2.9%CVE-2022-3358—Using a Custom Cipher with NID_undef may lead to NULL encryptionEPSS 2.9%CVE-2023-3817MEDIUMExcessive time spent checking DH q parameter valueEPSS 2.6%CVE-2011-4121—The OpenSSL extension of Ruby (Git trunk) versions after 2011-09-01 up to 2011-11-03 always generated an exponent value of '1' to be used foEPSS 2.5%CVE-2024-12797MEDIUMRFC7250 handshakes with unauthenticated servers don't abort as expectedEPSS 2.4%CVE-2023-6129MEDIUMPOLY1305 MAC implementation corrupts vector registers on PowerPCEPSS 2.3%CVE-2023-6237MEDIUMExcessive time spent checking invalid RSA public keysEPSS 2.3%CVE-2026-45447HIGHHeap Use-After-Free in the PKCS7_verify() FunctionEPSS 2.3%CVE-2025-9231MEDIUMTiming side-channel in SM2 algorithm on 64 bit ARMEPSS 2.3%