Vulnerabilidades en OpenSSL
117 resultadosCVE-2022-2068CRITICALThe c_rehash script allows command injectionEPSS 95.8%CVE-2022-3786HIGHX.509 Email Address Variable Length Buffer OverflowEPSS 91.2%CVE-2022-3602HIGHX.509 Email Address 4-byte Buffer OverflowEPSS 89.8%CVE-2021-3711—SM2 Decryption Buffer OverflowEPSS 87.8%CVE-2022-1292CRITICALThe c_rehash script allows command injectionEPSS 83.6%CVE-2023-2650MEDIUMPossible DoS translating ASN.1 object identifiersEPSS 77.9%CVE-2022-0778HIGHInfinite loop in BN_mod_sqrt() reachable when parsing certificatesEPSS 70.6%CVE-2024-6119HIGHPossible denial of service in X.509 name checksEPSS 66.6%CVE-2021-3449—NULL pointer deref in signature_algorithms processingEPSS 63.5%CVE-2023-0286HIGHX.400 address type confusion in X.509 GeneralNameEPSS 59.5%CVE-2017-3731—Truncated packet could crash via OOB readEPSS 57.6%CVE-2017-3730—Bad (EC)DHE parameters cause a client crashEPSS 55.3%CVE-2024-2511MEDIUMUnbounded memory growth with session handling in TLSv1.3EPSS 54.0%CVE-2020-1967—Segmentation fault in SSL_check_chainEPSS 53.3%CVE-2021-23840HIGHInteger overflow in CipherUpdateEPSS 50.7%CVE-2021-3712HIGHRead buffer overruns processing ASN.1 stringsEPSS 50.4%CVE-2021-4044—Invalid handling of X509_verify_cert() internal errors in libsslEPSS 50.1%CVE-2018-0732—Client DoS due to large DH parameterEPSS 49.3%CVE-2025-15467HIGHStack buffer overflow in CMS (Auth)EnvelopedData parsingEPSS 48.7%CVE-2016-8610—A denial of service flaw was found in OpenSSL 0.9.8, 1.0.1, 1.0.2 through 1.0.2h, and 1.1.0 in the way the TLS/SSL protocol defined processiEPSS 39.7%