Vulnerabilities (CVE)

Filtered by vendor Hp Subscribe

Filtered by product Icewall Mcrp

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2016-2182	3 Hp, Openssl, Oracle	6 Icewall Federation Agent, Icewall Mcrp, Icewall Sso and 3 more	2021-11-17	7.5 HIGH	9.8 CRITICAL
The BN_bn2dec function in crypto/bn/bn_print.c in OpenSSL before 1.1.0 does not properly validate division results, which allows remote attackers to cause a denial of service (out-of-bounds write and application crash) or possibly have unspecified other impact via unknown vectors.
CVE-2016-2177	3 Hp, Openssl, Oracle	6 Icewall Mcrp, Icewall Sso, Icewall Sso Agent Option and 3 more	2021-11-17	7.5 HIGH	9.8 CRITICAL
OpenSSL through 1.0.2h incorrectly uses pointer arithmetic for heap-buffer boundary checks, which might allow remote attackers to cause a denial of service (integer overflow and application crash) or possibly have unspecified other impact by leveraging unexpected malloc behavior, related to s3_srvr.c, ssl_sess.c, and t1_lib.c.