Vulnerabilities (CVE)

Filtered by vendor Novell Subscribe

Filtered by product Suse Linux Enterprise Module For Web Scripting

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2016-6304	3 Nodejs, Novell, Openssl	3 Node.js, Suse Linux Enterprise Module For Web Scripting, Openssl	2021-11-17	7.8 HIGH	7.5 HIGH
Multiple memory leaks in t1_lib.c in OpenSSL before 1.0.1u, 1.0.2 before 1.0.2i, and 1.1.0 before 1.1.0a allow remote attackers to cause a denial of service (memory consumption) via large OCSP Status Request extensions.
CVE-2016-6306	4 Hp, Nodejs, Novell and 1 more	7 Icewall Federation Agent, Icewall Mcrp, Icewall Sso and 4 more	2021-11-17	4.3 MEDIUM	5.9 MEDIUM
The certificate parser in OpenSSL before 1.0.1u and 1.0.2 before 1.0.2i might allow remote attackers to cause a denial of service (out-of-bounds read) via crafted certificate operations, related to s3_clnt.c and s3_srvr.c.
CVE-2016-7052	2 Novell, Openssl	2 Suse Linux Enterprise Module For Web Scripting, Openssl	2018-07-12	5.0 MEDIUM	7.5 HIGH
crypto/x509/x509_vfy.c in OpenSSL 1.0.2i allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) by triggering a CRL operation.