The public API function BIO_new_NDEF is a helper function used for streaming ASN.1 data via a BIO. It is primarily used internally to OpenSSL to support the SMIME, CMS and PKCS7 streaming capabilities, but may also be called directly by end user applications.

redhatcve 1

f5 1

openvas 36

cvelist 1

cbl_mariner 11

osv 10

ubuntucve 1

githubexploit 2

nessus 64

prion 1

cve 1

hackerone 1

alpinelinux 1

ibm 26

wolfi 1

rustsec 1

github 1

veracode 1

cgr 1

nvd 1

debiancve 1

ubuntu 2

cloudlinux 1

cloudfoundry 1

redhat 6

amazon 3

altlinux 2

oraclelinux 9

freebsd 1

freebsd_advisory 1

ics 2

almalinux 2

fedora 2

rocky 1

slackware 1

debian 1

redhatcve

CVE-2023-0215

2023-02-07 17:28:22

K000132946 : OpenSSL vulnerability CVE-2023-0215

2023-03-13 00:00:00

openvas

Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2023-2169)

2023-06-09 00:00:00

Huawei EulerOS: Security Advisory for shim-signed (EulerOS-SA-2023-2436)

2023-07-25 00:00:00

Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2023-2435)

2023-07-25 00:00:00

cvelist

CVE-2023-0215 Use-after-free following BIO_new_NDEF

2023-02-08 19:03:28

cbl_mariner

CVE-2023-0215 affecting package hvloader for versions less than 1.0.1-2

2024-06-06 19:53:22

CVE-2023-0215 affecting package shim-unsigned-x64 15.4-2

2024-06-18 09:08:13

CVE-2023-0215 affecting package cloud-hypervisor 22.0-2

2024-06-18 09:08:13

osv

Use-after-free following `BIO_new_NDEF`

2023-02-07 12:00:00

CVE-2023-0215

2023-02-08 20:15:24

openssl-src vulnerable to Use-after-free following `BIO_new_NDEF`

2023-02-08 22:28:34

ubuntucve

CVE-2023-0215

2023-02-07 00:00:00

githubexploit

Exploit for Use After Free in Openssl

2023-04-18 12:07:40

Exploit for Use After Free in Openssl

2023-04-24 05:35:43

nessus

Oracle MySQL ODBC and C++ Connectors (Apr 2023 CPU)

2023-04-19 00:00:00

EulerOS Virtualization 3.0.6.6 : shim-signed (EulerOS-SA-2023-2436)

2023-07-26 00:00:00

EulerOS 2.0 SP5 : shim-signed (EulerOS-SA-2023-2170)

2023-06-09 00:00:00

prion

Design/Logic Flaw

2023-02-08 20:15:00

cve

CVE-2023-0215

2023-02-08 20:15:24

hackerone

Internet Bug Bounty: UAF in OpenSSL up to 3.0.7

2023-03-15 01:18:16

alpinelinux

CVE-2023-0215

2023-02-08 20:15:24

ibm

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a denial of service in OpenSSL (CVE-2023-0215)

2023-07-27 17:17:45

Security Bulletin: IBM Events Operator is affected by a denial of service in OpenSSL (CVE-2023-0215).

2023-09-21 14:17:02

Security Bulletin: Vulnerability in FOS firmware used by IBM b-type SAN directors and switches.

2023-11-06 21:23:58

wolfi

CVE-2023-0215 vulnerabilities

2024-06-18 09:08:19

rustsec

Use-after-free following `BIO_new_NDEF`

2023-02-07 12:00:00

github

openssl-src vulnerable to Use-after-free following `BIO_new_NDEF`

2023-02-08 22:28:34

veracode

Denial Of Service (DoS)

2023-02-09 20:56:15

cgr

CVE-2023-0215 vulnerabilities

2024-05-19 03:07:16

nvd

CVE-2023-0215

2023-02-08 20:15:24

debiancve

CVE-2023-0215

2023-02-08 20:15:24

ubuntu

OpenSSL vulnerabilities

2023-02-07 00:00:00

OpenSSL vulnerabilities

2023-02-07 00:00:00

cloudlinux

openssl: Fix of 2 CVEs

2023-02-10 10:39:56

cloudfoundry

USN-5845-1: OpenSSL vulnerabilities | Cloud Foundry

2023-02-24 00:00:00

redhat

(RHSA-2023:3408) Moderate: openssl security update

2023-05-31 18:25:53

(RHSA-2023:4128) Important: edk2 security update

2023-07-18 07:19:33

(RHSA-2023:3420) Important: Red Hat JBoss Web Server 5.7.3 release and security update

2023-06-05 13:52:35

amazon

Important: openssl

2023-02-03 23:39:00

Important: openssl

2023-02-03 19:19:00

Important: openssl11

2023-02-03 19:19:00

altlinux

Security fix for the ALT Linux 9 package openssl1.1 version 1.1.1t-alt1

2023-02-20 00:00:00

Security fix for the ALT Linux 10 package openssl1.1 version 1.1.1t-alt1

2023-02-10 00:00:00

oraclelinux

edk2 security update

2023-05-24 00:00:00

edk2 security update

2023-12-07 00:00:00

edk2 security update

2023-12-06 00:00:00

freebsd

FreeBSD -- Multiple vulnerabilities in OpenSSL

2023-02-16 00:00:00

freebsd_advisory

FreeBSD-SA-23:03.openssl

2023-02-16 00:00:00

ics

Siemens SCALANCE W1750D Devices

2023-03-16 12:00:00

Hitachi Energy Lumada APM Edge

2023-09-12 12:00:00

almalinux

Important: openssl security update

2023-03-22 00:00:00

Important: edk2 security update

2023-05-16 00:00:00

fedora

[SECURITY] Fedora 36 Update: edk2-20221117gitfff6d81270b5-14.fc36

2023-03-05 00:54:06

[SECURITY] Fedora 37 Update: edk2-20221117gitfff6d81270b5-13.fc37

2023-02-16 02:06:48

rocky

openssl security update

2023-03-28 13:07:30

slackware

[slackware-security] openssl

2023-02-07 20:57:57

debian

[SECURITY] [DLA 3325-1] openssl security update

2023-02-20 11:11:21

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.7 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

72.5%

JSON

Related for OPENSSL:CVE-2023-0215