Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
photonPhotonPHSA-2022-4.0-0143
HistoryJan 10, 2022 - 12:00 a.m.

Important Photon OS Security Update - PHSA-2022-4.0-0143

2022-01-1000:00:00
github.com
8

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

10 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

57.1%

JSON

Updates of [‘openssl’, ‘consul’] packages of Photon OS have been released.

Related

photon 147
veracode 2
nessus 4
osv 6
githubexploit 2
cvelist 3
prion 3
ubuntucve 2
nvd 3
debiancve 2
cve 3
alpinelinux 1
openssl 1
rustsec 1
broadcom 2
github 1
redhatcve 1
openvas 2
freebsd 1
f5 1
hackerone 1
cnvd 1
ibm 2
hivepro 1
vmware 2
packetstorm 1
exploitdb 1
zdt 2
photon
photon
Important Photon OS Security Update - PHSA-2022-0143
2022-01-12 00:00:00
Critical Photon OS Security Update - PHSA-2023-5.0-0143
2023-11-15 00:00:00
Critical Photon OS Security Update - PHSA-2023-4.0-0512
2023-11-15 00:00:00
veracode
veracode
Privilege Escalation
2021-12-13 09:27:07
Denial Of Service (DoS)
2021-12-15 19:49:23
nessus
nessus
Photon OS 3.0: Consul PHSA-2021-3.0-0346
2022-01-10 00:00:00
FreeBSD : OpenSSL -- Certificate validation issue (0132ca5b-5d11-11ec-8be6-d4c9ef517024)
2021-12-14 00:00:00
OpenSSL 3.0.0 < 3.0.1 Multiple Vulnerabilities
2021-12-15 00:00:00
osv
osv
CVE-2021-41805
2021-12-12 05:15:07
BIT-consul-2021-41805
2024-03-06 10:52:33
CVE-2021-4044
2021-12-14 19:15:07
githubexploit
githubexploit
Exploit for Incorrect Authorization in Hashicorp Consul
2022-12-07 10:50:17
Exploit for Incorrect Authorization in Hashicorp Consul
2022-12-07 10:50:17
cvelist
cvelist
CVE-2021-41805
2021-12-12 04:51:21
CVE-2021-4044 Invalid handling of X509_verify_cert() internal errors in libssl
2021-12-14 00:00:00
CVE-2023-34060
2023-11-14 20:20:51
prion
prion
Privilege escalation
2021-12-12 05:15:00
Design/Logic Flaw
2021-12-14 19:15:00
Authentication flaw
2023-11-14 21:15:00
ubuntucve
ubuntucve
CVE-2021-41805
2021-12-12 00:00:00
CVE-2021-4044
2021-12-14 00:00:00
nvd
nvd
CVE-2021-41805
2021-12-12 05:15:07
CVE-2021-4044
2021-12-14 19:15:07
CVE-2023-34060
2023-11-14 21:15:09
debiancve
debiancve
CVE-2021-41805
2021-12-12 05:15:07
CVE-2021-4044
2021-12-14 19:15:07
cve
cve
CVE-2021-41805
2021-12-12 05:15:07
CVE-2021-4044
2021-12-14 19:15:07
CVE-2023-34060
2023-11-14 21:15:09
alpinelinux
alpinelinux
CVE-2021-4044
2021-12-14 19:15:07
openssl
openssl
Vulnerability in OpenSSL CVE-2021-4044
2021-12-14 00:00:00
rustsec
rustsec
Invalid handling of `X509_verify_cert()` internal errors in libssl
2021-12-14 12:00:00
broadcom
broadcom
CVE-2021-4044: Invalid handling of X509_verify_cert() internal errors in libssl
2022-11-08 00:00:00
CVE-2021-4044: Invalid handling of X509_verify_cert() internal errors in libssl
2022-11-08 00:00:00
github
github
Invalid handling of `X509_verify_cert()` internal errors in libssl
2021-12-15 00:00:42
redhatcve
redhatcve
CVE-2021-4044
2021-12-17 20:05:06
openvas
openvas
OpenSSL: Invalid handling of X509_verify_cert() internal errors (20211214) - Linux
2021-12-16 00:00:00
OpenSSL: Invalid handling of X509_verify_cert() internal errors (20211214) - Windows
2021-12-16 00:00:00
freebsd
freebsd
OpenSSL -- Certificate validation issue
2021-12-14 00:00:00
f5
f5
K83823933 : OpenSSL Vulnerability CVE-2021-4044
2021-12-31 00:00:00
hackerone
hackerone
Internet Bug Bounty: Invalid handling of X509_verify_cert() internal errors in libssl (CVE-2021-4044)
2022-01-20 14:31:29
cnvd
cnvd
OpenSSL Memory Error Vulnerability
2021-12-17 00:00:00
ibm
ibm
Security Bulletin: Rational Team Concert (RTC) and IBM Engineering Workflow Management (EWM) OpenSSL vulnerability CVE-2021-4044
2022-06-21 14:53:38
Security Bulletin: Vulnerability in Fabric OS firmware used by IBM b-type SAN directors and switches.
2022-08-31 00:17:02
hivepro
hivepro
VMware Unveils Critical Authentication Bypass Vulnerability in VCD Appliance
2023-11-17 08:07:39
vmware
vmware
VMware Cloud Director Appliance contains an authentication bypass vulnerability (CVE-2023-34060).
2023-11-14 00:00:00
VMware Cloud Director Appliance contains an authentication bypass vulnerability (CVE-2023-34060).
2023-11-14 00:00:00
packetstorm
packetstorm
VMware Cloud Director 10.5 Authentication Bypass
2024-03-13 00:00:00
exploitdb
exploitdb
VMware Cloud Director 10.5 - Bypass identity verification
2024-03-12 00:00:00
zdt
zdt
VMware Cloud Director - Bypass identity verification Exploit
2023-12-08 00:00:00
VMware Cloud Director 10.5 - Bypass identity verification Exploit
2024-03-12 00:00:00

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

10 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

57.1%

JSON
Related for PHSA-2022-4.0-0143
photon147veracode2nessus4osv6githubexploit2cvelist3prion3ubuntucve2nvd3debiancve2cve3alpinelinux1openssl1rustsec1broadcom2github1redhatcve1openvas2freebsd1f51hackerone1cnvd1ibm2hivepro1vmware2packetstorm1exploitdb1zdt2