Novell Suse Linux Enterprise Module For Web Scripting vulnerabilities
3 known vulnerabilities affecting novell/suse_linux_enterprise_module_for_web_scripting.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2016-6304HIGHCVSS 7.5v12.02016-09-26
CVE-2016-6304 [HIGH] CWE-401 CVE-2016-6304: Multiple memory leaks in t1_lib.c in OpenSSL before 1.0.1u, 1.0.2 before 1.0.2i, and 1.1.0 before 1.
Multiple memory leaks in t1_lib.c in OpenSSL before 1.0.1u, 1.0.2 before 1.0.2i, and 1.1.0 before 1.1.0a allow remote attackers to cause a denial of service (memory consumption) via large OCSP Status Request extensions.
nvd
CVE-2016-7052HIGHCVSS 7.5v12.02016-09-26
CVE-2016-7052 [HIGH] CWE-476 CVE-2016-7052: crypto/x509/x509_vfy.c in OpenSSL 1.0.2i allows remote attackers to cause a denial of service (NULL
crypto/x509/x509_vfy.c in OpenSSL 1.0.2i allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) by triggering a CRL operation.
nvd
CVE-2016-6306MEDIUMCVSS 5.9v12.02016-09-26
CVE-2016-6306 [MEDIUM] CWE-125 CVE-2016-6306: The certificate parser in OpenSSL before 1.0.1u and 1.0.2 before 1.0.2i might allow remote attackers
The certificate parser in OpenSSL before 1.0.1u and 1.0.2 before 1.0.2i might allow remote attackers to cause a denial of service (out-of-bounds read) via crafted certificate operations, related to s3_clnt.c and s3_srvr.c.
nvd