CVSS: 4.8EPSS: 0%CPEs: 3EXPL: 0CVE-2024-20906
https://notcve.org/view.php?id=CVE-2024-20906
16 Jan 2024 — Vulnerability in the Integrated Lights Out Manager (ILOM) product of Oracle Systems (component: System Management). Supported versions that are affected are 3, 4 and 5. Easily exploitable vulnerability allows high privileged attacker with network access via ICMP to compromise Integrated Lights Out Manager (ILOM). Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Integrated Lights Out Manager (ILOM), attacks may significantly impact additiona... • https://www.oracle.com/security-alerts/cpujan2024.html •
CVSS: 7.7EPSS: 0%CPEs: 25EXPL: 0CVE-2018-2566
https://notcve.org/view.php?id=CVE-2018-2566
18 Jan 2018 — Vulnerability in the Integrated Lights Out Manager (ILOM) component of Oracle Sun Systems Products Suite (subcomponent: Remote Console Application). Supported versions that are affected are 3.x and 4.x. Difficult to exploit vulnerability allows low privileged attacker with network access via TLS to compromise Integrated Lights Out Manager (ILOM). Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Integrated Lights Out Manager (ILOM), attacks ... • http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html •
CVSS: 7.5EPSS: 0%CPEs: 25EXPL: 0CVE-2018-2568
https://notcve.org/view.php?id=CVE-2018-2568
18 Jan 2018 — Vulnerability in the Integrated Lights Out Manager (ILOM) component of Oracle Sun Systems Products Suite (subcomponent: Remote Console Application). Supported versions that are affected are 3.x and 4.x. Easily exploitable vulnerability allows unauthenticated attacker with network access via TLS to compromise Integrated Lights Out Manager (ILOM). Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Integrated Lights Out Manager (ILOM) accessible data ... • http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-10260
https://notcve.org/view.php?id=CVE-2017-10260
19 Oct 2017 — Vulnerability in the Oracle Integrated Lights Out Manager (ILOM) component of Oracle Sun Systems Products Suite (subcomponent: System Management). The supported version that is affected is Prior to 3.2.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Integrated Lights Out Manager (ILOM). Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Integr... • http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-10265
https://notcve.org/view.php?id=CVE-2017-10265
19 Oct 2017 — Vulnerability in the Oracle Integrated Lights Out Manager (ILOM) component of Oracle Sun Systems Products Suite (subcomponent: System Management). The supported version that is affected is Prior to 3.2.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Integrated Lights Out Manager (ILOM). Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Integrated Lights Out Manager (ILOM)... • http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html •
CVSS: 4.0EPSS: 0%CPEs: 1EXPL: 0CVE-2017-10194
https://notcve.org/view.php?id=CVE-2017-10194
19 Oct 2017 — Vulnerability in the Oracle Integrated Lights Out Manager (ILOM) component of Oracle Sun Systems Products Suite (subcomponent: System Management). The supported version that is affected is Prior to 3.2.6. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Integrated Lights Out Manager (ILOM). Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Integrated Lights Out Manager (ILOM) accessible data... • http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.3EPSS: 4%CPEs: 56EXPL: 1CVE-2015-3195 – OpenSSL: X509_ATTRIBUTE memory leak
https://notcve.org/view.php?id=CVE-2015-3195
03 Dec 2015 — The ASN1_TFLG_COMBINE implementation in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zh, 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1q, and 1.0.2 before 1.0.2e mishandles errors caused by malformed X509_ATTRIBUTE data, which allows remote attackers to obtain sensitive information from process memory by triggering a decoding failure in a PKCS#7 or CMS application. La implementación ASN1_TFLG_COMBINE en crypto/asn1/tasn_dec.c en OpenSSL en versiones anteriores a 0.9.8zh, 1.0.0 en versiones anteriores a 1.0.0t, 1.... • https://github.com/Trinadh465/OpenSSL-1_0_1g_CVE-2015-3195 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-401: Missing Release of Memory after Effective Lifetime •
CVSS: 10.0EPSS: 0%CPEs: 160EXPL: 0CVE-2015-2808 – SSL/TLS: "Invariance Weakness" vulnerability in RC4 stream cipher
https://notcve.org/view.php?id=CVE-2015-2808
01 Apr 2015 — The RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combine state data with key data during the initialization phase, which makes it easier for remote attackers to conduct plaintext-recovery attacks against the initial bytes of a stream by sniffing network traffic that occasionally relies on keys affected by the Invariance Weakness, and then using a brute-force approach involving LSB values, aka the "Bar Mitzvah" issue. El algoritmo RC4, utilizado en el protocolo TLS y el prot... • http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04779034 • CWE-327: Use of a Broken or Risky Cryptographic Algorithm •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2015-0424
https://notcve.org/view.php?id=CVE-2015-0424
21 Jan 2015 — Unspecified vulnerability in the Integrated Lights Out Manager (ILOM) component in Oracle Sun Systems Products Suite ILOM prior to 3.2.4 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to IPMI. Vulnerabilidad no especificada en el componente Integrated Lights Out Manager (ILOM) en Oracle Sun Systems Products Suite ILOM anterior a 3.2.4 permite a usuarios remotos autenticados afectar la confidencialidad, integridad, y disponibilidad a través de vec... • http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2014-6584
https://notcve.org/view.php?id=CVE-2014-6584
21 Jan 2015 — Unspecified vulnerability in the Integrated Lights Out Manager (ILOM) component in Oracle Sun Systems Products Suite ILOM before 3.2.4 allows remote authenticated users to affect confidentiality via unknown vectors related to Backup Restore. Vulnerabilidad sin especificar en el componente Integrated Lights Out Manager (ILOM) en Oracle Sun Systems Products Suite ILOM anterior a 3.2.4 permite usuarios autenticados afectar la confidencialidad a través de vectores no especificados relacionados con Backup Restor... • http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html •