This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:gnu:gnutls
Detail
VendorGnuFirst view 2004-12-31
ProductGnutlsLast view2019-04-01
VersionTypeApplication
Edition 
Language 
Update 

Activity : Overall

COMMON PLATFORM ENUMERATION : Repartition per Version

CPE NameAffected CVE
cpe:/a:gnu:gnutls:1.0.2231
cpe:/a:gnu:gnutls:1.0.2431
cpe:/a:gnu:gnutls:1.0.2131
cpe:/a:gnu:gnutls:1.2.031
cpe:/a:gnu:gnutls:1.0.1931
Hide | Show 45 More...
CPE NameAffected CVE
cpe:/a:gnu:gnutls:1.0.2331
cpe:/a:gnu:gnutls:1.0.2031
cpe:/a:gnu:gnutls:1.0.1831
cpe:/a:gnu:gnutls:1.1.2030
cpe:/a:gnu:gnutls:1.1.1630
cpe:/a:gnu:gnutls:1.1.1830
cpe:/a:gnu:gnutls:1.1.1430
cpe:/a:gnu:gnutls:1.1.1530
cpe:/a:gnu:gnutls:1.1.2330
cpe:/a:gnu:gnutls:1.1.2130
cpe:/a:gnu:gnutls:1.0.2530
cpe:/a:gnu:gnutls:1.1.2230
cpe:/a:gnu:gnutls:1.1.1730
cpe:/a:gnu:gnutls:1.1.1930
cpe:/a:gnu:gnutls:1.2.230
cpe:/a:gnu:gnutls:1.2.130
cpe:/a:gnu:gnutls30
cpe:/a:gnu:gnutls:-30
cpe:/a:gnu:gnutls:1.1.1329
cpe:/a:gnu:gnutls:1.2.729
cpe:/a:gnu:gnutls:2.3.529
cpe:/a:gnu:gnutls:2.3.729
cpe:/a:gnu:gnutls:2.3.829
cpe:/a:gnu:gnutls:1.2.1129
cpe:/a:gnu:gnutls:2.3.929
cpe:/a:gnu:gnutls:1.2.629
cpe:/a:gnu:gnutls:1.2.929
cpe:/a:gnu:gnutls:1.3.029
cpe:/a:gnu:gnutls:1.3.129
cpe:/a:gnu:gnutls:2.3.629
cpe:/a:gnu:gnutls:1.3.529
cpe:/a:gnu:gnutls:1.2.429
cpe:/a:gnu:gnutls:1.2.829
cpe:/a:gnu:gnutls:1.2.529
cpe:/a:gnu:gnutls:1.3.429
cpe:/a:gnu:gnutls:1.3.229
cpe:/a:gnu:gnutls:1.2.1029
cpe:/a:gnu:gnutls:1.4.029
cpe:/a:gnu:gnutls:1.2.329
cpe:/a:gnu:gnutls:1.3.329
cpe:/a:gnu:gnutls:1.4.129
cpe:/a:gnu:gnutls:2.2.428
cpe:/a:gnu:gnutls:2.2.528
cpe:/a:gnu:gnutls:2.0.028
cpe:/a:gnu:gnutls:2.0.128

Related : CVE

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
52019-04-01CVE-2019-3836NetworkLowNone Requ...
52019-03-27CVE-2019-3829NetworkLowNone Requ...
3.32018-12-03CVE-2018-16868LocalMediumNone Requ...
1.92018-08-22CVE-2018-10846LocalMediumNone Requ...
4.32018-08-22CVE-2018-10845NetworkMediumNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
4.32018-08-22CVE-2018-10844NetworkMediumNone Requ...
52017-06-16CVE-2017-7507NetworkLowNone Requ...
52017-04-14CVE-2017-7869NetworkLowNone Requ...
7.52017-03-24CVE-2017-5337NetworkLowNone Requ...
7.52017-03-24CVE-2017-5336NetworkLowNone Requ...
52017-03-24CVE-2017-5335NetworkLowNone Requ...
7.52017-03-24CVE-2017-5334NetworkLowNone Requ...
52016-09-27CVE-2016-7444NetworkLowNone Requ...
7.52015-09-02CVE-2015-3308NetworkLowNone Requ...
52015-08-24CVE-2015-6251NetworkLowNone Requ...
4.32015-08-14CVE-2014-8155NetworkMediumNone Requ...
52015-03-24CVE-2015-0282NetworkLowNone Requ...
52014-11-13CVE-2014-8564NetworkLowNone Requ...
52014-06-10CVE-2014-3465NetworkLowNone Requ...
4.32014-06-05CVE-2014-3469NetworkMediumNone Requ...
6.82014-06-05CVE-2014-3468NetworkMediumNone Requ...
4.32014-06-05CVE-2014-3467NetworkMediumNone Requ...
6.82014-06-03CVE-2014-3466NetworkMediumNone Requ...
5.82014-03-06CVE-2014-1959NetworkMediumNone Requ...

CWE : Common Weakness Enumeration

%idName
29% (13)CWE-310Cryptographic Issues
15% (7)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
11% (5)CWE-189Numeric Errors
6% (3)CWE-327Use of a Broken or Risky Cryptographic Algorithm
6% (3)CWE-264Permissions, Privileges, and Access Controls
Hide | Show 10 More...
%idName
4% (2)CWE-415Double Free
4% (2)CWE-287Improper Authentication
4% (2)CWE-255Credentials Management
2% (1)CWE-787Out-of-bounds Write
2% (1)CWE-476NULL Pointer Dereference
2% (1)CWE-416Use After Free
2% (1)CWE-399Resource Management Errors
2% (1)CWE-125Out-of-bounds Read
2% (1)CWE-20Improper Input Validation
2% (1)CWE-17Code

CAPEC : Common Attack Pattern Enumeration & Classification

idName
CAPEC-68Subvert Code-signing Facilities

Open Source Vulnerability Database (OSVDB)

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
78228GnuTLS DTLS CBC Mode Plaintext Information Disclosure
77832Parallels Plesk Panel Billing System TLS Renegotiation Handshakes MiTM Plaint...
76961GnuTLS lib/gnutls_session.c gnutls_session_get_data() Function Server Connect...
75622Blue Coat Director TLS Renegotiation Handshakes MiTM Plaintext Data Injection
74335Hitachi Web Server TLS Renegotiation Handshakes MiTM Plaintext Data Injection
Hide | Show 20 More...
idDescription
71961Oracle Fusion Middleware Oracle WebLogic Server TLS Renegotiation Handshakes ...
71951Oracle Multiple Products Oracle Security Service TLS Renegotiation Handshakes...
70620mGuard TLS Renegotiation Handshakes MiTM Plaintext Data Injection
70055Oracle Supply Chain Transportation Management TLS Renegotiation Handshakes Mi...
69561IBM WebSphere MQ Internet Pass-Thru TLS Renegotiation Handshake MiTM Plaintex...
69032Oracle Java SE / Java for Business TLS Renegotiation Handshake MiTM Plaintext...
67029HP Threat Management Services zl Module TLS Renegotiation Handshakes MiTM Pla...
66315HP Insight Manager TLS Renegotiation Handshakes MiTM Plaintext Data Injection
65202OpenOffice.org (OOo) TLS Renegotiation Handshakes MiTM Plaintext Data Injection
64890GnuTLS lib/gnutls_algorithms.c _gnutls_x509_oid2mac_algorithm Function Crafte...
64725HP System Management Homepage (SMH) TLS Renegotiation Handshakes MiTM Plainte...
64499ArubaOS HTTPS WebUI Admin Interface TLS Renegotiation Handshakes MiTM Plainte...
64040IBM DB2 TLS Renegotiation Handshakes MiTM Plaintext Data Injection
63304GnuTLS Library gnutls_x509_crt_get_serial Function Crafted X.509 Certificate ...
62877SSH Tectia Audit Player TLS Renegotiation Handshakes MiTM Plaintext Data Inje...
62536Blue Coat Products TLS Renegotiation Handshakes MiTM Plaintext Data Injection
62273Opera TLS Renegotiation Handshakes MiTM Plaintext Data Injection
62210Aruba Mobility Controller TLS Renegotiation Handshakes MiTM Plaintext Data In...
62135Network Security Services (NSS) TLS Renegotiation Handshakes MiTM Plaintext D...
62064IBM Java TLS Renegotiation Handshakes MiTM Plaintext Data Injection

ExploitDB Exploits

idDescription
32965GnuTLS 2.6.x libgnutls lib/gnutls_pk.c DSA Key Storage Remote Spoofing
32964GnuTLS 2.6.x libgnutls lib/pk-libgcrypt.c Malformed DSA Key Handling Remote DoS
24865GnuTLS libgnutls Double-free Certificate List Parsing Remote DoS
10579TLS Renegotiation Vulnerability PoC Exploit

OpenVAS Exploits

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2012-09-26Name : Gentoo Security Advisory GLSA 201209-12 (libtasn1)
File : nvt/glsa_201209_12.nasl
2012-08-31Name : VMSA-2012-0013 VMware vSphere and vCOps updates to third party libraries.
File : nvt/gb_VMSA-2012-0013.nasl
2012-08-30Name : Fedora Update for libtasn1 FEDORA-2012-4357
File : nvt/gb_fedora_2012_4357_libtasn1_fc17.nasl
2012-08-30Name : Fedora Update for mingw-gnutls FEDORA-2012-4451
File : nvt/gb_fedora_2012_4451_mingw-gnutls_fc17.nasl
2012-08-30Name : Fedora Update for mingw-libtasn1 FEDORA-2012-4451
File : nvt/gb_fedora_2012_4451_mingw-libtasn1_fc17.nasl
Hide | Show 20 More...
idDescription
2012-08-30Name : Fedora Update for mingw-p11-kit FEDORA-2012-4451
File : nvt/gb_fedora_2012_4451_mingw-p11-kit_fc17.nasl
2012-08-10Name : Gentoo Security Advisory GLSA 201206-18 (GnuTLS)
File : nvt/glsa_201206_18.nasl
2012-08-03Name : Mandriva Update for libtasn1 MDVSA-2012:039 (libtasn1)
File : nvt/gb_mandriva_MDVSA_2012_039.nasl
2012-08-03Name : Mandriva Update for gnutls MDVSA-2012:040 (gnutls)
File : nvt/gb_mandriva_MDVSA_2012_040.nasl
2012-08-03Name : Mandriva Update for gnutls MDVSA-2012:045 (gnutls)
File : nvt/gb_mandriva_MDVSA_2012_045.nasl
2012-07-30Name : CentOS Update for libtasn1 CESA-2012:0427 centos6
File : nvt/gb_CESA-2012_0427_libtasn1_centos6.nasl
2012-07-30Name : CentOS Update for gnutls CESA-2012:0428 centos5
File : nvt/gb_CESA-2012_0428_gnutls_centos5.nasl
2012-07-30Name : CentOS Update for gnutls CESA-2012:0429 centos6
File : nvt/gb_CESA-2012_0429_gnutls_centos6.nasl
2012-07-09Name : RedHat Update for libtasn1 RHSA-2012:0427-01
File : nvt/gb_RHSA-2012_0427-01_libtasn1.nasl
2012-07-09Name : RedHat Update for gnutls RHSA-2012:0429-01
File : nvt/gb_RHSA-2012_0429-01_gnutls.nasl
2012-05-04Name : Ubuntu Update for libtasn1-3 USN-1436-1
File : nvt/gb_ubuntu_USN_1436_1.nasl
2012-04-30Name : FreeBSD Ports: gnutls
File : nvt/freebsd_gnutls7.nasl
2012-04-30Name : Gentoo Security Advisory GLSA 201203-22 (nginx)
File : nvt/glsa_201203_22.nasl
2012-04-30Name : Debian Security Advisory DSA 2440-1 (libtasn1-3)
File : nvt/deb_2440_1.nasl
2012-04-30Name : Debian Security Advisory DSA 2441-1 (gnutls26)
File : nvt/deb_2441_1.nasl
2012-04-30Name : FreeBSD Ports: libtasn1
File : nvt/freebsd_libtasn1.nasl
2012-04-16Name : VMSA-2010-0009: ESXi utilities and ESX Service Console third party updates
File : nvt/gb_VMSA-2010-0009.nasl
2012-04-13Name : Fedora Update for mingw-libtasn1 FEDORA-2012-4417
File : nvt/gb_fedora_2012_4417_mingw-libtasn1_fc15.nasl
2012-04-13Name : Fedora Update for mingw32-gnutls FEDORA-2012-4417
File : nvt/gb_fedora_2012_4417_mingw32-gnutls_fc15.nasl
2012-04-11Name : Fedora Update for libtasn1 FEDORA-2012-4308
File : nvt/gb_fedora_2012_4308_libtasn1_fc15.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2012-A-0153Multiple Vulnerabilities in VMware ESX 4.0 and ESXi 4.0
Severity : Category I - VMSKEY : V0033884
2012-A-0148Multiple Vulnerabilities in VMware ESXi 4.1 and ESX 4.1
Severity : Category I - VMSKEY : V0033794
2012-B-0048Multiple Vulnerabilities in HP Systems Insight Manager
Severity : Category I - VMSKEY : V0032178
2012-B-0038Multiple Vulnerabilities in HP Onboard Administrator
Severity : Category I - VMSKEY : V0031972
2011-A-0066Multiple Vulnerabilities in VMware Products
Severity : Category I - VMSKEY : V0027158

Snort® IPS/IDS

DateDescription
2019-09-10GnuTLS x509 certificate validation policy bypass attempt
RuleID : 50946 - Type : SERVER-OTHER - Revision : 1
2015-03-31GnuTLS TLSA record heap buffer overflow attempt
RuleID : 33596 - Type : SERVER-OTHER - Revision : 2
2015-03-31GnuTLS TLSA record heap buffer overflow attempt
RuleID : 33595 - Type : SERVER-OTHER - Revision : 2
2014-07-05GnuTLS Server Hello Session ID heap overflow attempt
RuleID : 31179 - Type : SERVER-OTHER - Revision : 5
2014-07-05GnuTLS Server Hello Session ID heap overflow attempt
RuleID : 31178 - Type : SERVER-OTHER - Revision : 5
Hide | Show 4 More...
DateDescription
2014-07-05GnuTLS Server Hello Session ID heap overflow attempt
RuleID : 31177 - Type : SERVER-OTHER - Revision : 5
2014-07-05GnuTLS Server Hello Session ID heap overflow attempt
RuleID : 31176 - Type : SERVER-OTHER - Revision : 4
2014-01-10Free Software Foundation GnuTLS record application integer overflow attempt
RuleID : 24996 - Type : SERVER-OTHER - Revision : 3
2014-01-10Free Software Foundation GnuTLS record application integer overflow attempt
RuleID : 24995 - Type : SERVER-OTHER - Revision : 6

Nessus® Vulnerability Scanner

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2019-01-15Name : The remote Fedora host is missing a security update.
File : fedora_2019-1a0d4443f8.nasl - Type : ACT_GATHER_INFO
2019-01-14Name : The remote Fedora host is missing a security update.
File : fedora_2019-99eefddc65.nasl - Type : ACT_GATHER_INFO
2019-01-11Name : The remote Fedora host is missing a security update.
File : fedora_2019-24dc022a51.nasl - Type : ACT_GATHER_INFO
2019-01-08Name : The remote EulerOS host is missing a security update.
File : EulerOS_SA-2019-1005.nasl - Type : ACT_GATHER_INFO
2019-01-03Name : The remote Fedora host is missing a security update.
File : fedora_2018-79f7540a1e.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2018-12-28Name : The remote EulerOS host is missing a security update.
File : EulerOS_SA-2018-1444.nasl - Type : ACT_GATHER_INFO
2018-12-17Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2018-3050.nasl - Type : ACT_GATHER_INFO
2018-12-10Name : The remote Amazon Linux 2 host is missing a security update.
File : al2_ALAS-2018-1120.nasl - Type : ACT_GATHER_INFO
2018-12-06Name : The remote Slackware host is missing a security update.
File : Slackware_SSA_2018-339-01.nasl - Type : ACT_GATHER_INFO
2018-10-31Name : The remote Debian host is missing a security update.
File : debian_DLA-1560.nasl - Type : ACT_GATHER_INFO
2018-08-17Name : The remote PhotonOS host is missing multiple security updates.
File : PhotonOS_PHSA-2017-0015.nasl - Type : ACT_GATHER_INFO
2018-08-17Name : The remote PhotonOS host is missing multiple security updates.
File : PhotonOS_PHSA-2017-0016.nasl - Type : ACT_GATHER_INFO
2018-08-17Name : The remote PhotonOS host is missing multiple security updates.
File : PhotonOS_PHSA-2017-0038.nasl - Type : ACT_GATHER_INFO
2018-04-03Name : The remote web server may allow remote code execution.
File : iis_7_pci.nasl - Type : ACT_GATHER_INFO
2018-03-09Name : The remote web server is affected by multiple vulnerabilities.
File : nginx_0_7_64.nasl - Type : ACT_GATHER_INFO
2017-11-17Name : The remote host is affected by a MITM vulnerability.
File : fortios_FG-IR-17-137.nasl - Type : ACT_GATHER_INFO
2017-10-16Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201710-15.nasl - Type : ACT_GATHER_INFO
2017-09-11Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2017-1203.nasl - Type : ACT_GATHER_INFO
2017-09-11Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2017-1204.nasl - Type : ACT_GATHER_INFO
2017-08-25Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2017-2292.nasl - Type : ACT_GATHER_INFO
2017-08-22Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20170801_gnutls_on_SL7_x.nasl - Type : ACT_GATHER_INFO
2017-08-09Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2017-2292.nasl - Type : ACT_GATHER_INFO
2017-08-02Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2017-2292.nasl - Type : ACT_GATHER_INFO
2017-07-17Name : The remote openSUSE host is missing a security update.
File : openSUSE-2017-824.nasl - Type : ACT_GATHER_INFO
2017-07-17Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2017-1886-1.nasl - Type : ACT_GATHER_INFO