Vulnerabilities > Entrouvert

DATE	CVE	VULNERABILITY TITLE	RISK
2021-06-04	CVE-2021-28091	Improper Verification of Cryptographic Signature vulnerability in multiple products Lasso all versions prior to 2.7.0 has improper verification of a cryptographic signature. network low complexity entrouvert debian fedoraproject CWE-347	7.5
2017-08-11	CVE-2015-1783	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The prefix variable in the get_or_define_ns function in Lasso before commit 6d854cef4211cdcdbc7446c978f23ab859847cdd allows remote attackers to cause a denial of service (uninitialized memory access and application crash) via unspecified vectors. network low complexity fedoraproject entrouvert CWE-119	5.0
2009-01-07	CVE-2009-0050	Improper Input Validation vulnerability in Entrouvert Lasso 1.9.9.0/2.0.01/2.2.10 Lasso 2.2.1 and earlier does not properly check the return value from the OpenSSL DSA_verify function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077. network entrouvert CWE-20	4.3

Vulnerabilities > Entrouvert {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Entrouvert"}]}