Vulnerability Database

  • Total number of vulnerabilities in the DB: 300,445
With exploit

openssl / openssl

Title Severity Exploit Date Affected Version
CVE-2024-6119 High Sep 3, 2024 >= 3.0.0 < 3.0.15
>= 3.1.0 < 3.1.7
>= 3.2.0 < 3.2.3
>= 3.3.0 < 3.3.2
CVE-2024-0727 Medium Jan 26, 2024 >= 1.0.2 < 1.0.2zj
>= 1.1.1 < 1.1.1x
>= 3.0.0 < 3.0.13
>= 3.1.0 < 3.1.5
== 3.2.0
CVE-2023-6129 Medium Jan 9, 2024 == 3.2.0
>= 3.1.0 <= 3.1.4
>= 3.0.0 <= 3.0.12
CVE-2023-5678 Medium Nov 6, 2023 >= 1.0.2 < 1.0.2zj
>= 1.1.1 < 1.1.1x
>= 3.0.0 < 3.0.13
>= 3.1.0 < 3.1.5
CVE-2023-5363 High Oct 25, 2023 >= 3.0.0 < 3.0.12
>= 3.1.0 < 3.1.4
CVE-2023-4807 High Sep 8, 2023 >= 3.1.0 < 3.1.3
>= 3.0.0 < 3.0.11
>= 1.1.1 < 1.1.1w
CVE-2023-3817 Medium Jul 31, 2023 == 1.0.2a
== 1.0.2e
== 1.0.2j
== 1.0.2b
== 1.0.2g
== 1.0.2h
== 1.0.2c
== 1.0.2-beta3
== 1.0.2-beta1
== 1.0.2f
== 1.0.2-beta2
== 1.0.2i
== 1.0.2d
== 1.0.2k
== 1.0.2l
== 1.0.2m
== 1.0.2zb
== 1.0.2
== 1.0.2n
== 1.0.2o
== 1.0.2p
== 1.0.2q
== 1.0.2r
== 1.0.2s
== 1.0.2t
== 1.0.2u
== 1.0.2v
== 1.0.2w
== 1.0.2x
== 1.0.2y
== 1.0.2za
== 1.1.1
== 1.1.1-pre1
== 1.1.1-pre2
== 1.1.1-pre3
== 1.1.1-pre4
== 1.1.1-pre5
== 1.1.1-pre6
== 1.1.1-pre7
== 1.1.1-pre8
== 1.1.1-pre9
== 1.1.1a
== 1.1.1b
== 1.1.1c
== 1.1.1d
== 1.1.1e
== 1.1.1f
== 1.1.1g
== 1.1.1h
== 1.1.1i
== 1.1.1j
== 1.1.1k
== 1.1.1l
>= 3.1.0 < 3.1.2
>= 3.0.0 < 3.0.10
== 1.1.1m
== 1.1.1n
== 1.1.1o
== 1.1.1p
== 1.1.1q
== 1.1.1r
== 1.1.1s
== 1.1.1t
== 1.1.1u
== 1.0.2zc
== 1.0.2zd
== 1.0.2ze
== 1.0.2zf
== 1.0.2zg
== 1.0.2zh
CVE-2023-3446 Medium Jul 19, 2023 == 1.0.2
== 3.0.0
== 3.1.1
== 3.1.0
== 1.1.1
CVE-2023-2975 Medium Jul 14, 2023 >= 3.0.0 <= 3.0.9
>= 3.1.0 <= 3.1.1
CVE-2023-2650 Medium May 30, 2023 >= 1.0.2 < 1.0.2zh
>= 1.1.1 < 1.1.1u
>= 3.0.0 < 3.0.9
>= 3.1.0 < 3.1.1

redhat / openssl

Title Severity Exploit Date Affected Version
CVE-2013-0166 Medium Feb 8, 2013 == 0.9.6-15
== 0.9.6b-3
== 0.9.7a-2
CVE-2012-2333 Medium May 14, 2012 == 0.9.6-15
== 0.9.6b-3
== 0.9.7a-2
CVE-2012-2110 High Apr 19, 2012 == 0.9.6-15
== 0.9.6b-3
== 0.9.7a-2
CVE-2009-4355 Medium Jan 14, 2010 == 0.9.6-15
== 0.9.6b-3
== 0.9.7a-2
CVE-2009-1386 Medium Jun 4, 2009 == 0.9.6-15
== 0.9.6b-3
== 0.9.7a-2
CVE-2009-1387 Medium Jun 4, 2009 == 0.9.6-15
== 0.9.6b-3
== 0.9.7a-2
CVE-2004-0079 High Nov 23, 2004 == 0.9.6-15
== 0.9.6b-3
== 0.9.7a-2
CVE-2004-0081 Medium Nov 23, 2004 == 0.9.6-15
== 0.9.6b-3
== 0.9.7a-2
CVE-2004-0112 Medium Nov 23, 2004 == 0.9.6-15
== 0.9.6b-3
== 0.9.7a-2

ruby-lang / openssl

Title Severity Exploit Date Affected Version
CVE-2018-16395 High Nov 16, 2018 < 2.1.2
CVE-2016-7798 High Jan 30, 2017 < 2.0.0

Rust icon openssl

Title Severity Exploit Date Affected Version
rust-openssl Use-After-Free in `Md::fetch` and `Cipher::fetch` Medium Apr 4, 2025 >= 0.10.39 < 0.10.72
CVE-2025-24898 Medium Feb 3, 2025 >= 0.10.0 < 0.10.70
openssl's `MemBio::get_buf` has undefined behavior with empty buffers Medium Jul 22, 2024 < 0.10.66
`openssl` `X509StoreRef::objects` is unsound Medium Nov 28, 2023 >= 0.10.29 < 0.10.60
`openssl` `X509VerifyParamRef::set_host` buffer over-read Medium Jun 21, 2023 >= 0.10.0 < 0.10.55
`openssl` `X509NameBuilder::build` returned object is not thread safe Medium Mar 24, 2023 >= 0.9.7 < 0.10.48
`openssl` `SubjectAlternativeName` and `ExtendedKeyUsage::other` allow arbitrary file read High Mar 24, 2023 >= 0.9.7 < 0.10.48
`openssl` `X509Extension::new` and `X509Extension::new_nid` null pointer dereference High Mar 24, 2023 >= 0.9.7 < 0.10.48
CVE-2018-20997 High Aug 26, 2019 < 0.10.9
CVE-2016-10931 Medium Aug 26, 2019 < 0.9.0

Ruby icon openssl

Title Severity Exploit Date Affected Version
CVE-2016-7798 High Jan 30, 2017 < 2.0.0

Node.js icon openssl

Title Severity Exploit Date Affected Version
CVE-2023-49210 Critical Nov 23, 2023 <= 2.0.0

sfackler / openssl

Title Severity Exploit Date Affected Version
CVE-2023-53159 Critical Jul 28, 2025 < 0.10.55