cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-0567,https://securityvulnerability.io/vulnerability/CVE-2024-0567,Gnutls: rejects certificate chain with distributed trust,"A vulnerability exists in GnuTLS that leads to the rejection of a certificate chain with distributed trust when utilizing the cockpit-certificate-ensure functionality. This issue effectively allows unauthenticated remote clients or attackers to exploit the flaw, resulting in potential denial of service conditions. The flaw emphasizes the importance of robust certificate validation processes in enhancing the security posture of applications relying on GnuTLS.",Red Hat,"Gnutls,Red Hat Enterprise Linux 9,Red Hat Enterprise Linux 9.2 Extended Update Support,Red Hat Enterprise Linux 6,Red Hat Enterprise Linux 7,Red Hat Enterprise Linux 8,Red Hat Openshift Container Platform 3.11,Fedora",7.5,HIGH,0.001879999996162951,false,false,false,false,,false,false,2024-01-16T14:01:59.178Z,0
CVE-2024-0553,https://securityvulnerability.io/vulnerability/CVE-2024-0553,Gnutls: incomplete fix for cve-2023-5981,"A vulnerability exists in GnuTLS where the response times to malformed ciphertexts during RSA-PSK ClientKeyExchange differ significantly from responses to correctly padded ciphertexts. This discrepancy can be exploited by remote attackers to execute timing side-channel attacks, which may lead to the unintended leakage of sensitive data. It is important to note that this vulnerability is classified as an incomplete resolution for a previously identified issue and necessitates prompt attention to secure data transmissions effectively.",Red Hat,"Gnutls,Red Hat Enterprise Linux 8,Red Hat Enterprise Linux 8.6 Extended Update Support,Red Hat Enterprise Linux 8.8 Extended Update Support,Red Hat Enterprise Linux 9,Red Hat Enterprise Linux 9.2 Extended Update Support,Red Hat Enterprise Linux 6,Red Hat Enterprise Linux 7,Fedora",7.5,HIGH,0.0027600000612437725,false,false,false,false,,false,false,2024-01-16T11:40:50.677Z,0