Puretls
CVEs (2)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2005-4839 | 0.00 | — | 0.01 | Dec 31, 2005 | PureTLS before 0.9b5 does not clear optional Extensions and Algorithm.Parameters values before parsing, which might trigger an information leak of values from earlier certificates. | |||
| CVE-2002-0420 | 0.00 | — | 0.02 | Aug 12, 2002 | Vulnerability in PureTLS before 0.9b2 related to injection attacks, which could possibly allow remote attackers to corrupt or hijack user sessions. |
- CVE-2005-4839Dec 31, 2005risk 0.00cvss —epss 0.01
PureTLS before 0.9b5 does not clear optional Extensions and Algorithm.Parameters values before parsing, which might trigger an information leak of values from earlier certificates.
- CVE-2002-0420Aug 12, 2002risk 0.00cvss —epss 0.02
Vulnerability in PureTLS before 0.9b2 related to injection attacks, which could possibly allow remote attackers to corrupt or hijack user sessions.