CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-4128

Buffer overflow in the gnutls_session_get_data function in lib/gnutls_session.c in GnuTLS 2.12.x before 2.12.14 and 3.x before 3.0.7, when used on a client that performs nonstandard session resumption, allows remote TLS servers to cause a denial of service (application crash) via a large SessionTicket.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.013

EPSS Ranking 78.9%

CVSS Severity

CVSS v2 Score 4.3

References

Products affected by CVE-2011-4128

Gnu » Gnutls » Version: 2.12.0

cpe:2.3:a:gnu:gnutls:2.12.0
Gnu » Gnutls » Version: 2.12.1

cpe:2.3:a:gnu:gnutls:2.12.1
Gnu » Gnutls » Version: 2.12.10

cpe:2.3:a:gnu:gnutls:2.12.10
Gnu » Gnutls » Version: 2.12.11

cpe:2.3:a:gnu:gnutls:2.12.11
Gnu » Gnutls » Version: 2.12.12

cpe:2.3:a:gnu:gnutls:2.12.12
Gnu » Gnutls » Version: 2.12.13

cpe:2.3:a:gnu:gnutls:2.12.13
Gnu » Gnutls » Version: 2.12.2

cpe:2.3:a:gnu:gnutls:2.12.2
Gnu » Gnutls » Version: 2.12.3

cpe:2.3:a:gnu:gnutls:2.12.3
Gnu » Gnutls » Version: 2.12.4

cpe:2.3:a:gnu:gnutls:2.12.4
Gnu » Gnutls » Version: 2.12.5

cpe:2.3:a:gnu:gnutls:2.12.5
Gnu » Gnutls » Version: 2.12.6

cpe:2.3:a:gnu:gnutls:2.12.6
Gnu » Gnutls » Version: 2.12.6.1

cpe:2.3:a:gnu:gnutls:2.12.6.1
Gnu » Gnutls » Version: 2.12.7

cpe:2.3:a:gnu:gnutls:2.12.7
Gnu » Gnutls » Version: 2.12.8

cpe:2.3:a:gnu:gnutls:2.12.8
Gnu » Gnutls » Version: 2.12.9

cpe:2.3:a:gnu:gnutls:2.12.9
Gnu » Gnutls » Version: 3.0.0

cpe:2.3:a:gnu:gnutls:3.0.0
Gnu » Gnutls » Version: 3.0.1

cpe:2.3:a:gnu:gnutls:3.0.1
Gnu » Gnutls » Version: 3.0.2

cpe:2.3:a:gnu:gnutls:3.0.2
Gnu » Gnutls » Version: 3.0.3

cpe:2.3:a:gnu:gnutls:3.0.3
Gnu » Gnutls » Version: 3.0.4

cpe:2.3:a:gnu:gnutls:3.0.4
Gnu » Gnutls » Version: 3.0.5

cpe:2.3:a:gnu:gnutls:3.0.5
Gnu » Gnutls » Version: 3.0.6

cpe:2.3:a:gnu:gnutls:3.0.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-4128

Products

Pricing

Contact Us