Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

SSL/TLS Library

OpenSSL

OpenSSL is a robust commercial-grade and full-featured toolkit for the Transport Layer Security (TLS) and Secure Sockets Layer (SSL) protocols.

Official Site:

https://www.openssl.org/

Severity Summary:

Critical: 17 High: 73 Medium: 155 Low: 14
Reference
Title
Severity
CVE-2014-0195
OpenSSL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability
Medium
CVE-2014-0198
OpenSSL Other Vulnerability
Medium
CVE-2014-3572
OpenSSL Cryptographic Issues Vulnerability
Medium
CVE-2010-5298
OpenSSL Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition) Vulnerability
Medium
CVE-2014-3569
OpenSSL Other Vulnerability
Medium
CVE-2019-1552
OpenSSL Improper Certificate Validation Vulnerability
Low
CVE-2021-23839
OpenSSL Use of a Broken or Risky Cryptographic Algorithm Vulnerability
Low
CVE-2014-3566
OpenSSL Cryptographic Issues Vulnerability
Low
CVE-2019-1563
OpenSSL Missing Encryption of Sensitive Data Vulnerability
Low
CVE-2007-3108
OpenSSL Other Vulnerability
Low
CVE-2011-1945
OpenSSL Cryptographic Issues Vulnerability
Low
CVE-2009-0591
OpenSSL Improper Authentication Vulnerability
Low
CVE-2014-0076
OpenSSL Cryptographic Issues Vulnerability
Low
CVE-2015-1787
OpenSSL Improper Input Validation Vulnerability
Low
CVE-2004-0975
OpenSSL Other Vulnerability
Low
CVE-2016-0701
OpenSSL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Low
CVE-2015-4000
OpenSSL Cryptographic Issues Vulnerability
Low
CVE-2013-0169
OpenSSL Cryptographic Issues Vulnerability
Low
CVE-2020-1968
OpenSSL Inadequate Encryption Strength Vulnerability
Low