CVE-2018-16870

Опубликовано: 03 янв. 2019

Источник: debian

EPSS Низкий

Описание

It was found that wolfssl before 3.15.7 is vulnerable to a new variant of the Bleichenbacher attack to perform downgrade attacks against TLS. This may lead to leakage of sensible data.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
wolfssl	fixed	4.1.0+dfsg-1		package

Примечания

https://github.com/wolfSSL/wolfssl/pull/1950

EPSS

Процентиль: 40%

0.00186

Низкий

Связанные уязвимости

CVE-2018-16870

CVSS3: 5.9

ubuntu

около 7 лет назад

It was found that wolfssl before 3.15.7 is vulnerable to a new variant of the Bleichenbacher attack to perform downgrade attacks against TLS. This may lead to leakage of sensible data.

CVE-2018-16870

CVSS3: 5.9

nvd

около 7 лет назад

It was found that wolfssl before 3.15.7 is vulnerable to a new variant of the Bleichenbacher attack to perform downgrade attacks against TLS. This may lead to leakage of sensible data.

GHSA-ch8h-fr7v-29p6

CVSS3: 5.9

github

больше 3 лет назад

It was found that wolfssl before 3.15.7 is vulnerable to a new variant of the Bleichenbacher attack to perform downgrade attacks against TLS. This may lead to leakage of sensible data.

EPSS

Процентиль: 40%

0.00186

Низкий