Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2021-37155

Опубликовано: 21 июл. 2021
Источник: debian
EPSS Низкий

Описание

wolfSSL 4.6.x through 4.7.x before 4.8.0 does not produce a failure outcome when the serial number in an OCSP request differs from the serial number in the OCSP response.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
wolfsslfixed5.0.0-1package
wolfsslfixed4.6.0+p1-0+deb11u1bullseyepackage

Примечания

  • https://github.com/wolfSSL/wolfssl/pull/3990

  • https://github.com/wolfSSL/wolfssl/releases/tag/v4.8.0-stable

EPSS

Процентиль: 66%
0.00513
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2021-37155

CVSS3: 9.8
ubuntu
больше 4 лет назад

wolfSSL 4.6.x through 4.7.x before 4.8.0 does not produce a failure outcome when the serial number in an OCSP request differs from the serial number in the OCSP response.

nvd логотип

CVE-2021-37155

CVSS3: 9.8
nvd
больше 4 лет назад

wolfSSL 4.6.x through 4.7.x before 4.8.0 does not produce a failure outcome when the serial number in an OCSP request differs from the serial number in the OCSP response.

github логотип

GHSA-75c6-vpv5-rvvq

github
больше 3 лет назад

wolfSSL 4.6.x through 4.7.x before 4.8.0 does not produce a failure outcome when the serial number in an OCSP request differs from the serial number in the OCSP response.

EPSS

Процентиль: 66%
0.00513
Низкий