Описание
An issue in MatrixSSL 4.5.1-open and earlier leads to failure to securely check the SessionID field, resulting in the misuse of an all-zero MasterSecret that can decrypt secret data.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| matrixssl | removed | package |
EPSS
Процентиль: 73%
0.00755
Низкий
Связанные уязвимости
CVSS3: 7.5
nvd
около 3 лет назад
An issue in MatrixSSL 4.5.1-open and earlier leads to failure to securely check the SessionID field, resulting in the misuse of an all-zero MasterSecret that can decrypt secret data.
CVSS3: 7.5
github
около 3 лет назад
An issue in MatrixSSL 4.5.1-open and earlier leads to failure to securely check the SessionID field, resulting in the misuse of an all-zero MasterSecret that can decrypt secret data.
EPSS
Процентиль: 73%
0.00755
Низкий