GHSA-2h34-774g-95vx

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.9

Описание

The ssl-proxy-openssl.c function in Dovecot before 2.2.17, when SSLv3 is disabled, allow remote attackers to cause a denial of service (login process crash) via vectors related to handshake failures.

Ссылки

EPSS

Процентиль: 92%

0.09152

Низкий

5.9 Medium

CVSS3

CVE ID

CVE-2015-3420

Дефекты

CWE-295

Связанные уязвимости

CVE-2015-3420

CVSS3: 5.9

ubuntu

почти 8 лет назад

The ssl-proxy-openssl.c function in Dovecot before 2.2.17, when SSLv3 is disabled, allow remote attackers to cause a denial of service (login process crash) via vectors related to handshake failures.

CVE-2015-3420

redhat

больше 10 лет назад

The ssl-proxy-openssl.c function in Dovecot before 2.2.17, when SSLv3 is disabled, allow remote attackers to cause a denial of service (login process crash) via vectors related to handshake failures.

CVE-2015-3420

CVSS3: 5.9

nvd

почти 8 лет назад

The ssl-proxy-openssl.c function in Dovecot before 2.2.17, when SSLv3 is disabled, allow remote attackers to cause a denial of service (login process crash) via vectors related to handshake failures.

CVE-2015-3420

CVSS3: 5.9

debian

почти 8 лет назад

The ssl-proxy-openssl.c function in Dovecot before 2.2.17, when SSLv3 ...

EPSS

Процентиль: 92%

0.09152

Низкий

5.9 Medium

CVSS3

CVE ID

CVE-2015-3420

Дефекты

CWE-295