Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2016-2217

Опубликовано: 30 янв. 2017
Источник: nvd
CVSS3: 5.3
CVSS2: 5
EPSS Низкий

Описание

The OpenSSL address implementation in Socat 1.7.3.0 and 2.0.0-b8 does not use a prime number for the DH, which makes it easier for remote attackers to obtain the shared secret.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:dest-unreach:socat:1.7.3.0:*:*:*:*:*:*:*
cpe:2.3:a:dest-unreach:socat:2.0.0:b8:*:*:*:*:*:*

EPSS

Процентиль: 57%
0.00352
Низкий

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-320

Связанные уязвимости

ubuntu логотип

CVE-2016-2217

CVSS3: 5.3
ubuntu
около 9 лет назад

The OpenSSL address implementation in Socat 1.7.3.0 and 2.0.0-b8 does not use a prime number for the DH, which makes it easier for remote attackers to obtain the shared secret.

redhat логотип

CVE-2016-2217

redhat
около 10 лет назад

The OpenSSL address implementation in Socat 1.7.3.0 and 2.0.0-b8 does not use a prime number for the DH, which makes it easier for remote attackers to obtain the shared secret.

debian логотип

CVE-2016-2217

CVSS3: 5.3
debian
около 9 лет назад

The OpenSSL address implementation in Socat 1.7.3.0 and 2.0.0-b8 does ...

github логотип

GHSA-x8h2-j222-xxr3

CVSS3: 5.3
github
больше 3 лет назад

The OpenSSL address implementation in Socat 1.7.3.0 and 2.0.0-b8 does not use a prime number for the DH, which makes it easier for remote attackers to obtain the shared secret.

EPSS

Процентиль: 57%
0.00352
Низкий

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-320