Описание
Symantec IntelligenceCenter 3.3 is vulnerable to the Return of the Bleichenbacher Oracle Threat (ROBOT) attack. A remote attacker, who has captured a pre-recorded SSL session inspected by SSLV, can establish large numbers of crafted SSL connections to the target and obtain the session keys required to decrypt the pre-recorded SSL session.
Ссылки
- Third Party AdvisoryVDB Entry
- Vendor Advisory
- Third Party AdvisoryVDB Entry
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:broadcom:symantec_intelligencecenter:3.3:*:*:*:*:*:*:*
EPSS
Процентиль: 58%
0.0036
Низкий
5.9 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-203
Связанные уязвимости
CVSS3: 5.9
github
больше 3 лет назад
Symantec IntelligenceCenter 3.3 is vulnerable to the Return of the Bleichenbacher Oracle Threat (ROBOT) attack. A remote attacker, who has captured a pre-recorded SSL session inspected by SSLV, can establish large numbers of crafted SSL connections to the target and obtain the session keys required to decrypt the pre-recorded SSL session.
EPSS
Процентиль: 58%
0.0036
Низкий
5.9 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-203