exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 6

CVE-2015-0285

почти 11 лет назад

The ssl3_client_hello function in s3_clnt.c in OpenSSL 1.0.2 before 1.0.2a does not ensure that the PRNG is seeded before proceeding with a handshake, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by sniffing the network and then conducting a brute-force attack.

CVSS2: 4.3

EPSS: Низкий

CVE-2015-0285

почти 11 лет назад

The ssl3_client_hello function in s3_clnt.c in OpenSSL 1.0.2 before 1.0.2a does not ensure that the PRNG is seeded before proceeding with a handshake, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by sniffing the network and then conducting a brute-force attack.

CVSS2: 2.6

EPSS: Низкий

CVE-2015-0285

почти 11 лет назад

The ssl3_client_hello function in s3_clnt.c in OpenSSL 1.0.2 before 1.0.2a does not ensure that the PRNG is seeded before proceeding with a handshake, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by sniffing the network and then conducting a brute-force attack.

CVSS2: 4.3

EPSS: Низкий

CVE-2015-0285

почти 11 лет назад

The ssl3_client_hello function in s3_clnt.c in OpenSSL 1.0.2 before 1. ...

CVSS2: 4.3

EPSS: Низкий

GHSA-8v72-7j9q-whx9

больше 3 лет назад

The ssl3_client_hello function in s3_clnt.c in OpenSSL 1.0.2 before 1.0.2a does not ensure that the PRNG is seeded before proceeding with a handshake, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by sniffing the network and then conducting a brute-force attack.

EPSS: Низкий

BDU:2015-11031

почти 11 лет назад

Уязвимость библиотеки OpenSSL, позволяющая нарушителю обойти механизм криптографической защиты

CVSS2: 4.3

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2015-0285 The ssl3_client_hello function in s3_clnt.c in OpenSSL 1.0.2 before 1.0.2a does not ensure that the PRNG is seeded before proceeding with a handshake, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by sniffing the network and then conducting a brute-force attack.	CVSS2: 4.3	5% Низкий	почти 11 лет назад
CVE-2015-0285 The ssl3_client_hello function in s3_clnt.c in OpenSSL 1.0.2 before 1.0.2a does not ensure that the PRNG is seeded before proceeding with a handshake, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by sniffing the network and then conducting a brute-force attack.	CVSS2: 2.6	5% Низкий	почти 11 лет назад
CVE-2015-0285 The ssl3_client_hello function in s3_clnt.c in OpenSSL 1.0.2 before 1.0.2a does not ensure that the PRNG is seeded before proceeding with a handshake, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by sniffing the network and then conducting a brute-force attack.	CVSS2: 4.3	5% Низкий	почти 11 лет назад
CVE-2015-0285 The ssl3_client_hello function in s3_clnt.c in OpenSSL 1.0.2 before 1. ...	CVSS2: 4.3	5% Низкий	почти 11 лет назад
GHSA-8v72-7j9q-whx9 The ssl3_client_hello function in s3_clnt.c in OpenSSL 1.0.2 before 1.0.2a does not ensure that the PRNG is seeded before proceeding with a handshake, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by sniffing the network and then conducting a brute-force attack.		5% Низкий	больше 3 лет назад
BDU:2015-11031 Уязвимость библиотеки OpenSSL, позволяющая нарушителю обойти механизм криптографической защиты	CVSS2: 4.3	5% Низкий	почти 11 лет назад

Уязвимостей на страницу