VDB
BDU%3A2016-01654
BDU%3A2016-01654
PUBLISHED
CVSS 5 MEDIUM
Уязвимость реализации ASN1_TFLG_COMBINE библиотеки OpenSSL, позволяющая нарушителю получить защищаемую информацию из памяти процесса
Risk Scores
CVSS 2.0
5
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple Inc., OpenSSL Software Foundation, Oracle Corp., Moxa Inc. | OS X, OpenSSL, API Gateway, Sun Ray Software, Exalogic Infrastructure, VM VirtualBox, Transportation Management, Life Sciences Data Hub, MOXA EDR-810 |
Timeline
- Jul 19, 2016 CVE Published
- Nov 28, 2024 CVE Updated
References
- http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html url
- http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html url
- https://support.apple.com/HT206167 url
- https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40100 url
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05131085 url
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05111017 url
- https://git.openssl.org/?p=openssl.git;a=commit;h=cc598f321fbac9c04da5766243ed55d55948637d url
- http://openssl.org/news/secadv/20151203.txt url
- http://marc.info/?l=bugtraq&m=145382583417444&w=2 url
- http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html url
- https://www.moxa.com/en/support/product-support/security-advisory/edr-810-series-security-router-vulnerabilities-(1 url