Risk Scores
CVSS v4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
EPSS Score
14.68%
94.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu | Ubuntu Linux | |
| Extreme Networks | Extreme Networks HiveOS <10.8r3 | |
| Open Source | Open Source OpenSSL | |
| Specification | Specification TLS | |
| Open Source | Open Source OpenSSH | |
| NGINX | NGINX NGINX | |
| SUSE | SUSE Linux | |
| F5 | F5 BIG-IP | |
| Moxa | Moxa Switch EDS-510E <5.7.4 | |
| WatchGuard | WatchGuard Firebox | |
| Open Source | Open Source OpenJDK <=17.0.5 | |
| Apache | Apache HTTP Server | |
| Open Source | Open Source Postfix | |
| Open Source | Open Source OpenVPN |
Timeline
- Nov 11, 2021 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- May 17, 2023 EPSS Score
- Jun 26, 2024 CVE Updated
- Mar 17, 2025 EPSS Score
- Mar 19, 2025 EPSS Score
- Mar 22, 2025 EPSS Score
- Mar 26, 2025 EPSS Score
- Mar 28, 2025 EPSS Score
- Apr 1, 2025 EPSS Score
- Apr 13, 2025 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2021/wid-sec-w-2023-1352.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1352 advisory
- https://github.com/Balasys/dheater advisory
- https://www.suse.com/support/kb/doc/?id=000020510 advisory
- https://my.f5.com/manage/s/article/K83120834 advisory
- https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2024-00008 advisory
- https://www.moxa.com/en/support/product-support/security-advisory/mpsa-259471-security-enhancement-ssh-weak-algorithms-supported advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1886.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1886 advisory
- https://community.sophos.com/utm-firewall/b/blog/posts/utm-up2date-9-716-released advisory
- https://ubuntu.com/security/notices/USN-6854-1 advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3056.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3056 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2024-41996 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2022-40735 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2002-20001 advisory
- https://dheatattack.gitlab.io/details/ advisory
- https://dheatattack.gitlab.io/faq/ advisory
- https://dheatattack.gitlab.io/mitigations/ advisory
- https://cybersecuritynews.com/dheat-attack/ advisory
…and 14 more