CVE-2015-5537

2015-08-02T21:59:02
ID CVE-2015-5537
Type cve
Reporter NVD
Modified 2017-09-20T21:29:11

Description

The SSL layer of the HTTPS service in Siemens RuggedCom ROS before 4.2.0 and ROX II does not properly implement CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, a different vulnerability than CVE-2014-3566.