Lucene search

CVE-2021-23839

🗓️ 16 Feb 2021 17:13:15Reported by opensslType

cve🔗 web.nvd.nist.gov📰️ 26 Media mentions👁 211 Views

OpenSSL 1.0.2 vulnerability allows version rollback attack in SSLv2, due to incorrect padding check

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 83
OSV	CVE-2021-23839	16 Feb 202117:15	–	osv
OpenVAS	OpenSSL: Incorrect SSLv2 rollback protection (CVE-2021-23839) - Windows	17 Feb 202100:00	–	openvas
OpenVAS	OpenSSL: Incorrect SSLv2 rollback protection (CVE-2021-23839) - Linux	17 Feb 202100:00	–	openvas
Debian CVE	CVE-2021-23839	16 Feb 202117:15	–	debiancve
Vulnrichment	CVE-2021-23839 Incorrect SSLv2 rollback protection	16 Feb 202116:55	–	vulnrichment
AlpineLinux	CVE-2021-23839	16 Feb 202117:15	–	alpinelinux
RedhatCVE	CVE-2021-23839	18 Feb 202117:04	–	redhatcve
F5 Networks	K61903372 : OpenSSL vulnerability CVE-2021-23839	18 Feb 202100:00	–	f5
UbuntuCve	CVE-2021-23839	16 Feb 202100:00	–	ubuntucve
OpenSSL	Vulnerability in OpenSSL - Incorrect SSLv2 rollback protection	16 Feb 202100:00	–	openssl

Nvd

Node

openssl opensslRange1.0.2s–1.0.2x

Node

oracle business_intelligenceMatch5.5.0.0.0enterprise

oracle business_intelligenceMatch5.9.0.0.0enterprise

oracle business_intelligenceMatch12.2.1.3.0enterprise

oracle business_intelligenceMatch12.2.1.4.0enterprise

oracle enterprise_manager_for_storage_managementMatch13.4.0.0

oracle enterprise_manager_ops_centerMatch12.4.0.0

oracle graalvmMatch19.3.5enterprise

oracle graalvmMatch20.3.1.2community

oracle graalvmMatch21.0.0.2community

oracle jd_edwards_world_securityMatcha9.4

oracle zfs_storage_appliance_kitMatch8.8

Node

siemens sinec_insRange<1.0

siemens sinec_insMatch1.0-

siemens sinec_insMatch1.0sp1

[
  {
    "vendor": "OpenSSL",
    "product": "OpenSSL",
    "versions": [
      {
        "version": "Fixed in OpenSSL 1.0.2y (Affected 1.0.2s-1.0.2x)",
        "status": "affected"
      }
    ]
  }
]

Source	Link
oracle	www.oracle.com/security-alerts/cpuApr2021.html
git	www.git.openssl.org/gitweb/
kb	www.kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44846
security	www.security.netapp.com/advisory/ntap-20240621-0006/
oracle	www.oracle.com/security-alerts/cpuoct2021.html
oracle	www.oracle.com//security-alerts/cpujul2021.html
security	www.security.netapp.com/advisory/ntap-20210219-0009/
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-637483.pdf
oracle	www.oracle.com/security-alerts/cpuapr2022.html
openssl	www.openssl.org/news/secadv/20210216.txt

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

16 Feb 2021 17:15Current

5.5Medium risk

Vulners AI Score5.5

CVSS24.3

CVSS33.7

EPSS0.00261

SSVC

CWE-327