Lucene search

K
cvelistRedhatCVELIST:CVE-2011-4576
HistoryJan 06, 2012 - 1:00 a.m.

CVE-2011-4576

2012-01-0601:00:00
redhat
www.cve.org

8.1 High

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.6%

The SSL 3.0 implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly initialize data structures for block cipher padding, which might allow remote attackers to obtain sensitive information by decrypting the padding data sent by an SSL peer.

References