Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2015-5262HistoryOct 27, 2015 - 4:59 p.m.
CVE-2015-5262
2015-10-2716:59:07
Debian Security Bug Tracker
security-tracker.debian.org
16
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
EPSS
0.033
Percentile
91.3%
http/conn/ssl/SSLConnectionSocketFactory.java in Apache HttpComponents HttpClient before 4.3.6 ignores the http.socket.timeout configuration setting during an SSL handshake, which allows remote attackers to cause a denial of service (HTTPS call hang) via unspecified vectors.
Related
openvas
openvas
Huawei EulerOS: Security Advisory for jakarta-commons-httpclient (EulerOS-SA-2019-2397)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for httpcomponents-client (EulerOS-SA-2019-2518)
2020-01-23 00:00:00
Debian: Security Advisory (DLA-322-1)
2023-03-08 00:00:00
fedora
fedora
[SECURITY] Fedora 23 Update: jakarta-commons-httpclient-3.1-23.fc23
2015-10-01 16:55:47
[SECURITY] Fedora 21 Update: jakarta-commons-httpclient-3.1-20.fc21
2015-10-01 20:27:13
[SECURITY] Fedora 22 Update: jakarta-commons-httpclient-3.1-23.fc22
2015-10-01 18:59:42
nessus
nessus
Fedora 22 : jakarta-commons-httpclient-3.1-23.fc22 (2015-15589)
2015-10-02 00:00:00
Fedora 23 : jakarta-commons-httpclient-3.1-23.fc23 (2015-15590)
2015-10-02 00:00:00
EulerOS 2.0 SP2 : httpcomponents-client (EulerOS-SA-2019-2518)
2019-12-04 00:00:00
ubuntucve
ubuntucve
CVE-2015-5262
2015-09-30 00:00:00
CVE-2018-1000872
2018-12-20 00:00:00
osv
osv
Denial of service vulnerability in org.apache.httpcomponents:httpclient
2018-10-17 00:05:29
CVE-2018-1000872
2018-12-20 17:29:00
PYSEC-2018-22
2018-12-20 17:29:00
securityvulns
securityvulns
Apache Commons HttpClient DoS
2015-10-25 00:00:00
[USN-2769-1] Apache Commons HttpClient
2015-10-25 00:00:00
debian
debian
[SECURITY] [DLA 322-1] commons-httpclient security update
2015-10-01 08:24:15
prion
prion
Design/Logic Flaw
2015-10-27 16:59:00
Design/Logic Flaw
2018-12-20 17:29:00
github
github
Denial of service vulnerability in org.apache.httpcomponents:httpclient
2018-10-17 00:05:29
PyKMIP Denial of service vulnerability
2018-12-21 17:46:39
cvelist
cvelist
CVE-2015-5262
2015-10-27 16:00:00
CVE-2018-1000872
2022-10-03 16:21:59
mageia
mageia
nvd
nvd
CVE-2015-5262
2015-10-27 16:59:07
CVE-2018-1000872
2018-12-20 17:29:00
cve
cve
CVE-2015-5262
2015-10-27 16:59:07
CVE-2018-1000872
2022-10-03 16:21:59
ibm
ibm
Security Bulletin: Vulnerability from Apache HttpComponents affects IBM Cloud Pak System (CVE-2011-1498, CVE-2015-5262)
2020-05-06 11:57:04
redhatcve
redhatcve
CVE-2018-1000872
2019-01-11 21:19:42
suse
suse
Security update for apache-commons-httpclient (important)
2020-11-07 00:00:00
Security update for apache-commons-httpclient (important)
2020-11-08 00:00:00
debiancve
debiancve
CVE-2018-1000872
2022-10-03 16:21:59
photon
photon
Moderate Photon OS Security Update - PHSA-2020-0141
2020-09-17 00:00:00
Moderate Photon OS Security Update - PHSA-2020-3.0-0141
2020-09-17 00:00:00
ubuntu
ubuntu
Apache Commons HttpClient vulnerabilities
2015-10-14 00:00:00
oracle
oracle
CPU July 2018
2018-07-17 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
EPSS
0.033
Percentile
91.3%
Related for DEBIANCVE:CVE-2015-5262