Lucene search

K
f5F5SOL13598
HistoryMay 22, 2012 - 12:00 a.m.

SOL13598 - OpenSSL vulnerability CVE-2012-0884

2012-05-2200:00:00
support.f5.com
462

0.009 Low

EPSS

Percentile

82.5%

The implementation of Cryptographic Message Syntax (CMS) and PKCS #7 in OpenSSL before 0.9.8u and 1.x before 1.0.0h does not properly restrict certain oracle behavior, which makes it easier for context-dependent attackers to decrypt data using a Million Message Attack (MMA) adaptive chosen ciphertext attack.