Lucene search

[email protected]NVD:CVE-2016-2107

HistoryMay 05, 2016 - 1:59 a.m.

CVE-2016-2107

2016-05-0501:59:03

CWE-200

CWE-310

[email protected]

web.nvd.nist.gov

2.6 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:N/A:N

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

6.5 Medium

AI Score

Confidence

High

0.967 High

EPSS

Percentile

99.7%

JSON

The AES-NI implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h does not consider memory allocation during a certain padding check, which allows remote attackers to obtain sensitive cleartext information via a padding-oracle attack against an AES CBC session. NOTE: this vulnerability exists because of an incorrect fix for CVE-2013-0169.

Affected configurations

NVD

Node

redhatenterprise_linux_desktopMatch7.0

redhatenterprise_linux_hpc_nodeMatch7.0

redhatenterprise_linux_hpc_node_eusMatch7.2

redhatenterprise_linux_serverMatch7.0

redhatenterprise_linux_server_ausMatch7.2

redhatenterprise_linux_server_eusMatch7.2

redhatenterprise_linux_workstationMatch7.0

Node

opensuseleapMatch42.1

opensuseopensuseMatch13.2

Node

opensslopensslRange≤1.0.1s

opensslopensslMatch1.0.2

opensslopensslMatch1.0.2beta1

opensslopensslMatch1.0.2beta2

opensslopensslMatch1.0.2beta3

opensslopensslMatch1.0.2a

opensslopensslMatch1.0.2b

opensslopensslMatch1.0.2c

opensslopensslMatch1.0.2d

opensslopensslMatch1.0.2e

opensslopensslMatch1.0.2f

opensslopensslMatch1.0.2g

Node

googleandroidMatch4.0

googleandroidMatch4.0.1

googleandroidMatch4.0.2

googleandroidMatch4.0.3

googleandroidMatch4.0.4

googleandroidMatch4.1

googleandroidMatch4.1.2

googleandroidMatch4.2

googleandroidMatch4.2.1

googleandroidMatch4.2.2

googleandroidMatch4.3

googleandroidMatch4.3.1

googleandroidMatch4.4

googleandroidMatch4.4.1

googleandroidMatch4.4.2

googleandroidMatch4.4.3

googleandroidMatch5.0

googleandroidMatch5.0.1

googleandroidMatch5.1

googleandroidMatch5.1.0

Node

hphelion_openstackMatch2.0.0

hphelion_openstackMatch2.1.0

hphelion_openstackMatch2.1.2

hphelion_openstackMatch2.1.4

Node

redhatenterprise_linux_desktopMatch6.0

redhatenterprise_linux_hpc_nodeMatch6.0

redhatenterprise_linux_serverMatch6.0

redhatenterprise_linux_workstationMatch6.0

Node

nodejsnode.jsRange0.10.0–0.10.45

nodejsnode.jsRange0.12.0–0.12.14

nodejsnode.jsRange4.0.0–4.1.2-

nodejsnode.jsRange4.2.0–4.4.4lts

nodejsnode.jsRange5.0.0–5.11.1-

nodejsnode.jsMatch6.0.0

Node

debiandebian_linuxMatch8.0

Node

canonicalubuntu_linuxMatch12.04-

canonicalubuntu_linuxMatch14.04esm

canonicalubuntu_linuxMatch15.10

canonicalubuntu_linuxMatch16.04esm

References

kb.juniper.net/InfoCenter/index?page=content&id=JSA10759

lists.apple.com/archives/security-announce/2016/Jul/msg00000.html

lists.fedoraproject.org/pipermail/package-announce/2016-May/183457.html

lists.fedoraproject.org/pipermail/package-announce/2016-May/183607.html

lists.fedoraproject.org/pipermail/package-announce/2016-May/184605.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00001.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00008.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00011.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00013.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00014.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00016.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00019.html

lists.opensuse.org/opensuse-security-announce/2016-06/msg00019.html

packetstormsecurity.com/files/136912/Slackware-Security-Advisory-openssl-Updates.html

rhn.redhat.com/errata/RHSA-2016-0722.html

rhn.redhat.com/errata/RHSA-2016-0996.html

rhn.redhat.com/errata/RHSA-2016-2073.html

rhn.redhat.com/errata/RHSA-2016-2957.html

source.android.com/security/bulletin/2016-07-01.html

support.citrix.com/article/CTX212736

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160504-openssl

web-in-security.blogspot.ca/2016/05/curious-padding-oracle-in-openssl-cve.html

www.debian.org/security/2016/dsa-3566

www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html

www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html

www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html

www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html

www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html

www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html

www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html

www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html

www.securityfocus.com/bid/89760

www.securityfocus.com/bid/91787

www.securitytracker.com/id/1035721

www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.542103

www.ubuntu.com/usn/USN-2959-1

blog.cloudflare.com/yet-another-padding-oracle-in-openssl-cbc-ciphersuites/

bto.bluecoat.com/security-advisory/sa123

cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf

git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=68595c0c2886e7942a14f98c17a55a88afb6c292

h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn03726en_us

h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn03728en_us

h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03756en_us

h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03765en_us

h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05164862

h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05320149

h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05386804

h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722

kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40202

kc.mcafee.com/corporate/index?page=content&id=SB10160

security.gentoo.org/glsa/201612-16

security.netapp.com/advisory/ntap-20160504-0001/

support.apple.com/HT206903

www.exploit-db.com/exploits/39768/

www.freebsd.org/security/advisories/FreeBSD-SA-16:17.openssl.asc

www.openssl.org/news/secadv/20160503.txt

www.tenable.com/security/tns-2016-18

2.6 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:N/A:N

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

6.5 Medium

AI Score

Confidence

High

0.967 High

EPSS

Percentile

99.7%

JSON

CVE-2016-2107

Affected configurations

References

Related