An OpenSSL client will accept the use of an RSA temporary key in a non-export RSA key exchange ciphersuite. A server could present a weak temporary key and downgrade the security of the session.

cisa 1

cisco 1

hackerone 1

ibm 83

f5 4

openvas 25

debiancve 2

cve 6

fortinet 1

checkpoint_security 1

prion 6

nessus 45

cert 1

thn 2

ubuntucve 2

veracode 1

checkpoint_advisories 2

kitploit 1

debian 1

osv 2

oraclelinux 2

centos 1

redhat 1

securityvulns 1

aix 1

ubuntu 1

kaspersky 1

slackware 1

altlinux 1

freebsd_advisory 1

cisa

FREAK

2015-03-06 00:00:00

cisco

OpenSSL RSA Temporary Key Cryptographic Downgrade Vulnerability

2015-01-13 19:57:19

hackerone

Internet Bug Bounty: FREAK: Factoring RSA_EXPORT Keys to Impersonate TLS Servers

2015-03-05 16:18:06

ibm

Security Bulletin: Vulnerability in OpenSSL affects IBM XIV Storage System Gen3 and Gen2 (CVE-2015-0204)

2018-06-18 00:09:22

Security Bulletin: OpenSSL vulnerabilities for Rational Automation Framework Security Advisory (CVE-2015-0204)

2018-06-17 05:01:24

Security Bulletin: Vulnerability in OpenSSL affects IBM® DB2® LUW (CVE-2015-0204)

2018-06-16 13:36:41

K16139 : OpenSSL vulnerability CVE-2015-0204

2015-10-02 00:00:00

SOL16139 - OpenSSL vulnerability CVE-2015-0204

2015-02-12 00:00:00

SOL16903 - Microsoft Schannel vulnerability CVE-2015-1637

2015-07-13 00:00:00

openvas

SSL/TLS: RSA Temporary Key Handling 'RSA_EXPORT' Downgrade Issue (FREAK)

2015-03-06 00:00:00

DTLS: Deprecated DTLSv1.0 Detection

2024-01-09 00:00:00

OpenSSL Information Disclosure Vulnerability (20150319 - 4) - Linux

2021-07-29 00:00:00

debiancve

CVE-2015-0204

2015-01-09 02:59:00

CVE-2015-2319

2018-01-08 19:29:00

cve

CVE-2015-0204

2015-01-09 02:59:00

CVE-2015-0138

2015-03-25 01:59:00

CVE-2015-0535

2015-08-20 10:59:00

fortinet

TLS FREAK Attack

2015-03-04 00:00:00

checkpoint_security

Check Point response to TLS FREAK Attack (CVE-2015-0204)

2015-03-03 22:00:00

prion

Code injection

2015-01-09 02:59:00

Design/Logic Flaw

2018-01-08 19:29:00

Design/Logic Flaw

2015-03-25 01:59:00

nessus

F5 Networks BIG-IP : OpenSSL vulnerability (SOL16139) (FREAK)

2015-10-05 00:00:00

Xerox WorkCentre 6400 OpenSSL RSA Temporary Key Handling EXPORT_RSA Ciphers Downgrade MitM (XRX15AP) (FREAK)

2015-12-11 00:00:00

Opera < 28.0.1750.40 SSL/TLS EXPORT_RSA Ciphers Downgrade MitM (Mac OS X) (FREAK)

2015-03-17 00:00:00

cert

SSL/TLS implementations accept export-grade RSA keys (FREAK attack)

2015-03-06 00:00:00

thn

'FREAK' — New SSL/TLS Vulnerability Explained

2015-03-03 20:30:00

OpenSSL to Patch Undisclosed High Severity Vulnerability this Thursday

2015-07-06 22:12:00

ubuntucve

CVE-2015-0204

2015-01-08 00:00:00

CVE-2015-2319

2015-03-18 00:00:00

veracode

Brute Force Decryption

2017-02-10 01:27:34

checkpoint_advisories

SSL Export Cipher Suite (CVE-2015-0204; CVE-2015-1637)

2015-03-04 00:00:00

OpenSSL TLS Export Cipher Suite Downgrade (CVE-2015-0204; CVE-2015-1637)

2015-03-04 00:00:00

kitploit

A2SV - Auto Scanning to SSL Vulnerability

2016-08-06 14:46:00

debian

[SECURITY] [DLA 132-1] openssl security update

2015-01-11 13:16:17

osv

openssl - security update

2015-01-11 00:00:00

openssl - security update

2015-01-11 00:00:00

oraclelinux

openssl security update

2015-02-26 00:00:00

openssl security update

2015-01-20 00:00:00

centos

openssl security update

2015-01-20 21:00:39

redhat

(RHSA-2015:0066) Moderate: openssl security update

2015-01-20 00:00:00

securityvulns

[USN-2459-1] OpenSSL vulnerabilities

2015-01-13 00:00:00

aix

Multiple Security vulnerabilities in AIX OpenSSL

2015-02-04 06:24:41

ubuntu

OpenSSL vulnerabilities

2015-01-12 00:00:00

kaspersky

KLA10460 Multiple vulnerabilities in OpenSSL

2015-01-08 00:00:00

slackware

[slackware-security] openssl

2015-01-09 18:34:39

altlinux

Security fix for the ALT Linux 9 package openssl10 version 1.0.1k-alt1

2015-01-12 00:00:00

freebsd_advisory

FreeBSD-SA-15:06.openssl

2015-03-19 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

6.4 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.948 High

EPSS

Percentile

99.2%

JSON

Related for OPENSSL:CVE-2015-0204