Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:24821
HistoryApr 10, 2020 - 1:06 a.m.

Information Disclosure

2020-04-1001:06:26
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11

0.009 Low

EPSS

Percentile

82.6%

openssl is vulnerable to information disclosure. An information leak flaw was found in the SSL 3.0 protocol implementation in OpenSSL. Incorrect initialization of SSL record padding bytes could cause an SSL client or server to send a limited amount of possibly sensitive data to its SSL peer via the encrypted connection.

References