Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:3518
HistoryFeb 08, 2017 - 11:58 p.m.

Denial Of Service (DoS)

2017-02-0823:58:35
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

OpenSSL is vulnerable to denial of service (DoS) attacks. These attacks are possible because the AES-NI functionality for TLS 1.1 and 1.2 can cause an application crash through CBC data.

CPENameOperatorVersion
openssleq1.0.1

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P