This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:openssl:openssl:1.0.1
Detail
VendorOpensslFirst view 2012-05-14
ProductOpensslLast view2017-11-13
Version1.0.1TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:openssl:openssl

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
52017-11-13CVE-2016-8610NetworkLowNone Requ...
52017-08-28CVE-2017-3735NetworkLowNone Requ...
4.32016-09-26CVE-2016-6306NetworkMediumNone Requ...
7.82016-09-26CVE-2016-6304NetworkLowNone Requ...
7.52016-09-16CVE-2016-6303NetworkLowNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
52016-09-16CVE-2016-6302NetworkLowNone Requ...
7.52016-09-16CVE-2016-2182NetworkLowNone Requ...
52016-09-16CVE-2016-2181NetworkLowNone Requ...
52016-09-16CVE-2016-2179NetworkLowNone Requ...
52016-07-31CVE-2016-2180NetworkLowNone Requ...
2.12016-06-19CVE-2016-2178LocalLowNone Requ...
7.52016-06-19CVE-2016-2177NetworkLowNone Requ...
52016-05-04CVE-2016-2105NetworkLowNone Requ...
102016-03-03CVE-2016-2842NetworkLowNone Requ...
102016-03-03CVE-2016-0799NetworkLowNone Requ...
7.82016-03-03CVE-2016-0798NetworkLowNone Requ...
52016-03-03CVE-2016-0797NetworkLowNone Requ...
102016-03-03CVE-2016-0705NetworkLowNone Requ...
1.92016-03-03CVE-2016-0702LocalMediumNone Requ...
4.32016-03-02CVE-2016-0704NetworkMediumNone Requ...
4.32016-03-02CVE-2016-0703NetworkMediumNone Requ...
4.32016-03-01CVE-2016-0800NetworkMediumNone Requ...
4.32016-02-14CVE-2015-3197NetworkMediumNone Requ...
4.32015-12-06CVE-2015-3196NetworkMediumNone Requ...

CWE : Common Weakness Enumeration

%idName
21% (12)CWE-310Cryptographic Issues
15% (9)CWE-399Resource Management Errors
15% (9)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
12% (7)CWE-200Information Exposure
8% (5)CWE-20Improper Input Validation
Hide | Show 7 More...
%idName
7% (4)CWE-362Race Condition
5% (3)CWE-189Numeric Errors
3% (2)CWE-787Out-of-bounds Write
3% (2)CWE-125Out-of-bounds Read
3% (2)CWE-17Code
1% (1)CWE-400Uncontrolled Resource Consumption ('Resource Exhaustion')
1% (1)CWE-190Integer Overflow or Wraparound

Oval Markup Language : Definitions

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:29329AIX Logjam Vulnerability
oval:org.mitre.oval:def:29478HP-UX OpenSSL Vulnerability (DHE man-in-the-middle protection (Logjam))
oval:org.mitre.oval:def:20686VMware vSphere, ESX and ESXi updates to third party libraries
oval:org.mitre.oval:def:19487HP-UX Running OpenSSL, Remote Denial of Service (DoS) and Unauthorized Discl...
oval:org.mitre.oval:def:19360Multiple OpenSSL vulnerabilities
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:19081OpenSSL vulnerability before 0.9.8y, 1.0.0 before 1.0.0k, and 1.0.1 before 1....
oval:org.mitre.oval:def:18754HP-UX Apache Web Server, Remote Denial of Service (DoS)
oval:org.mitre.oval:def:24756OpenSSL vulnerability before 0.9.8y, 1.0.0 before 1.0.0k, and 1.0.1 before 1....
oval:org.mitre.oval:def:26011SUSE-SU-2013:0549-1 -- Security update for OpenSSL
oval:org.mitre.oval:def:25900SUSE-SU-2013:0554-1 -- Security update for OpenSSL
oval:org.mitre.oval:def:25849SUSE-SU-2013:0549-2 -- Security update for OpenSSL
oval:org.mitre.oval:def:25357SUSE-SU-2013:0549-3 -- Security update for OpenSSL
oval:org.mitre.oval:def:26491Vulnerability in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1...
oval:org.mitre.oval:def:26445HP-UX running OpenSSL, Multiple Vulnerabilities
oval:org.mitre.oval:def:26622AIX OpenSSL Denial of Service due to double free
oval:org.mitre.oval:def:21388RHSA-2012:0699: openssl security and bug fix update (Moderate)
oval:org.mitre.oval:def:20725Multiple OpenSSL vulnerabilities
oval:org.mitre.oval:def:19623HP-UX Running OpenSSL, Remote Denial of Service (DoS)
oval:org.mitre.oval:def:17865DSA-2475-1 openssl - integer underflow
oval:org.mitre.oval:def:17579USN-1451-1 -- openssl vulnerabilities
oval:org.mitre.oval:def:23676ELSA-2012:0699: openssl security and bug fix update (Moderate)
oval:org.mitre.oval:def:23379DEPRECATED: ELSA-2012:0699: openssl security and bug fix update (Moderate)
oval:org.mitre.oval:def:24897OpenSSL vulnerability in before 0.9.8x, 1.0.0 before 1.0.0j, and 1.0.1 before...
oval:org.mitre.oval:def:27609DEPRECATED: ELSA-2012-0699 -- openssl security and bug fix update (moderate)
oval:org.mitre.oval:def:26274Vulnerability in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1...

ExploitDB Exploits

idDescription
32998Heartbleed OpenSSL - Information Leak Exploit (2) - DTLS Support
32791Heartbleed OpenSSL - Information Leak Exploit (1)
32764OpenSSL 1.0.1f TLS Heartbeat Extension - Memory Disclosure (Multiple SSL/TLS ...
32745OpenSSL TLS Heartbeat Extension - Memory Disclosure

OpenVAS Exploits

idDescription
2014-10-16Name : POODLE SSLv3 Protocol CBC ciphers Information Disclosure Vulnerability
File : nvt/gb_poodel_sslv3_info_disc_vuln.nasl
2012-08-30Name : Fedora Update for openssl FEDORA-2012-7939
File : nvt/gb_fedora_2012_7939_openssl_fc17.nasl
2012-08-03Name : Mandriva Update for openssl MDVSA-2012:073 (openssl)
File : nvt/gb_mandriva_MDVSA_2012_073.nasl
2012-07-30Name : CentOS Update for openssl CESA-2012:0699 centos5
File : nvt/gb_CESA-2012_0699_openssl_centos5.nasl
2012-07-30Name : CentOS Update for openssl CESA-2012:0699 centos6
File : nvt/gb_CESA-2012_0699_openssl_centos6.nasl
Hide | Show 6 More...
idDescription
2012-06-04Name : Fedora Update for openssl FEDORA-2012-8014
File : nvt/gb_fedora_2012_8014_openssl_fc16.nasl
2012-06-04Name : Fedora Update for openssl FEDORA-2012-8024
File : nvt/gb_fedora_2012_8024_openssl_fc15.nasl
2012-06-01Name : RedHat Update for openssl RHSA-2012:0699-01
File : nvt/gb_RHSA-2012_0699-01_openssl.nasl
2012-05-31Name : FreeBSD Ports: openssl
File : nvt/freebsd_openssl9.nasl
2012-05-31Name : Debian Security Advisory DSA 2475-1 (openssl)
File : nvt/deb_2475_1.nasl
2012-05-25Name : Ubuntu Update for openssl USN-1451-1
File : nvt/gb_ubuntu_USN_1451_1.nasl

Information Assurance Vulnerability Management (IAVM)

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2015-A-0222Multiple Security Vulnerabilities in Apple iOS
Severity : Category I - VMSKEY : V0061471
2015-A-0199Multiple Vulnerabilities in Apple Mac OS X
Severity : Category I - VMSKEY : V0061337
2015-A-0154Multiple Vulnerabilities in Oracle Fusion Middleware
Severity : Category I - VMSKEY : V0061081
2015-A-0158Multiple Vulnerabilities in Oracle Java SE
Severity : Category I - VMSKEY : V0061089
2015-A-0160Multiple Vulnerabilities in Oracle Linux and Virtualization
Severity : Category I - VMSKEY : V0061123
Hide | Show 20 More...
idDescription
2015-A-0135Multiple Vulnerabilities in Blue Coat ProxySG
Severity : Category I - VMSKEY : V0060997
2015-A-0113Multiple Vulnerabilities in Juniper Networks CTPOS
Severity : Category I - VMSKEY : V0060737
2015-B-0014Multiple Vulnerabilities in VMware ESXi 5.5
Severity : Category I - VMSKEY : V0058513
2015-B-0013Multiple Vulnerabilities in VMware ESXi 5.1
Severity : Category I - VMSKEY : V0058515
2015-B-0012Multiple Vulnerabilities in VMware ESXi 5.0
Severity : Category I - VMSKEY : V0058517
2015-B-0007Multiple Vulnerabilities in Juniper Secure Analytics (JSA) and Security Threa...
Severity : Category I - VMSKEY : V0058213
2014-A-0172Multiple Vulnerabilities in Red Hat JBoss Enterprise Application Platform
Severity : Category I - VMSKEY : V0057381
2014-A-0115Multiple Vulnerabilities in VMware Horizon View
Severity : Category I - VMSKEY : V0053501
2014-B-0101Multiple Vulnerabilities in VMware vCenter Converter Standalone 5.1
Severity : Category I - VMSKEY : V0053505
2014-B-0102Multiple Vulnerabilities in VMware vCenter Converter Standalone 5.5
Severity : Category I - VMSKEY : V0053507
2014-B-0103Multiple Vulnerabilities in VMware Horizon View Client
Severity : Category I - VMSKEY : V0053509
2014-B-0097Multiple Vulnerabilities in VMware ESXi 5.0
Severity : Category I - VMSKEY : V0053319
2014-B-0095Multiple Vulnerabilities in Splunk
Severity : Category I - VMSKEY : V0053177
2014-A-0111Multiple Vulnerabilities in VMware Workstation
Severity : Category I - VMSKEY : V0053179
2014-A-0110Multiple Vulnerabilities in VMware Player
Severity : Category I - VMSKEY : V0053181
2014-A-0109Multiple Vulnerabilities in VMware Fusion
Severity : Category I - VMSKEY : V0053183
2014-A-0103Multiple Vulnerabilities in Oracle E-Business
Severity : Category I - VMSKEY : V0053195
2014-A-0100Multiple Vulnerabilities in McAfee VirusScan Enterprise for Linux
Severity : Category I - VMSKEY : V0053201
2014-A-0099Multiple Vulnerabilities in McAfee Email Gateway
Severity : Category I - VMSKEY : V0053203
2014-B-0092Multiple Vulnerabilities in VMware vSphere Client 5.5
Severity : Category I - VMSKEY : V0052893

Snort® IPS/IDS

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
DateDescription
2019-10-10OpenSSL DTLS SRTP extension parsing denial-of-service attempt
RuleID : 51460 - Type : SERVER-OTHER - Revision : 1
2019-10-01OpenSSL TLS anomalous ascii client session ticket
RuleID : 51354 - Type : SERVER-OTHER - Revision : 1
2019-10-01OpenSSL TLS anomalous ascii client session ticket
RuleID : 51353 - Type : SERVER-OTHER - Revision : 1
2019-10-01OpenSSL TLS anomalous ascii client session ticket
RuleID : 51352 - Type : SERVER-OTHER - Revision : 1
2019-10-01OpenSSL TLS anomalous ascii client session ticket
RuleID : 51351 - Type : SERVER-OTHER - Revision : 1
Hide | Show 20 More...
DateDescription
2019-10-01OpenSSL TLS anomalous ascii session ticket
RuleID : 51350 - Type : SERVER-OTHER - Revision : 1
2019-10-01OpenSSL TLS anomalous ascii session ticket
RuleID : 51349 - Type : SERVER-OTHER - Revision : 1
2019-10-01OpenSSL TLS anomalous ascii session ticket
RuleID : 51348 - Type : SERVER-OTHER - Revision : 1
2019-10-01OpenSSL TLS anomalous ascii session ticket
RuleID : 51347 - Type : SERVER-OTHER - Revision : 1
2019-10-01OpenSSL TLS anomalous non-zero length session ticket in client hello
RuleID : 51346 - Type : SERVER-OTHER - Revision : 1
2019-10-01OpenSSL TLS anomalous non-zero length session ticket in client hello
RuleID : 51345 - Type : SERVER-OTHER - Revision : 1
2019-10-01OpenSSL TLS anomalous non-zero length session ticket in client hello
RuleID : 51344 - Type : SERVER-OTHER - Revision : 1
2019-10-01OpenSSL TLS anomalous non-zero length session ticket in client hello
RuleID : 51343 - Type : SERVER-OTHER - Revision : 1
2019-10-01OpenSSL TLS record tampering denial of service attempt
RuleID : 51334 - Type : SERVER-OTHER - Revision : 1
2019-10-01OpenSSL TLS record tampering denial of service attempt
RuleID : 51333 - Type : SERVER-OTHER - Revision : 1
2019-09-24OpenSSL DTLS zero-length fragments denial of service attempt
RuleID : 51215 - Type : SERVER-OTHER - Revision : 1
2019-09-24OpenSSL DTLS bad fragment length denial of service attempt
RuleID : 51214 - Type : SERVER-OTHER - Revision : 2
2018-05-24X.509 IPAddressFamily extension buffer overread attempt
RuleID : 46418 - Type : SERVER-OTHER - Revision : 2
2018-05-24X.509 IPAddressFamily extension buffer overread attempt
RuleID : 46417 - Type : SERVER-OTHER - Revision : 2
2016-12-29OpenSSL SSLv3 warning denial of service attempt
RuleID : 40843 - Type : SERVER-OTHER - Revision : 3
2016-11-08OpenSSL OCSP Status Request Extension denial of service attempt
RuleID : 40360 - Type : SERVER-OTHER - Revision : 3
2016-05-19OpenSSL TLS change cipher spec protocol denial of service attempt
RuleID : 38575 - Type : SERVER-OTHER - Revision : 4
2016-04-05SSLv2 Client Hello attempt
RuleID : 38060 - Type : POLICY-OTHER - Revision : 4
2016-03-14OpenSSL invalid RSASSA-PSS certificate denial of service attempt
RuleID : 37155 - Type : SERVER-OTHER - Revision : 2
2016-03-14OpenSSL invalid RSASSA-PSS certificate denial of service attempt
RuleID : 37154 - Type : SERVER-OTHER - Revision : 2

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2019-01-08Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2019-1009.nasl - Type : ACT_GATHER_INFO
2018-12-28Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2018-1420.nasl - Type : ACT_GATHER_INFO
2018-12-10Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2018-1392.nasl - Type : ACT_GATHER_INFO
2018-12-07Name : The remote Amazon Linux AMI host is missing a security update.
File : ala_ALAS-2018-1102.nasl - Type : ACT_GATHER_INFO
2018-11-21Name : The remote EulerOS Virtualization host is missing a security update.
File : EulerOS_SA-2018-1379.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2018-11-16Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2018-3221.nasl - Type : ACT_GATHER_INFO
2018-11-09Name : The remote Amazon Linux 2 host is missing a security update.
File : al2_ALAS-2018-1102.nasl - Type : ACT_GATHER_INFO
2018-10-18Name : The remote host is missing a macOS update that fixes multiple security vulner...
File : macos_10_14.nasl - Type : ACT_GATHER_INFO
2018-09-27Name : The remote Debian host is missing a security update.
File : debian_DLA-1518.nasl - Type : ACT_GATHER_INFO
2018-08-17Name : The remote PhotonOS host is missing multiple security updates.
File : PhotonOS_PHSA-2017-0042.nasl - Type : ACT_GATHER_INFO
2018-04-27Name : The remote host is affected by multiple vulnerabilities.
File : juniper_nsm_jsa10851.nasl - Type : ACT_GATHER_INFO
2018-03-08Name : The remote AIX host has a version of OpenSSL installed that is affected by a ...
File : aix_openssl_advisory22.nasl - Type : ACT_GATHER_INFO
2018-03-08Name : The remote AIX host has a version of OpenSSL installed that is affected by an...
File : aix_openssl_advisory24.nasl - Type : ACT_GATHER_INFO
2018-02-28Name : The version of Arista Networks EOS running on the remote device is affected b...
File : arista_eos_sa0018.nasl - Type : ACT_GATHER_INFO
2018-02-28Name : The version of Arista Networks EOS running on the remote device is affected b...
File : arista_eos_sa0024.nasl - Type : ACT_GATHER_INFO
2018-02-28Name : The version of Arista Networks EOS running on the remote device is affected b...
File : arista_eos_sa0024_4_17.nasl - Type : ACT_GATHER_INFO
2018-01-15Name : The remote Fedora host is missing a security update.
File : fedora_2017-4cf72e2c11.nasl - Type : ACT_GATHER_INFO
2018-01-15Name : The remote Fedora host is missing a security update.
File : fedora_2017-512a6c5aae.nasl - Type : ACT_GATHER_INFO
2017-12-15Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201712-03.nasl - Type : ACT_GATHER_INFO
2017-12-14Name : The remote openSUSE host is missing a security update.
File : openSUSE-2017-1324.nasl - Type : ACT_GATHER_INFO
2017-12-07Name : The remote host is potentially affected by an SSL/TLS vulnerability.
File : check_point_gaia_sk103683.nasl - Type : ACT_GATHER_INFO
2017-12-07Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_9442a811dab311e7b5afa4badb2f4699.nasl - Type : ACT_GATHER_INFO
2017-12-07Name : The remote host is missing a macOS update that fixes multiple security vulner...
File : macos_10_13_2.nasl - Type : ACT_GATHER_INFO
2017-12-07Name : The remote host is missing a macOS or Mac OS X security update that fixes mul...
File : macosx_SecUpd2017-005.nasl - Type : ACT_GATHER_INFO
2017-12-04Name : The remote host is missing a vendor-supplied security patch.
File : check_point_gaia_sk106499.nasl - Type : ACT_GATHER_INFO