This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:openssl:openssl:1.0.0r
Detail
VendorOpensslFirst view 2010-12-06
ProductOpensslLast view2018-11-15
Version1.0.0rTypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:openssl:openssl

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
1.92018-11-15CVE-2018-5407LocalMediumNone Requ...
2.12018-09-10CVE-2016-7056LocalLowNone Requ...
52017-08-28CVE-2017-3735NetworkLowNone Requ...
2.62017-05-04CVE-2016-7055NetworkHighNone Requ...
6.42016-05-04CVE-2016-2176NetworkLowNone Requ...
Hide | Show 15 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
7.82016-05-04CVE-2016-2109NetworkLowNone Requ...
102016-05-04CVE-2016-2108NetworkLowNone Requ...
2.62016-05-04CVE-2016-2107NetworkHighNone Requ...
52016-05-04CVE-2016-2106NetworkLowNone Requ...
4.32015-12-06CVE-2015-3196NetworkMediumNone Requ...
52015-12-06CVE-2015-3195NetworkLowNone Requ...
52015-06-12CVE-2015-1792NetworkLowNone Requ...
6.82015-06-12CVE-2015-1791NetworkMediumNone Requ...
52015-06-12CVE-2015-1790NetworkLowNone Requ...
4.32015-06-12CVE-2015-1789NetworkMediumNone Requ...
4.32015-06-12CVE-2015-1788NetworkMediumNone Requ...
4.32015-05-20CVE-2015-4000NetworkMediumNone Requ...
42014-04-14CVE-2010-5298NetworkHighNone Requ...
4.32013-12-23CVE-2013-6449NetworkMediumNone Requ...
7.52010-12-06CVE-2010-4252NetworkLowNone Requ...

CWE : Common Weakness Enumeration

%idName
20% (4)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
15% (3)CWE-399Resource Management Errors
15% (3)CWE-362Race Condition
15% (3)CWE-310Cryptographic Issues
15% (3)CWE-200Information Exposure
Hide | Show 3 More...
%idName
10% (2)CWE-320Key Management Errors
5% (1)CWE-287Improper Authentication
5% (1)CWE-189Numeric Errors

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:29329AIX Logjam Vulnerability
oval:org.mitre.oval:def:29478HP-UX OpenSSL Vulnerability (DHE man-in-the-middle protection (Logjam))
oval:org.mitre.oval:def:29160USN-2639-1 -- openssl vulnerabilities
oval:org.mitre.oval:def:28583USN-2639-1 -- openssl vulnerabilities
oval:org.mitre.oval:def:29435AIX OpenSSL CMS Code vulnerability
Hide | Show 17 More...
idName
oval:org.mitre.oval:def:29466HP-UX OpenSSL Vulnerability (CMS verify infinite loop with unknown hash funct...
oval:org.mitre.oval:def:29305AIX OpenSSL X509_cmp_time vulnerability
oval:org.mitre.oval:def:29191HP-UX OpenSSL Vulnerability (Exploitable out-of-bounds read in X509_cmp_time)
oval:org.mitre.oval:def:22174AIX OpenSSH Vulnerability
oval:org.mitre.oval:def:25001Vulnerability in OpenSSL before 1.0.2, obtains a certain version number from ...
oval:org.mitre.oval:def:24397Vulnerability in OpenSSL through 1.0.1g, allows remote attackers to inject da...
oval:org.mitre.oval:def:24638Race condition in the ssl3_read_bytes function in s3_pkt.c in
oval:org.mitre.oval:def:29344AIX OpenSSL binary polynomial field vulnerability
oval:org.mitre.oval:def:29224HP-UX OpenSSL Vulnerability (Malformed ECParameters causes infinite loop)
oval:org.mitre.oval:def:29017AIX OpenSSL PKCS#7 parsing code vulnerability
oval:org.mitre.oval:def:29229HP-UX OpenSSL Vulnerability (PKCS7 crash with missing EnvelopedContent)
oval:org.mitre.oval:def:20561VMware vSphere and vCOps updates to third party libraries
oval:org.mitre.oval:def:19202HP-UX Running OpenSSL, Remote Execution of Arbitrary Code, Denial of Service ...
oval:org.mitre.oval:def:19039OpenSSL vulnerability before 1.0.0c in VisualSVN Server (CVE-2010-4252)
oval:org.mitre.oval:def:24993Vulnerability in OpenSSL before 1.0.0c, does not properly validate the public...
oval:org.mitre.oval:def:28506AIX OpenSSL NewSessionTicket vulnerability
oval:org.mitre.oval:def:29239HP-UX OpenSSL Vulnerability (Race condition handling NewSessionTicket)

Open Source Vulnerability Database (OSVDB)

idDescription
69657OpenSSL J-PAKE Public Parameter Validation Shared Secret Authentication Bypass

OpenVAS Exploits

idDescription
2012-08-31Name : VMSA-2012-0013 VMware vSphere and vCOps updates to third party libraries.
File : nvt/gb_VMSA-2012-0013.nasl
2012-02-12Name : Gentoo Security Advisory GLSA 201110-01 (openssl)
File : nvt/glsa_201110_01.nasl
2011-05-05Name : HP-UX Update for OpenSSL HPSBUX02638
File : nvt/gb_hp_ux_HPSBUX02638.nasl
0000-00-00Name : Slackware Advisory SSA:2010-340-01 openssl
File : nvt/esoft_slk_ssa_2010_340_01.nasl

Information Assurance Vulnerability Management (IAVM)

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2015-A-0199Multiple Vulnerabilities in Apple Mac OS X
Severity : Category I - VMSKEY : V0061337
2015-A-0158Multiple Vulnerabilities in Oracle Java SE
Severity : Category I - VMSKEY : V0061089
2014-A-0115Multiple Vulnerabilities in VMware Horizon View
Severity : Category I - VMSKEY : V0053501
2014-B-0101Multiple Vulnerabilities in VMware vCenter Converter Standalone 5.1
Severity : Category I - VMSKEY : V0053505
2014-B-0102Multiple Vulnerabilities in VMware vCenter Converter Standalone 5.5
Severity : Category I - VMSKEY : V0053507
Hide | Show 20 More...
idDescription
2014-B-0103Multiple Vulnerabilities in VMware Horizon View Client
Severity : Category I - VMSKEY : V0053509
2014-B-0097Multiple Vulnerabilities in VMware ESXi 5.0
Severity : Category I - VMSKEY : V0053319
2014-A-0111Multiple Vulnerabilities in VMware Workstation
Severity : Category I - VMSKEY : V0053179
2014-A-0110Multiple Vulnerabilities in VMware Player
Severity : Category I - VMSKEY : V0053181
2014-A-0109Multiple Vulnerabilities in VMware Fusion
Severity : Category I - VMSKEY : V0053183
2014-A-0100Multiple Vulnerabilities in McAfee VirusScan Enterprise for Linux
Severity : Category I - VMSKEY : V0053201
2014-A-0099Multiple Vulnerabilities in McAfee Email Gateway
Severity : Category I - VMSKEY : V0053203
2014-B-0092Multiple Vulnerabilities in VMware vSphere Client 5.5
Severity : Category I - VMSKEY : V0052893
2014-B-0085Multiple Vulnerabilities in HP System Management Homepage (SMH)
Severity : Category I - VMSKEY : V0052899
2014-B-0091Multiple Vulnerabilities in VMware vCenter Update Manager 5.5
Severity : Category I - VMSKEY : V0052907
2014-B-0089Multiple Vulnerabilities in VMware ESXi 5.1
Severity : Category I - VMSKEY : V0052909
2014-B-0088Multiple Vulnerabilities in VMware ESXi 5.5
Severity : Category I - VMSKEY : V0052911
2014-A-0089Multiple Vulnerabilities in Juniper Pulse Secure Access Service (IVE)
Severity : Category I - VMSKEY : V0052805
2014-B-0077Multiple Vulnerabilities in McAfee Web Gateway
Severity : Category I - VMSKEY : V0052625
2014-B-0080Multiple Vulnerabilities in Stunnel
Severity : Category I - VMSKEY : V0052627
2014-A-0087Multiple Vulnerabilities in McAfee ePolicy Orchestrator
Severity : Category I - VMSKEY : V0052637
2014-B-0078Multiple Vulnerabilities in Blue Coat ProxySG
Severity : Category I - VMSKEY : V0052639
2014-A-0083Multiple Vulnerabilities in OpenSSL
Severity : Category I - VMSKEY : V0052495
2014-A-0062Multiple Vulnerabilities In McAfee Email Gateway
Severity : Category I - VMSKEY : V0050005
2014-A-0063Multiple Vulnerabilities in McAfee VirusScan Enterprise for Linux
Severity : Category I - VMSKEY : V0050009

Snort® IPS/IDS

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
DateDescription
2018-05-24X.509 IPAddressFamily extension buffer overread attempt
RuleID : 46418 - Type : SERVER-OTHER - Revision : 2
2018-05-24X.509 IPAddressFamily extension buffer overread attempt
RuleID : 46417 - Type : SERVER-OTHER - Revision : 2
2016-05-19OpenSSL TLS change cipher spec protocol denial of service attempt
RuleID : 38575 - Type : SERVER-OTHER - Revision : 3
2015-04-14SSL request for export grade ciphersuite attempt
RuleID : 33806 - Type : SERVER-OTHER - Revision : 5
2015-04-14SSL request for export grade ciphersuite attempt
RuleID : 33805 - Type : SERVER-OTHER - Revision : 5
Hide | Show 20 More...
DateDescription
2015-04-14SSL request for export grade ciphersuite attempt
RuleID : 33804 - Type : SERVER-OTHER - Revision : 5
2015-04-14SSL request for export grade ciphersuite attempt
RuleID : 33803 - Type : SERVER-OTHER - Revision : 5
2015-04-14SSL request for export grade ciphersuite attempt
RuleID : 33802 - Type : SERVER-OTHER - Revision : 5
2015-04-14SSL request for export grade ciphersuite attempt
RuleID : 33801 - Type : SERVER-OTHER - Revision : 5
2015-04-14SSL export grade ciphersuite server negotiation attempt
RuleID : 33800 - Type : SERVER-OTHER - Revision : 6
2015-04-14SSL export grade ciphersuite server negotiation attempt
RuleID : 33799 - Type : SERVER-OTHER - Revision : 6
2015-04-14SSL export grade ciphersuite server negotiation attempt
RuleID : 33798 - Type : SERVER-OTHER - Revision : 6
2015-04-14SSL export grade ciphersuite server negotiation attempt
RuleID : 33797 - Type : SERVER-OTHER - Revision : 6
2015-04-14SSL export grade ciphersuite server negotiation attempt
RuleID : 33796 - Type : SERVER-OTHER - Revision : 6
2015-04-14SSL export grade ciphersuite server negotiation attempt
RuleID : 33795 - Type : SERVER-OTHER - Revision : 6
2015-04-14SSL export grade ciphersuite server negotiation attempt
RuleID : 33794 - Type : SERVER-OTHER - Revision : 6
2015-04-14SSL request for export grade ciphersuite attempt
RuleID : 33793 - Type : SERVER-OTHER - Revision : 5
2015-04-14SSL request for export grade ciphersuite attempt
RuleID : 33792 - Type : SERVER-OTHER - Revision : 5
2015-04-14SSL request for export grade ciphersuite attempt
RuleID : 33791 - Type : SERVER-OTHER - Revision : 5
2015-04-14SSL request for export grade ciphersuite attempt
RuleID : 33790 - Type : SERVER-OTHER - Revision : 5
2015-04-14SSL request for export grade ciphersuite attempt
RuleID : 33789 - Type : SERVER-OTHER - Revision : 5
2015-04-14SSL request for export grade ciphersuite attempt
RuleID : 33788 - Type : SERVER-OTHER - Revision : 5
2015-04-14SSL request for export grade ciphersuite attempt
RuleID : 33787 - Type : SERVER-OTHER - Revision : 5
2015-04-14SSL request for export grade ciphersuite attempt
RuleID : 33786 - Type : SERVER-OTHER - Revision : 5
2015-04-14SSL request for export grade cipher suite attempt
RuleID : 33785 - Type : SERVER-OTHER - Revision : 6

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2019-01-08Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2019-1009.nasl - Type : ACT_GATHER_INFO
2019-01-02Name : Tenable Nessus running on the remote host is affected by multiple vulnerabili...
File : nessus_tns_2018_16.nasl - Type : ACT_GATHER_INFO
2019-01-02Name : Tenable Nessus running on the remote host is affected by multiple vulnerabili...
File : nessus_tns_2018_17.nasl - Type : ACT_GATHER_INFO
2018-12-28Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2018-1420.nasl - Type : ACT_GATHER_INFO
2018-12-28Name : The remote EulerOS host is missing a security update.
File : EulerOS_SA-2018-1434.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2018-12-28Name : Node.js - JavaScript run-time environment is affected by multiple vulnerabili...
File : nodejs_2018_nov.nasl - Type : ACT_GATHER_INFO
2018-12-20Name : The remote Debian host is missing a security-related update.
File : debian_DSA-4355.nasl - Type : ACT_GATHER_INFO
2018-12-10Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2018-1392.nasl - Type : ACT_GATHER_INFO
2018-12-10Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_2a86f45afc3c11e8a41400155d006b02.nasl - Type : ACT_GATHER_INFO
2018-12-07Name : The remote Amazon Linux AMI host is missing a security update.
File : ala_ALAS-2018-1102.nasl - Type : ACT_GATHER_INFO
2018-12-01Name : The remote Debian host is missing a security-related update.
File : debian_DSA-4348.nasl - Type : ACT_GATHER_INFO
2018-11-23Name : The remote Slackware host is missing a security update.
File : Slackware_SSA_2018-325-01.nasl - Type : ACT_GATHER_INFO
2018-11-23Name : The remote Debian host is missing a security update.
File : debian_DLA-1586.nasl - Type : ACT_GATHER_INFO
2018-11-16Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2018-3221.nasl - Type : ACT_GATHER_INFO
2018-11-13Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_6f170cf2e6b711e8a9a8b499baebfeaf.nasl - Type : ACT_GATHER_INFO
2018-11-09Name : The remote Amazon Linux 2 host is missing a security update.
File : al2_ALAS-2018-1102.nasl - Type : ACT_GATHER_INFO
2018-08-17Name : The remote PhotonOS host is missing multiple security updates.
File : PhotonOS_PHSA-2017-0042.nasl - Type : ACT_GATHER_INFO
2018-04-27Name : The remote host is affected by multiple vulnerabilities.
File : juniper_nsm_jsa10851.nasl - Type : ACT_GATHER_INFO
2018-03-08Name : The remote AIX host has a version of OpenSSL installed that is affected by an...
File : aix_openssl_advisory24.nasl - Type : ACT_GATHER_INFO
2018-02-28Name : The version of Arista Networks EOS running on the remote device is affected b...
File : arista_eos_sa0020.nasl - Type : ACT_GATHER_INFO
2018-01-15Name : The remote Fedora host is missing a security update.
File : fedora_2017-4cf72e2c11.nasl - Type : ACT_GATHER_INFO
2018-01-15Name : The remote Fedora host is missing a security update.
File : fedora_2017-512a6c5aae.nasl - Type : ACT_GATHER_INFO
2017-12-15Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201712-03.nasl - Type : ACT_GATHER_INFO
2017-12-14Name : The remote openSUSE host is missing a security update.
File : openSUSE-2017-1324.nasl - Type : ACT_GATHER_INFO
2017-12-07Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_9442a811dab311e7b5afa4badb2f4699.nasl - Type : ACT_GATHER_INFO