This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:openssl:openssl:1.0.2b
Detail
VendorOpensslFirst view 2015-07-09
ProductOpensslLast view2019-02-27
Version1.0.2bTypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:openssl:openssl

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
4.32019-02-27CVE-2019-1559NetworkMediumNone Requ...
1.92018-11-15CVE-2018-5407LocalMediumNone Requ...
4.32018-10-30CVE-2018-0734NetworkMediumNone Requ...
52018-06-12CVE-2018-0732NetworkLowNone Requ...
4.32018-04-16CVE-2018-0737NetworkMediumNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
4.32018-03-27CVE-2018-0739NetworkMediumNone Requ...
4.32017-12-07CVE-2017-3738NetworkMediumNone Requ...
4.32017-12-07CVE-2017-3737NetworkMediumNone Requ...
52017-11-13CVE-2016-8610NetworkLowNone Requ...
42017-11-02CVE-2017-3736NetworkLowRequires ...
52017-08-28CVE-2017-3735NetworkLowNone Requ...
4.32017-05-04CVE-2017-3732NetworkMediumNone Requ...
52017-05-04CVE-2017-3731NetworkLowNone Requ...
2.62017-05-04CVE-2016-7055NetworkHighNone Requ...
4.32016-09-26CVE-2016-6306NetworkMediumNone Requ...
7.82016-09-26CVE-2016-6304NetworkLowNone Requ...
7.52016-09-16CVE-2016-6303NetworkLowNone Requ...
52016-09-16CVE-2016-6302NetworkLowNone Requ...
7.52016-09-16CVE-2016-2182NetworkLowNone Requ...
52016-09-16CVE-2016-2181NetworkLowNone Requ...
52016-09-16CVE-2016-2179NetworkLowNone Requ...
52016-08-31CVE-2016-2183NetworkLowNone Requ...
52016-07-31CVE-2016-2180NetworkLowNone Requ...
2.12016-06-19CVE-2016-2178LocalLowNone Requ...

CWE : Common Weakness Enumeration

%idName
31% (14)CWE-200Information Exposure
11% (5)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
8% (4)CWE-399Resource Management Errors
8% (4)CWE-310Cryptographic Issues
8% (4)CWE-189Numeric Errors
Hide | Show 8 More...
%idName
6% (3)CWE-320Key Management Errors
6% (3)CWE-125Out-of-bounds Read
4% (2)CWE-787Out-of-bounds Write
4% (2)CWE-400Uncontrolled Resource Consumption ('Resource Exhaustion')
2% (1)CWE-388Error Handling
2% (1)CWE-254Security Features
2% (1)CWE-190Integer Overflow or Wraparound
2% (1)CWE-20Improper Input Validation

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:29158HP-UX OpenSSL Vulnerability (Alternative Chain Certificate Forgery)

Information Assurance Vulnerability Management (IAVM)

idDescription
2015-A-0203Multiple Cisco Products Certificate Forgery Vulnerability
Severity : Category I - VMSKEY : V0061345
2015-A-0144OpenSSL Certificate Validation Vulnerability
Severity : Category I - VMSKEY : V0061067

Snort® IPS/IDS

DateDescription
2018-05-24X.509 IPAddressFamily extension buffer overread attempt
RuleID : 46418 - Type : SERVER-OTHER - Revision : 2
2018-05-24X.509 IPAddressFamily extension buffer overread attempt
RuleID : 46417 - Type : SERVER-OTHER - Revision : 2
2016-12-29OpenSSL SSLv3 warning denial of service attempt
RuleID : 40843 - Type : SERVER-OTHER - Revision : 3
2016-11-08OpenSSL OCSP Status Request Extension denial of service attempt
RuleID : 40360 - Type : SERVER-OTHER - Revision : 3
2016-10-18SSH weak blowfish cipher suite use attempt
RuleID : 40190 - Type : POLICY-OTHER - Revision : 2
Hide | Show 9 More...
DateDescription
2016-10-18SSH weak 3DES cipher suite use attempt
RuleID : 40189 - Type : POLICY-OTHER - Revision : 2
2016-10-18SSL weak 3DES cipher suite use attempt
RuleID : 40188 - Type : POLICY-OTHER - Revision : 2
2016-10-18SSL weak 3DES cipher suite use attempt
RuleID : 40187 - Type : POLICY-OTHER - Revision : 2
2016-10-18SSL weak 3DES cipher suite use attempt
RuleID : 40186 - Type : POLICY-OTHER - Revision : 2
2016-04-05SSLv2 Client Hello attempt
RuleID : 38060 - Type : POLICY-OTHER - Revision : 3
2016-03-14OpenSSL invalid RSASSA-PSS certificate denial of service attempt
RuleID : 37155 - Type : SERVER-OTHER - Revision : 2
2016-03-14OpenSSL invalid RSASSA-PSS certificate denial of service attempt
RuleID : 37154 - Type : SERVER-OTHER - Revision : 2
2015-08-20OpenSSL alternative chains certificate forgery attempt
RuleID : 35307 - Type : SERVER-OTHER - Revision : 2
2015-08-11OpenSSL anomalous x509 certificate with default org name and certificate chai...
RuleID : 35111 - Type : SERVER-OTHER - Revision : 5

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2019-01-18Name : The remote Fedora host is missing a security update.
File : fedora_2019-a8ffcff7ee.nasl - Type : ACT_GATHER_INFO
2019-01-17Name : The remote database server is affected by multiple vulnerabilities.
File : mysql_5_6_43.nasl - Type : ACT_GATHER_INFO
2019-01-17Name : The remote database server is affected by multiple vulnerabilities.
File : mysql_5_7_25.nasl - Type : ACT_GATHER_INFO
2019-01-17Name : The remote database server is affected by multiple vulnerabilities.
File : mysql_8_0_14.nasl - Type : ACT_GATHER_INFO
2019-01-11Name : The remote device is missing a vendor-supplied security patch.
File : juniper_jsa10919.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2019-01-08Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2019-1009.nasl - Type : ACT_GATHER_INFO
2019-01-03Name : The remote Fedora host is missing a security update.
File : fedora_2018-49651b2236.nasl - Type : ACT_GATHER_INFO
2019-01-03Name : The remote Fedora host is missing a security update.
File : fedora_2018-9d667bdff8.nasl - Type : ACT_GATHER_INFO
2019-01-03Name : The remote Fedora host is missing a security update.
File : fedora_2018-520e4c5b4e.nasl - Type : ACT_GATHER_INFO
2019-01-03Name : The remote Fedora host is missing a security update.
File : fedora_2018-2f696a3be3.nasl - Type : ACT_GATHER_INFO
2019-01-02Name : Tenable Nessus running on the remote host is affected by multiple vulnerabili...
File : nessus_tns_2018_16.nasl - Type : ACT_GATHER_INFO
2019-01-02Name : Tenable Nessus running on the remote host is affected by multiple vulnerabili...
File : nessus_tns_2018_17.nasl - Type : ACT_GATHER_INFO
2018-12-28Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2018-1420.nasl - Type : ACT_GATHER_INFO
2018-12-28Name : The remote EulerOS host is missing a security update.
File : EulerOS_SA-2018-1434.nasl - Type : ACT_GATHER_INFO
2018-12-28Name : Node.js - JavaScript run-time environment is affected by multiple vulnerabili...
File : nodejs_2018_nov.nasl - Type : ACT_GATHER_INFO
2018-12-21Name : An infrastructure management application running on the remote host is affect...
File : ibm_tem_9_5_10.nasl - Type : ACT_GATHER_INFO
2018-12-20Name : The remote Debian host is missing a security-related update.
File : debian_DSA-4355.nasl - Type : ACT_GATHER_INFO
2018-12-10Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2018-1392.nasl - Type : ACT_GATHER_INFO
2018-12-10Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_2a86f45afc3c11e8a41400155d006b02.nasl - Type : ACT_GATHER_INFO
2018-12-07Name : The remote Amazon Linux AMI host is missing a security update.
File : ala_ALAS-2018-1102.nasl - Type : ACT_GATHER_INFO
2018-12-01Name : The remote Debian host is missing a security-related update.
File : debian_DSA-4348.nasl - Type : ACT_GATHER_INFO
2018-11-29Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201811-21.nasl - Type : ACT_GATHER_INFO
2018-11-23Name : The remote Slackware host is missing a security update.
File : Slackware_SSA_2018-325-01.nasl - Type : ACT_GATHER_INFO
2018-11-23Name : The remote Debian host is missing a security update.
File : debian_DLA-1586.nasl - Type : ACT_GATHER_INFO
2018-11-21Name : The remote EulerOS Virtualization host is missing a security update.
File : EulerOS_SA-2018-1379.nasl - Type : ACT_GATHER_INFO