Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ciscoCiscoCISCO-SA-20160302-OPENSSL
HistoryMar 02, 2016 - 12:30 p.m.

Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016

2016-03-0212:30:00
tools.cisco.com
78

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.952

Percentile

99.4%

JSON

On March 1, 2016, the OpenSSL Software Foundation released a security advisory detailing seven vulnerabilities and a new attack, referred to as the Decrypting RSA with Obsolete and Weakened eNcryption (DROWN) attack. A total of eight Common Vulnerabilities and Exposures (CVEs) were assigned. Of the eight CVEs, three relate to the DROWN attack. The remaining CVEs track low severity vulnerabilities.

DROWN is a cross-protocol attack that actively exploits weaknesses in SSL Version 2 (SSLv2) to decrypt passively collected Transport Layer Security (TLS) sessions. DROWN does not exploit a vulnerability in the TLS protocol or any specific implementation of the protocol.

To execute a successful DROWN attack, the attacker must identify a server that supports both SSLv2 and TLS, and uses the same RSA key pair for both protocols. The attacker must also be able to collect TLS traffic for the server.

This advisory will be updated as additional information becomes available.

This advisory is available at the following link:

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160302-openssl[“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160302-openssl”]

Affected configurations

Vulners
Node
ciscoapplication_and_content_networking_system_softwareMatchany
OR
ciscounityMatchany
OR
ciscoiosMatchany
OR
ciscoprime_access_registrarMatchany
OR
ciscoemergency_responderMatchany
OR
ciscounified_contact_center_hostedMatchany
OR
ciscoios_xr_softwareMatchany
OR
ciscocisco_ons_15454_system_softwareMatchany
OR
ciscounity_expressMatchany
OR
ciscointrusion_prevention_systemMatchany
OR
ciscoadaptive_security_appliance_softwareMatchany
OR
ciscoace_application_control_engine_module_a3Matchany
OR
ciscowide_area_application_servicesMatchany
OR
ciscowireless_lan_controllerMatchany
OR
ciscounified_contact_center_enterpriseMatchany
OR
ciscoip_interoperability_and_collaboration_systemMatchany
OR
ciscounity_connectionMatchany
OR
ciscotelepresence_mx200Matchany
OR
ciscosecurity_managerMatchany
OR
ciscoace_4700_series_application_control_engine_applianceMatchany
OR
ciscophysical_access_gatewayMatchany
OR
ciscounified_contact_center_expressMatchany
OR
ciscovideo_surveillance_media_serverMatchany
OR
ciscodigital_media_managerMatchany
OR
ciscomeetingplaceMatchany
OR
cisconetwork_analysis_module_softwareMatchany
OR
ciscoironport_encryption_applianceMatchany
OR
ciscowebex_connect_imMatchany
OR
ciscowebex_event_centerMatchany
OR
ciscowebex_meeting_centerMatchany
OR
ciscowebex_support_centerMatchany
OR
ciscowebex_training_centerMatchany
OR
cisconetwork_admission_controlMatchany
OR
ciscoanyconnect_secure_mobility_clientMatchany
OR
ciscoshow_and_shareMatchany
OR
ciscomobility_services_engineMatchany
OR
ciscoidentity_services_engine_softwareMatchany
OR
ciscotelepresence_video_communication_serverMatchany
OR
ciscoasa_cx_context-aware_security_softwareMatchany
OR
ciscoprime_security_managerMatchany
OR
ciscoprime_data_center_network_managerMatchany
OR
ciscoata_187_analog_telephone_adaptorMatchany
OR
ciscoprime_lan_management_solutionMatchany
OR
ciscounified_communications_domain_managerMatchany
OR
ciscoemail_security_applianceMatchany
OR
ciscocontent_security_management_applianceMatchany
OR
ciscoaironet_access_point_softwareMatchany
OR
ciscoprime_infrastructureMatchany
OR
ciscoconnected_grid_network_management_systemMatchany
OR
ciscojabber_imMatchanyandroid
OR
ciscowebex_meetings_serverMatchany
OR
ciscowebex_node_for_mcsMatchany
OR
ciscounified_computing_system_central_softwareMatchany
OR
ciscojabberMatchanywindows
OR
ciscoenterprise_content_delivery_systemMatchany
OR
ciscovirtualization_experience_media_engineMatchany
OR
ciscoasr_5000_series_softwareMatchany
OR
ciscofinesseMatchany
OR
ciscounified_ip_phone_8945Matchany
OR
ciscosocialminerMatchany
OR
ciscomediasenseMatchany
OR
ciscovideo_surveillance_4000_ip_cameraMatchany
OR
ciscocisco_nexus_1000v_intercloudMatchanyvmware
OR
ciscoprime_network_registrarMatchany
OR
ciscotelepresence_isdn_gw_3241Matchany
OR
ciscodigital_content_managerMatchany
OR
ciscounified_intelligence_centerMatchany
OR
cisconexus_1000vMatchanynexus_1000v
OR
ciscoexpresswayMatchany
OR
ciscoprime_opticalMatchany
OR
ciscojabber_guestMatchany
OR
ciscocisco_visual_quality_experienceMatchany
OR
ciscounified_computing_system_softwareMatchany
OR
ciscotelepresence_serial_gatewayMatchany
OR
ciscoprime_license_managerMatchany
OR
ciscoprime_collaboration_deploymentMatchany
OR
ciscocisco_plug-in_for_openflowMatchany
OR
ciscomate_collectorMatchany
OR
ciscomate_collectorMatchany
OR
ciscomate_liveMatchany
OR
ciscoip_contact_center_expressMatchany
OR
ciscocisco_onepk_all-in-one_virtual_machineMatchany
OR
ciscoprime_network_services_controllerMatchany
OR
ciscotelepresence_isdn_gw_3241Matchany
OR
ciscotelepresence_conductorMatchany
OR
ciscovideo_surveillance_2500_series_ip_cameraMatchany
OR
ciscovideo_surveillance_2500_series_ip_cameraMatchany
OR
ciscovideo_surveillance_7000_ip_camera_firmwareMatchany
OR
ciscovideo_surveillance_4000_ip_cameraMatchany
OR
ciscowebex_meetingsMatchanyandroid
OR
ciscowebex_meetingsMatchanywindows
OR
ciscofirepower_system_softwareMatchany
OR
ciscoheadend_system_releaseMatchany
OR
ciscoucs_b-series_blade_server_softwareMatchany
OR
ciscoprime_collaboration_assuranceMatchany
OR
ciscoprime_collaboration_provisioningMatchany
OR
ciscojabber_software_development_kitMatchany
OR
ciscojabberMatchanymac
OR
ciscojabberMatchany
OR
ciscoapplication_infrastructure_controllerMatchany
OR
ciscopacket_tracerMatchany
OR
ciscoprime_networkMatchany
OR
ciscoprime_security_managerMatchany
OR
ciscoagent_desktopMatchany
OR
ciscopaging_serverMatchany
OR
ciscospa112_2-port_phone_adapter_firmwareMatchany
OR
ciscoataMatchany
OR
ciscoataMatchany
OR
ciscounified_ip_phones_9900_series_firmwareMatchany
OR
ciscounified_attendant_console_advancedMatchany
OR
ciscovideoscape_anyres_liveMatchany
OR
ciscocisco_model_d9485_davic_qpsk_mod_\/_demodMatchany
OR
ciscovideoscape_distribution_suite_service_brokerMatchany
OR
ciscounified_ip_phone_7900_series_firmwareMatchany
OR
cisconexus_3000Matchany
OR
ciscocisco_policy_suiteMatchany
OR
ciscohosted_collaboration_mediation_fulfillmentMatchany
OR
ciscoprime_homeMatchany
OR
ciscoregistered_envelope_serviceMatchany
OR
ciscoapplication_and_content_networking_system_softwareMatchany
OR
ciscounityMatchany
OR
ciscoiosMatchany
OR
ciscoprime_access_registrarMatchany
OR
ciscoemergency_responderMatchany
OR
ciscounified_contact_center_hostedMatchany
OR
ciscoios_xr_softwareMatchany
OR
ciscoonsMatch15454_system_software
OR
ciscounity_expressMatchany
OR
ciscointrusion_prevention_systemMatchany
OR
ciscoadaptive_security_appliance_softwareMatchany
OR
ciscoace_application_control_engine_module_a3Matchany
OR
ciscowide_area_application_servicesMatchany
OR
ciscowireless_lan_controllerMatchany
OR
ciscounified_contact_center_enterpriseMatchany
OR
ciscoip_interoperability_and_collaboration_systemMatchany
OR
ciscounity_connectionMatchany
OR
ciscotelepresence_mx200Matchany
OR
ciscosecurity_managerMatchany
OR
ciscoace_4710Match4700_series_application_control_engine_appliances
OR
ciscophysical_access_gatewayMatchany
OR
ciscounified_contact_center_expressMatchany
OR
ciscovideo_surveillance_media_serverMatchany
OR
ciscodigital_media_managerMatchany
OR
ciscomeetingplaceMatchany
OR
cisconetwork_analysis_module_softwareMatchany
OR
ciscoironport_encryption_applianceMatchany
OR
ciscowebex_connect_imMatchany
OR
ciscowebex_event_centerMatchany
OR
ciscowebex_meeting_centerMatchany
OR
ciscowebex_support_centerMatchany
OR
ciscowebex_training_centerMatchany
OR
cisconetwork_admission_controlMatchany
OR
ciscoanyconnect_secure_mobility_clientMatchany
OR
ciscoshow_and_shareMatchany
OR
ciscomobility_services_engineMatchany
OR
ciscoidentity_services_engine_softwareMatchany
OR
ciscotelepresence_video_communication_serverMatchany
OR
ciscoasa_cx_context-aware_security_softwareMatchany
OR
ciscoprime_security_managerMatchany
OR
ciscoprime_data_center_network_managerMatchany
OR
ciscoataMatch187_analog_telephone_adaptor
OR
ciscoprime_lan_management_solutionMatchany
OR
ciscounified_communications_domain_managerMatchany
OR
ciscoemail_security_applianceMatchany
OR
ciscocontent_security_management_applianceMatchany
OR
ciscoaironet_access_point_softwareMatchany
OR
ciscoprime_infrastructureMatchany
OR
ciscoconnected_grid_network_management_systemMatchany
OR
ciscojabber_imMatchanyandroid
OR
ciscowebex_meetings_serverMatchany
OR
ciscowebex_node_for_mcsMatchany
OR
ciscounified_computing_system_central_softwareMatchany
OR
ciscojabberMatchanywindows
OR
ciscoenterprise_content_delivery_systemMatchany
OR
ciscovirtualization_experience_media_engineMatchany
OR
ciscoasr_9904Match5000_series_software
OR
ciscofinesseMatchany
OR
ciscounified_ip_phoneMatch8945
OR
ciscosocialminerMatchany
OR
ciscomediasenseMatchany
OR
ciscovideo_surveillance_managerMatch4000_series_ip_camera
OR
cisconexus_1000vMatch1000v_intercloud_for_vmwarenexus_1000v
OR
ciscoprime_network_registrarMatchany
OR
ciscotelepresence_isdn_gw_3241Match3241
OR
ciscodigital_content_managerMatchany
OR
ciscounified_intelligence_centerMatchany
OR
cisconexus_1000vMatch1000v_switchnexus_1000v
OR
ciscoexpresswayMatchany
OR
ciscoprime_opticalMatchany
OR
ciscojabber_guestMatchany
OR
ciscocisco_visual_quality_experienceMatchany
OR
ciscounified_computing_system_softwareMatchany
OR
ciscotelepresence_serial_gatewayMatchany
OR
ciscoprime_license_managerMatchany
OR
ciscoprime_collaboration_deploymentMatchany
OR
ciscocisco_plug-in_for_openflowMatchany
OR
ciscomate_collectorMatchany
OR
ciscomate_collectorMatchany
OR
ciscomate_liveMatchany
OR
ciscoip_contact_center_expressMatchany
OR
ciscocisco_onepk_all-in-one_virtual_machineMatchany
OR
ciscoprime_network_services_controllerMatchany
OR
ciscotelepresence_isdn_gw_3241Matchany
OR
ciscotelepresence_conductorMatchany
OR
ciscovideo_surveillance_managerMatch3000_series_ip_cameras
OR
ciscovideo_surveillance_managerMatch6000_series_ip_cameras
OR
ciscovideo_surveillance_managerMatch7000_series_ip_cameras
OR
ciscovideo_surveillance_4000_ip_cameraMatchany
OR
ciscowebex_meetingsMatchanyandroid
OR
ciscowebex_meetingsMatch8windows
OR
ciscofirepower_system_softwareMatchany
OR
ciscoheadend_system_releaseMatchany
OR
ciscoucs_b-series_blade_server_softwareMatchany
OR
ciscoprime_collaboration_assuranceMatchany
OR
ciscoprime_collaboration_provisioningMatchany
OR
ciscojabber_software_development_kitMatchany
OR
ciscojabberMatchanymac
OR
ciscojabberMatchany
OR
ciscoapplication_infrastructure_controllerMatchany
OR
ciscopacket_tracerMatchany
OR
ciscoprime_networkMatchany
OR
ciscoprime_security_managerMatchany
OR
ciscoagent_desktopMatchany
OR
ciscopaging_serverMatchany
OR
ciscocisco_spa112Match2-port_phone_adapter
OR
ciscoataMatchany
OR
ciscoataMatchany
OR
ciscocisco_unifiedMatch7800_series_ip_phones
OR
ciscounified_attendant_console_advancedMatchany
OR
ciscovideoscape_anyres_liveMatchany
OR
ciscocisco_model_d9485_davic_qpsk_mod_\/_demodMatchany
OR
ciscovideoscape_distribution_suite_service_brokerMatchany
OR
ciscounified_ip_phoneMatch7900_series
OR
cisconexus_1000vMatch3000_series_switchnexus_1000v
OR
ciscocisco_policy_suiteMatchany
OR
ciscohosted_collaboration_mediation_fulfillmentMatchany
OR
ciscoprime_homeMatchany
OR
ciscoregistered_envelope_serviceMatchany
VendorProductVersionCPE
ciscoapplication_and_content_networking_system_softwareanycpe:2.3:a:cisco:application_and_content_networking_system_software:any:*:*:*:*:*:*:*
ciscounityanycpe:2.3:a:cisco:unity:any:*:*:*:*:*:*:*
ciscoiosanycpe:2.3:o:cisco:ios:any:*:*:*:*:*:*:*
ciscoprime_access_registraranycpe:2.3:a:cisco:prime_access_registrar:any:*:*:*:*:*:*:*
ciscoemergency_responderanycpe:2.3:a:cisco:emergency_responder:any:*:*:*:*:*:*:*
ciscounified_contact_center_hostedanycpe:2.3:a:cisco:unified_contact_center_hosted:any:*:*:*:*:*:*:*
ciscoios_xr_softwareanycpe:2.3:o:cisco:ios_xr_software:any:*:*:*:*:*:*:*
ciscocisco_ons_15454_system_softwareanycpe:2.3:o:cisco:cisco_ons_15454_system_software:any:*:*:*:*:*:*:*
ciscounity_expressanycpe:2.3:h:cisco:unity_express:any:*:*:*:*:*:*:*
ciscointrusion_prevention_systemanycpe:2.3:a:cisco:intrusion_prevention_system:any:*:*:*:*:*:*:*
Rows per page:
1-10 of 1301

Related

ibm 55
nessus 35
freebsd_advisory 1
freebsd 2
openvas 34
gentoo 1
archlinux 2
openwrt 1
arista 1
suse 14
mageia 1
aix 1
slackware 1
osv 1
ubuntu 1
cloudfoundry 2
symantec 1
altlinux 4
debian 1
amazon 1
checkpoint_advisories 1
paloalto 1
f5 6
fedora 2
redhat 3
oraclelinux 1
centos 1
prion 4
cve 4
ubuntucve 4
cvelist 4
debiancve 4
nvd 4
ibm
ibm
Security Bulletin: Multiple vulnerabilities in OpenSSL affect IBM Security Active Bypass
2018-06-16 21:41:40
Security Bulletin: Multiple vulnerabilities in OpenSSL affect IBM i
2019-12-18 14:26:38
Security Bulletin: Vulnerability in OpenSSL affects IBM Sterling Connect:Express for Unix (CVE-2016-2842).
2020-07-24 22:49:37
nessus
nessus
FreeBSD : FreeBSD -- Multiple OpenSSL vulnerabilities (7b1a4a27-600a-11e6-a6c3-14dae9d210b8) (DROWN)
2016-08-12 00:00:00
GLSA-201603-15 : OpenSSL: Multiple vulnerabilities (DROWN)
2016-03-21 00:00:00
OpenSSL 1.0.2 < 1.0.2g Multiple Vulnerabilities
2016-03-02 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-16:12.openssl
2016-03-10 00:00:00
freebsd
freebsd
FreeBSD -- Multiple OpenSSL vulnerabilities
2016-03-10 00:00:00
node -- multiple vulnerabilities
2016-03-02 00:00:00
openvas
openvas
Juniper Networks Junos OS Multiple OpenSSL Vulnerabilities
2016-10-14 00:00:00
Gentoo Security Advisory GLSA 201603-15
2016-03-23 00:00:00
OpenSSL Multiple Vulnerabilities -01 (Mar 2016) - Windows
2016-03-03 00:00:00
gentoo
gentoo
OpenSSL: Multiple vulnerabilities
2016-03-20 00:00:00
archlinux
archlinux
openssl: multiple issues
2016-03-07 00:00:00
lib32-openssl: multiple issues
2016-03-07 00:00:00
openwrt
openwrt
openssl: Security update (9 CVEs)
2016-03-01 16:52:09
arista
arista
Security Advisory 0018
2016-03-01 00:00:00
suse
suse
Security update for openssl (important)
2016-03-02 12:11:42
Security update for openssl (important)
2016-03-01 18:12:06
Security update for openssl (important)
2016-03-01 18:16:02
mageia
mageia
Updated openssl packages fix security vulnerabilities
2016-03-02 21:28:46
aix
aix
Multiple vulnerabilities in OpenSSL affect AIX
2016-04-04 11:04:25
slackware
slackware
[slackware-security] openssl
2016-03-03 06:56:40
osv
osv
openssl - security update
2016-03-01 00:00:00
ubuntu
ubuntu
OpenSSL vulnerabilities
2016-03-01 00:00:00
cloudfoundry
cloudfoundry
USN-2914-1 OpenSSL vulnerabilities | Cloud Foundry
2016-03-24 00:00:00
CVE-2016-0800 & CVE-2016-0703 OpenSSL vulnerabilities | Cloud Foundry
2016-03-02 00:00:00
symantec
symantec
SA117 : OpenSSL Vulnerabilities 1-Mar-2016
2016-03-07 08:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package openssl10 version 1.0.2g-alt1
2016-03-01 00:00:00
Security fix for the ALT Linux 7 package openssl10 version 1.0.1s-alt0.M70P.1
2016-03-02 00:00:00
Security fix for the ALT Linux 9 package openssl10 version 1.0.2g-alt1
2016-03-01 00:00:00
debian
debian
[SECURITY] [DSA 3500-1] openssl security update
2016-03-01 14:34:35
amazon
amazon
Important: openssl
2016-03-10 16:30:00
checkpoint_advisories
checkpoint_advisories
Secure Sockets Layer (SSL) Version 2.0 (CVE-2016-0703; CVE-2016-0704; CVE-2016-0800)
2014-03-18 00:00:00
paloalto
paloalto
OpenSSL Vulnerabilities
2016-10-18 00:00:00
f5
f5
K95463126 : OpenSSL vulnerabilities CVE-2016-0703 and CVE-2016-0704
2016-03-10 00:00:00
SOL95463126 - OpenSSL vulnerabilities CVE-2016-0703 and CVE-2016-0704
2016-03-09 00:00:00
SOL22334603 - OpenSSL vulnerability CVE-2016-0799
2016-03-25 00:00:00
fedora
fedora
[SECURITY] Fedora 23 Update: openssl-1.0.2g-2.fc23
2016-03-03 20:27:06
[SECURITY] Fedora 22 Update: openssl-1.0.1k-14.fc22
2016-03-13 09:57:52
redhat
redhat
(RHSA-2016:0301) Important: openssl security update
2016-03-01 00:00:00
(RHSA-2016:0379) Important: rhev-hypervisor security, bug fix and enhancement update
2016-03-09 00:00:00
(RHSA-2016:0303) Important: openssl security update
2016-03-01 00:00:00
oraclelinux
oraclelinux
openssl security update
2016-03-01 00:00:00
centos
centos
openssl security update
2016-03-01 16:09:29
prion
prion
Out-of-bounds
2016-03-03 20:59:00
Out-of-bounds
2016-03-03 20:59:00
Buffer overflow
2016-03-02 11:59:00
cve
cve
CVE-2016-0799
2016-03-03 20:59:03
CVE-2016-2842
2016-03-03 20:59:04
CVE-2016-0703
2016-03-02 11:59:00
ubuntucve
ubuntucve
CVE-2016-2842
2016-03-03 00:00:00
CVE-2016-0799
2016-03-01 00:00:00
CVE-2016-0703
2016-03-01 00:00:00
cvelist
cvelist
CVE-2016-0799
2016-03-03 00:00:00
CVE-2016-2842
2016-03-03 20:00:00
CVE-2016-0704
2016-03-02 00:00:00
debiancve
debiancve
CVE-2016-2842
2016-03-03 20:59:04
CVE-2016-0703
2016-03-02 11:59:00
CVE-2016-0704
2016-03-02 11:59:01
nvd
nvd
CVE-2016-2842
2016-03-03 20:59:04
CVE-2016-0703
2016-03-02 11:59:00
CVE-2016-0799
2016-03-03 20:59:03

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.952

Percentile

99.4%

JSON
Related for CISCO-SA-20160302-OPENSSL
ibm55nessus35freebsd_advisory1freebsd2openvas34gentoo1archlinux2openwrt1arista1suse14mageia1aix1slackware1osv1ubuntu1cloudfoundry2symantec1altlinux4debian1amazon1checkpoint_advisories1paloalto1f56fedora2redhat3oraclelinux1centos1prion4cve4ubuntucve4cvelist4debiancve4nvd4