Lucene search
HistoryOct 29, 2015 - 8:59 p.m.
CVE-2015-3230
cve-2015-3230
389 directory server
fedora directory server
nvd
security vulnerability
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
6.8 Medium
AI Score
Confidence
Low
0.007 Low
EPSS
Percentile
81.1%
389 Directory Server (formerly Fedora Directory Server) before 1.3.3.12 does not enforce the nsSSL3Ciphers preference when creating an sslSocket, which allows remote attackers to have unspecified impact by requesting to use a disabled cipher.
Affected configurations
Node
fedoraproject389_directory_serverRange≤1.3.3.10
| CPE | Name | Operator | Version |
|---|---|---|---|
| fedoraproject:389_directory_server | fedoraproject 389 directory server | le | 1.3.3.10 |
Related
nessus
nessus
Fedora 21 : 389-ds-base-1.3.3.13-1.fc21 (2015-15128)
2015-10-09 00:00:00
Amazon Linux AMI : 389-ds-base (ALAS-2015-567)
2015-07-23 00:00:00
mageia
mageia
Updated 389-ds-base packages fix security vulnerability
2015-10-15 22:50:55
openvas
openvas
Amazon Linux: Security Advisory (ALAS-2015-567)
2015-09-08 00:00:00
Mageia: Security Advisory (MGASA-2015-0402)
2015-10-16 00:00:00
Fedora Update for 389-ds-base FEDORA-2015-15128
2015-10-09 00:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: 389-ds-base-1.3.3.13-1.fc21
2015-10-08 18:49:36
prion
prion
Design/Logic Flaw
2015-10-29 20:59:00
cvelist
cvelist
CVE-2015-3230
2015-10-29 20:00:00
amazon
amazon
Medium: 389-ds-base
2015-07-22 10:00:00
debiancve
debiancve
CVE-2015-3230
2015-10-29 20:59:00
ubuntucve
ubuntucve
CVE-2015-3230
2015-10-29 00:00:00
nvd
nvd
CVE-2015-3230
2015-10-29 20:59:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
6.8 Medium
AI Score
Confidence
Low
0.007 Low
EPSS
Percentile
81.1%
Related for CVE-2015-3230