Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM2CBBD45F30EBDD9AF79E128709B5FA169B4D42EC7E63984FB628059AD9D57EEF
HistoryJan 31, 2019 - 2:10 a.m.

Security Bulletin: IBM Flex System Chassis Management Module (CMM) is affected by multiple vulnerabilities in OpenSSL including Logjam

2019-01-3102:10:01
www.ibm.com
9

0.974 High

EPSS

Percentile

99.9%

JSON

Summary

OpenSSL vulnerabilities were disclosed on June 11, 2015 by the OpenSSL Project. This includes Logjam Attack on TLS connections using the Diffie-Hellman (DH) key exchange protocol (CVE-2015-4000). OpenSSL is used by IBM Flex Chassis Management Module (CMM). Flex Chassis Management Module has addressed the vulnerabilities.

Vulnerability Details

Summary

OpenSSL vulnerabilities were disclosed on June 11, 2015 by the OpenSSL Project. This includes Logjam Attack on TLS connections using the Diffie-Hellman (DH) key exchange protocol (CVE-2015-4000). OpenSSL is used by IBM Flex Chassis Management Module (CMM). Flex Chassis Management Module has addressed the vulnerabilities.

Vulnerability Details

CVE-ID: CVE-2015-4000

Description: The TLS protocol could allow a remote attacker to obtain sensitive information, caused by the failure to properly convey a DHE_EXPORT ciphersuite choice. An attacker could exploit this vulnerability using man-in-the-middle techniques to force a downgrade to 512-bit export-grade cipher. Successful exploitation could allow an attacker to recover the session key as well as modify the contents of the traffic. This vulnerability is commonly referred to as “Logjam”.

CVSS Base Score: 4.3
CVSS Temporal Score: See <http://exchange.xforce.ibmcloud.com/vulnerabilities/103294&gt; for current score
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:N/AC:M/Au:N/C:P/I:N/A:N)

CVE-ID: CVE-2014-8176

Description: OpenSSL could allow a remote authenticated attacker to execute arbitrary code on the system, caused by an invalid free error when application data between the ChangeCipherSpecand Finished messages is received by the DTLS peer. An attacker could exploit this vulnerability to trigger a segmentation fault or possibly corrupt memory and execute arbitrary code on the system.

CVSS Base Score: 6.5
CVSS Temporal Score: See <http://exchange.xforce.ibmcloud.com/vulnerabilities/103782&gt; for current score
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:N/AC:L/Au:S/C:P/I:P/A:P)

CVE-ID: CVE-2015-1789

Description: OpenSSL is vulnerable to a denial of service, caused by an out-of-bounds read in X509_cmp_time. An attacker could exploit this vulnerability using a specially crafted certificate or CRL to trigger a segmentation fault.

CVSS Base Score: 5
CVSS Temporal Score: See <http://exchange.xforce.ibmcloud.com/vulnerabilities/103779&gt; for current score
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:P)

CVE-ID: CVE-2015-1790

Description: OpenSSL is vulnerable to a denial of service, caused by the improper handling of missing inner EncryptedContent by the PKCS#7 parsing code. An attacker could exploit this vulnerability using specially crafted ASN.1-encoded PKCS#7 blobs with missing content to trigger a NULL pointer dereference.

CVSS Base Score: 5
CVSS Temporal Score: See <http://exchange.xforce.ibmcloud.com/vulnerabilities/103780&gt; for current score
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:P)

CVE-ID: CVE-2015-1792

Description: OpenSSL is vulnerable to a denial of service, caused by an error when verifying a signedData message. An attacker could exploit this vulnerability using an unknown hash function OID to cause the application to enter into an infinite loop.

CVSS Base Score: 5
CVSS Temporal Score: See <http://exchange.xforce.ibmcloud.com/vulnerabilities/103781&gt; for current score
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:P)

CVE-ID: CVE-2015-1791

Description: A double-free memory error in OpenSSL in the ssl3_get_new_session_ticket() function has an unknown impact. By returning a specially crafted NewSessionTicket message, an attacker could cause the client to reuse a previous ticket resulting in a race condition.

CVSS Base Score: 5
CVSS Temporal Score: See <http://exchange.xforce.ibmcloud.com/vulnerabilities/103609&gt; for current score
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:P/A:N)

CVE-ID: CVE-2015-3216

Description: OpenSSL shipped with Red Hat Enterprise Linux is vulnerable to a denial of service, caused by an out-of-bounds memory read error in ssleay_rand_bytes() function. By sending specially crafted data, a remote attacker could exploit this vulnerability to cause the application to crash.

CVSS Base Score: 5
CVSS Temporal Score: See <http://exchange.xforce.ibmcloud.com/vulnerabilities/103915&gt; for current score
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:P)

CVE-ID: CVE-2015-1788

Description: OpenSSL is vulnerable to a denial of service, caused by an error when processing an ECParameters structure over a specially crafted binary polynomial field. A remote attacker could exploit this vulnerability to cause the application to enter into an infinite loop.

CVSS Base Score: 5
CVSS Temporal Score: See <http://exchange.xforce.ibmcloud.com/vulnerabilities/103778&gt; for current score
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:P)

Affected products and versions

Product Affected Version
IBM Flex System Chassis Management Module (CMM) 2PET12U — 2.53

Remediation/Fixes

Firmware fix versions are available on Fix Central: <http://www.ibm.com/support/fixcentral/&gt;

You should verify applying the fix does not cause any compatibility issues.

Product Affected Version
IBM Flex System Chassis Management Module (CMM) 2PET12W — 2.5.4

For CVE-2015-4000: You should verify applying this configuration change does not cause any compatibility issues. If you change the default setting after applying the fix, you will expose yourself to the attack described above. IBM recommends that you review your entire environment to identify other areas where you have enabled the Diffie-Hellman key-exchange protocol used in TLS and take appropriate mitigation and remediation actions.

Workarounds and Mitigations

None.

References

Related Information
IBM Secure Engineering Web Portal
IBM Product Security Incident Response Blog

Acknowledgement

None.

Change History
24 November 2015: Original Version Published

  • The CVSS Environment Score is customer environment specific and will ultimately impact the Overall CVSS Score. Customers can evaluate the impact of this vulnerability in their environments by accessing the links in the Reference section of this Security Bulletin.

Disclaimer

According to the Forum of Incident Response and Security Teams (FIRST), the Common Vulnerability Scoring System (CVSS) is an “industry open standard designed to convey vulnerability severity and help to determine urgency and priority of response.” IBM PROVIDES THE CVSS SCORES “AS IS” WITHOUT WARRANTY OF ANY KIND, INCLUDING THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. CUSTOMERS ARE RESPONSIBLE FOR ASSESSING THE IMPACT OF ANY ACTUAL OR POTENTIAL SECURITY VULNERABILITY.

Related

ibm 58
nessus 42
aix 1
openvas 47
debian 2
fortinet 1
osv 2
suse 13
freebsd 1
freebsd_advisory 1
gentoo 1
paloalto 2
amazon 1
veracode 2
arista 1
redhat 2
centos 2
securityvulns 2
cisco 1
archlinux 1
ubuntu 1
mageia 1
slackware 1
oraclelinux 3
symantec 1
altlinux 5
fedora 4
ibm
ibm
Security Bulletin: Multiple vulnerabilities in openssl affect IBM SmartCloud Provisioning for IBM Software Virtual Appliance
2018-06-17 22:30:13
Security Bulletin: Multiple vulnerabilities in OpenSSL affect IBM Security Network Protection
2018-06-16 21:25:43
Security Bulletin: Vulnerabilities in OpenSSL including Logjam affect Rational Software Architect and Rational Software Architect for Websphere Software
2020-09-10 17:03:14
nessus
nessus
AIX OpenSSL Advisory : openssl_advisory14.asc (Logjam)
2015-07-20 00:00:00
FreeBSD : openssl -- multiple vulnerabilities (8305e215-1080-11e5-8ba2-000c2980a9f3) (Logjam)
2015-06-12 00:00:00
SUSE SLES11 Security Update : OpenSSL (SUSE-SU-2015:1184-2) (Logjam)
2015-07-07 00:00:00
aix
aix
Multiple Security vulnerabilities in AIX OpenSSL
2015-07-15 00:20:05
openvas
openvas
Debian: Security Advisory (DSA-3287-1)
2015-06-12 00:00:00
Amazon Linux: Security Advisory (ALAS-2015-550)
2015-09-08 00:00:00
Gentoo Security Advisory GLSA 201506-02
2015-09-29 00:00:00
debian
debian
[SECURITY] [DSA 3287-1] openssl security update
2015-06-13 14:32:55
[SECURITY] [DLA 247-1] openssl security update
2015-06-17 21:46:50
fortinet
fortinet
OpenSSL vulnerabilities - June 2015
2015-06-11 00:00:00
osv
osv
openssl - security update
2015-06-13 00:00:00
openssl - security update
2015-06-17 00:00:00
suse
suse
Security update for OpenSSL (important)
2015-07-03 20:07:31
Security update for OpenSSL (important)
2015-07-03 14:06:19
Security update for OpenSSL (important)
2015-07-03 20:05:20
freebsd
freebsd
openssl -- multiple vulnerabilities
2015-06-11 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-15:10.openssl
2015-06-12 00:00:00
gentoo
gentoo
OpenSSL: Multiple vulnerabilities
2015-06-22 00:00:00
paloalto
paloalto
OpenSSL Vulnerabilities
2016-10-18 00:00:00
OpenSSL Vulnerabilities
2016-08-15 00:00:00
amazon
amazon
Medium: openssl
2015-06-16 11:29:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:39:36
Denial Of Service (DoS) Through Memory Consumption And Application Crash
2017-02-06 05:19:25
arista
arista
Security Advisory 0011
2015-06-17 00:00:00
redhat
redhat
(RHSA-2015:1115) Moderate: openssl security update
2015-06-15 00:00:00
(RHSA-2015:1197) Moderate: openssl security update
2015-06-30 00:00:00
centos
centos
openssl security update
2015-06-15 20:01:35
openssl security update
2015-07-02 12:10:41
securityvulns
securityvulns
OpenSSL multiple security vulnerabilities
2015-06-13 00:00:00
[USN-2639-1] OpenSSL vulnerabilities
2015-06-13 00:00:00
cisco
cisco
Multiple Vulnerabilities in OpenSSL (June 2015) Affecting Cisco Products
2015-06-12 16:00:00
archlinux
archlinux
openssl: multiple issues
2015-06-12 00:00:00
ubuntu
ubuntu
OpenSSL vulnerabilities
2015-06-11 00:00:00
mageia
mageia
Updated openssl package fixes security vulnerabilities
2015-06-19 16:33:05
slackware
slackware
[slackware-security] openssl
2015-06-11 23:01:09
oraclelinux
oraclelinux
openssl security update
2015-06-15 00:00:00
openssl security update
2015-12-14 00:00:00
openssl security update
2015-06-30 00:00:00
symantec
symantec
SA98 : OpenSSL Security Advisory 11-June-2015
2015-06-17 08:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package openssl1.1 version 1.0.1k-alt3
2015-06-15 00:00:00
Security fix for the ALT Linux 7 package openssl10 version 1.0.1k-alt2.M70P.1
2015-06-26 00:00:00
Security fix for the ALT Linux 9 package openssl10 version 1.0.1k-alt3
2015-06-15 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: openssl-1.0.1k-10.fc22
2015-06-21 00:19:25
[SECURITY] Fedora 22 Update: openssl-1.0.1k-11.fc22
2015-07-13 19:18:15
[SECURITY] Fedora 21 Update: openssl-1.0.1k-10.fc21
2015-06-24 15:57:49

0.974 High

EPSS

Percentile

99.9%

JSON
Related for 2CBBD45F30EBDD9AF79E128709B5FA169B4D42EC7E63984FB628059AD9D57EEF
ibm58nessus42aix1openvas47debian2fortinet1osv2suse13freebsd1freebsd_advisory1gentoo1paloalto2amazon1veracode2arista1redhat2centos2securityvulns2cisco1archlinux1ubuntu1mageia1slackware1oraclelinux3symantec1altlinux5fedora4