CVEID:CVE-2020-1967
**DESCRIPTION:**OpenSSL is vulnerable to a denial of service, caused by a NULL pointer dereference. By passing specially crafted data to the SSL_check_chain() function during or after a TLS 1.3 handshake, a remote attacker could exploit this vulnerability to cause server or client applications to crash.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/180181 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

Affected Products and Versions

Affected Product(s)	Version(s)
IBM WIoTP MessageGateway	5.0.0.1

Remediation/Fixes

Product

5.0.0.2

IT32682

| 5.0.0.2-IBM-IMA-IFIT32682

Workarounds and Mitigations

None

CPENameOperatorVersion
ibm watson iot platform - message gatewayeq5.0.0.1
ibm watson iot platform - message gatewayeq5.0.0.2

CPE	Name	Operator	Version
	ibm watson iot platform - message gateway	eq	5.0.0.1
	ibm watson iot platform - message gateway	eq	5.0.0.2

openvas 22

nessus 26

suse 2

openssl 1

rustsec 1

ibm 7

huawei 1

cvelist 1

veracode 1

alpinelinux 1

ubuntucve 1

freebsd_advisory 1

f5 1

redhatcve 1

prion 1

github 1

osv 4

githubexploit 1

debiancve 1

debian 1

mscve 1

archlinux 2

checkpoint_advisories 1

cve 1

nvd 1

freebsd 2

fedora 3

altlinux 2

gentoo 1

photon 4

ics 1

hp 1

symantec 1

hackerone 1

oracle 6

openvas

OpenSSL: Segmentation fault in SSL_check_chain (CVE-2020-1967) - Windows

2020-04-22 00:00:00

Huawei EulerOS: Security Advisory for openssl111d (EulerOS-SA-2020-1613)

2020-06-03 00:00:00

SUSE: Security Advisory (SUSE-SU-2020:2041-1)

2021-06-09 00:00:00

nessus

EulerOS 2.0 SP5 : openssl111d (EulerOS-SA-2020-1613)

2020-06-02 00:00:00

Debian DSA-4661-1 : openssl - security update

2020-04-22 00:00:00

openSUSE Security Update : rust / rust-cbindgen (openSUSE-2020-933)

2020-07-20 00:00:00

suse

Security update for rust, rust-cbindgen (moderate)

2020-07-06 00:00:00

Security update for rust, rust-cbindgen (moderate)

2020-07-07 00:00:00

openssl

Vulnerability in OpenSSL CVE-2020-1967

2020-04-21 00:00:00

rustsec

Crash causing Denial of Service attack

2020-04-25 12:00:00

ibm

Security Bulletin: Vulnerability in OpenSSL library affects OS Pattern Kit used in IBM Cloud Pak System

2020-09-11 12:51:09

Security Bulletin: OpenSSL for IBM i is affected by CVE-2020-1967

2020-06-19 14:58:12

Security Bulletin: Denial Of Service vulnerability in OpenSSL affects IBM Safer Payments (CVE-2020-1967)

2023-04-24 13:10:12

huawei

Security Advisory - Denial of Service Vulnerability in OpenSSL

2020-07-15 00:00:00

cvelist

CVE-2020-1967 Segmentation fault in SSL_check_chain

2020-04-21 00:00:00

veracode

Denial Of Service (DoS)

2020-08-06 21:28:47

alpinelinux

CVE-2020-1967

2020-04-21 14:15:11

ubuntucve

CVE-2020-1967

2020-04-21 00:00:00

freebsd_advisory

FreeBSD-SA-20:11.openssl

2020-04-21 00:00:00

K01251345 : OpenSSL vulnerability CVE-2020-1967

2020-04-23 00:00:00

redhatcve

CVE-2020-1967

2020-04-21 13:33:41

prion

Null pointer dereference

2020-04-21 14:15:00

github

Null pointer deference in openssl-src

2021-08-25 20:45:15

osv

Crash causing Denial of Service attack

2020-04-25 12:00:00

openssl - security update

2020-04-21 00:00:00

CVE-2020-1967

2020-04-21 14:15:11

githubexploit

Exploit for NULL Pointer Dereference in Openssl

2020-04-28 21:15:35

debiancve

CVE-2020-1967

2020-04-21 14:15:11

debian

[SECURITY] [DSA 4661-1] openssl security update

2020-04-21 13:58:12

mscve

OpenSSL Remote Denial of Service Vulnerability

2020-04-21 07:00:00

archlinux

[ASA-202004-19] lib32-openssl: denial of service

2020-04-22 00:00:00

[ASA-202004-18] openssl: denial of service

2020-04-21 00:00:00

checkpoint_advisories

OpenSSL TLS NULL Pointer Dereference Denial of Service (CVE-2020-1967)

2020-06-02 00:00:00

cve

CVE-2020-1967

2020-04-21 14:15:11

nvd

CVE-2020-1967

2020-04-21 14:15:11

freebsd

OpenSSL remote denial of service vulnerability

2020-04-21 00:00:00

Gitlab -- Multiple Vulnerabilities

2020-04-30 00:00:00

fedora

[SECURITY] Fedora 30 Update: openssl-1.1.1g-1.fc30

2020-04-30 02:52:05

[SECURITY] Fedora 31 Update: openssl-1.1.1g-1.fc31

2020-05-09 04:12:38

[SECURITY] Fedora 32 Update: openssl-1.1.1g-1.fc32

2020-04-26 02:51:31

altlinux

Security fix for the ALT Linux 9 package openssl1.1 version 1.1.1g-alt1

2020-04-29 00:00:00

Security fix for the ALT Linux 10 package openssl1.1 version 1.1.1g-alt1

2020-04-21 00:00:00

gentoo

OpenSSL: Multiple vulnerabilities

2020-04-23 00:00:00

photon

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-2.0-0233

2020-04-21 00:00:00

Important Photon OS Security Update - PHSA-2020-0233

2020-04-22 00:00:00

Important Photon OS Security Update - PHSA-2020-3.0-0082

2020-04-22 00:00:00

ics

Siemens SIDIS Prime

2024-02-15 12:00:00

HP PC BIOS September 2023 Security Updates for OpenSSL

2023-09-05 00:00:00

symantec

OpenSSL Vulnerabilities Sep 2019 – Apr 2020

2020-05-19 20:35:38

hackerone

U.S. Dept Of Defense: Tomcat examples available for public, Disclosure Apache Tomcat version, Critical/High/Medium CVE

2020-05-14 19:38:44

oracle

Oracle Critical Patch Update Advisory - January 2021

2021-01-19 00:00:00

Oracle Critical Patch Update Advisory - July 2021

2021-07-20 00:00:00

Oracle Critical Patch Update Advisory - October 2021

2021-10-19 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.081 Low

EPSS

Percentile

94.4%

JSON

Related for CD07568ED0ED0755A81F0FAAB2708FA8AAC3BA618A3434B98C44AA7ECD3EE952