Lucene search

Veracode Vulnerability DatabaseVERACODE:28494

HistoryDec 06, 2020 - 4:49 a.m.

Unintended Cipher

2020-12-0604:49:47

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.005 Low

EPSS

Percentile

76.1%

JSON

mod_ns is vulnerable to unintended cipher attack. This vulnerability allows attackers to force the use of ciphers that were not intended to be enabled.

CPENameOperatorVersion
libapache2-mod-nss:stretcheq1.0.14-1+b1
libapache2-mod-nss:stretcheq1.0.14-1+b1

CPE	Name	Operator	Version
	libapache2-mod-nss:stretch	eq	1.0.14-1+b1
	libapache2-mod-nss:stretch	eq	1.0.14-1+b1

References

lists.fedoraproject.org/pipermail/package-announce/2016-April/183102.html

lists.fedoraproject.org/pipermail/package-announce/2016-April/183129.html

lists.fedoraproject.org/pipermail/package-announce/2016-May/184345.html

rhn.redhat.com/errata/RHSA-2016-2602.html

bugzilla.redhat.com/show_bug.cgi?id=1319052

security-tracker.debian.org/tracker/CVE-2016-3099

0.005 Low

EPSS

Percentile

76.1%

JSON

Related for VERACODE:28494