CVE-2015-3194

high
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

crypto/rsa/rsa_ameth.c in OpenSSL 1.0.1 before 1.0.1q and 1.0.2 before 1.0.2e allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an RSA PSS ASN.1 signature that lacks a mask generation function parameter.

References

http://fortiguard.com/advisory/openssl-advisory-december-2015

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10761

http://lists.fedoraproject.org/pipermail/package-announce/2015-December/173801.html

http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.html

http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00053.html

http://lists.opensuse.org/opensuse-updates/2015-12/msg00070.html

http://lists.opensuse.org/opensuse-updates/2015-12/msg00071.html

http://lists.opensuse.org/opensuse-updates/2015-12/msg00087.html

http://marc.info/?l=bugtraq&m=145382583417444&w=2

http://openssl.org/news/secadv/20151203.txt

http://rhn.redhat.com/errata/RHSA-2015-2617.html

http://rhn.redhat.com/errata/RHSA-2016-2957.html

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151204-openssl

http://www.debian.org/security/2015/dsa-3413

http://www.fortiguard.com/advisory/openssl-advisory-december-2015

http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html

http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html

http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html

http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html

http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html

http://www.securityfocus.com/bid/78623

http://www.securityfocus.com/bid/91787

http://www.securitytracker.com/id/1034294

http://www.slackware.com/security/viewer.php?l=slackware-security&y=2015&m=slackware-security.754583

http://www.ubuntu.com/usn/USN-2830-1

https://bugzilla.redhat.com/show_bug.cgi?id=1288320

https://git.openssl.org/?p=openssl.git;a=commit;h=c394a488942387246653833359a5c94b5832674e

https://git.openssl.org/?p=openssl.git;a=commit;h=d8541d7e9e63bf5f343af24644046c8d96498c17

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944173

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05111017

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05131085

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05157667

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05398322

https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40100

Details

Source: MITRE

Published: 2015-12-06

Updated: 2019-02-07

Risk Information

CVSS v2

Base Score: 5

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Impact Score: 2.9

Exploitability Score: 10

Severity: MEDIUM

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Impact Score: 3.6

Exploitability Score: 3.9

Severity: HIGH

Tenable Plugins

View all (48 total)

IDNameProductFamilySeverity
700518macOS < 10.14 Multiple VulnerabilitiesNessus Network MonitorOperating System Detection
critical
118178macOS < 10.14 Multiple VulnerabilitiesNessusMacOS X Local Security Checks
critical
106498pfSense < 2.2.6 Multiple Vulnerabilities (SA-15_09 / SA-15_10 / SA-15_11)NessusFirewalls
critical
96316Juniper Junos Multiple OpenSSL Vulnerabilities (JSA10759) (SWEET32)NessusJunos Local Security Checks
critical
94935Apple Xcode < 8.1 Node.js Multiple RCE (macOS)NessusMacOS X Local Security Checks
critical
93410Blue Coat ProxyAV 3.5.x < 3.5.4.1 Multiple DoS VulnerabilitiesNessusCGI abuses
medium
92543Oracle Secure Global Desktop Multiple Vulnerabilities (July 2016 CPU)NessusMisc.
critical
91277openSUSE Security Update : mysql-community-server (openSUSE-2016-607)NessusSuSE Local Security Checks
critical
91274openSUSE Security Update : libressl (openSUSE-2016-604)NessusSuSE Local Security Checks
critical
91222HP System Management Homepage Multiple Vulnerabilities (HPSBMU03593)NessusWeb Servers
critical
91154OracleVM 3.3 / 3.4 : openssl (OVMSA-2016-0049) (SLOTH)NessusOracleVM Local Security Checks
critical
90847FreeBSD : MySQL -- multiple vulnerabilities (8c2b2f11-0ebe-11e6-b55e-b499baebfeaf)NessusFreeBSD Local Security Checks
critical
90833Oracle MySQL 5.7.x < 5.7.11 Multiple Vulnerabilities (April 2016 CPU) (July 2016 CPU)NessusDatabases
medium
90831Oracle MySQL 5.6.x < 5.6.29 Multiple Vulnerabilities (April 2016 CPU)NessusDatabases
medium
90680Oracle VM VirtualBox < 4.3.36 / 5.0.18 Multiple Vulnerabilities (April 2016 CPU)NessusMisc.
medium
9259Oracle MySQL 5.5.x < 5.5.48 / 5.6.x < 5.6.29 / 5.7.x < 5.7.11 Multiple VulnerabilitiesNessus Network MonitorDatabase
medium
9238MySQL 5.6.x < 5.6.29 Multiple DoSNessus Network MonitorDatabase
medium
89431Fedora 22 : openssl-1.0.1k-13.fc22 (2015-d87d60b9a9)NessusFedora Local Security Checks
high
89256Fedora 23 : openssl-1.0.2e-1.fc23 (2015-605de37b7f)NessusFedora Local Security Checks
high
89056MySQL 5.7.x < 5.7.11 Multiple VulnerabilitiesNessusDatabases
medium
89055MySQL 5.6.x < 5.6.29 Multiple VulnerabilitiesNessusDatabases
medium
88809Tenable SecurityCenter OpenSSL ASN.1 Signature Verification Routine DoS (TNS-2016-01)NessusMisc.
high
88698MySQL Enterprise Server 5.6.x < 5.6.29 / 5.7.x < 5.7.11 OpenSSL Multiple VulnerabilitiesNessusDatabases
medium
88593Cisco Security Manager 4.9.x < 4.9(0.397) / 4.10.x < 4.10(0.189) OpenSSL ASN.1 Signature Handling DoSNessusWindows
high
88586GLSA-201601-05 : OpenSSL: Multiple vulnerabilitiesNessusGentoo Local Security Checks
high
88101Mac OS X : Cisco AnyConnect Secure Mobility Client < 3.1.13015.0 / 4.2.x < 4.2.1035.0 Multiple OpenSSL VulnerabilitiesNessusMacOS X Local Security Checks
medium
88100Cisco AnyConnect Secure Mobility Client < 3.1.13015.0 / 4.2.x < 4.2.1035.0 Multiple OpenSSL VulnerabilitiesNessusWindows
medium
88085AIX OpenSSL Advisory : openssl_advisory15.ascNessusAIX Local Security Checks
medium
87800OracleVM 3.3 : openssl (OVMSA-2016-0001) (SLOTH)NessusOracleVM Local Security Checks
high
87518openSUSE Security Update : libressl (openSUSE-2015-916)NessusSuSE Local Security Checks
high
87487openSUSE Security Update : openssl (openSUSE-2015-911)NessusSuSE Local Security Checks
high
87447openSUSE Security Update : OpenSSL (openSUSE-2015-908)NessusSuSE Local Security Checks
high
87435F5 Networks BIG-IP : OpenSSL vulnerability (K86772626)NessusF5 Networks Local Security Checks
high
87402Scientific Linux Security Update : openssl on SL6.x i386/x86_64 (20151214)NessusScientific Linux Local Security Checks
high
87378Slackware 13.0 / 13.1 / 13.37 / 14.0 / 14.1 / current : openssl (SSA:2015-349-04)NessusSlackware Local Security Checks
high
87366OracleVM 3.3 : openssl (OVMSA-2015-0155)NessusOracleVM Local Security Checks
high
87364Oracle Linux 6 / 7 : openssl (ELSA-2015-2617)NessusOracle Linux Local Security Checks
high
87357CentOS 6 / 7 : openssl (CESA-2015:2617)NessusCentOS Local Security Checks
high
87340Amazon Linux AMI : openssl (ALAS-2015-614)NessusAmazon Linux Local Security Checks
high
87335RHEL 6 / 7 : openssl (RHSA-2015:2617)NessusRed Hat Local Security Checks
high
87318SUSE SLED12 / SLES12 Security Update : openssl (SUSE-SU-2015:2237-1)NessusSuSE Local Security Checks
high
87280SUSE SLED12 / SLES12 Security Update : openssl (SUSE-SU-2015:2230-1)NessusSuSE Local Security Checks
high
87269FreeBSD : libressl -- NULL pointer dereference (215e740e-9c56-11e5-90e7-b499baebfeaf)NessusFreeBSD Local Security Checks
high
87236Ubuntu 12.04 LTS / 14.04 LTS / 15.04 / 15.10 : openssl vulnerabilities (USN-2830-1)NessusUbuntu Local Security Checks
high
87222OpenSSL 1.0.2 < 1.0.2e Multiple VulnerabilitiesNessusWeb Servers
medium
87221OpenSSL 1.0.1 < 1.0.1q Multiple DoSNessusWeb Servers
medium
87213FreeBSD : openssl -- multiple vulnerabilities (4c8d1d72-9b38-11e5-aece-d050996490d0)NessusFreeBSD Local Security Checks
high
87212Debian DSA-3413-1 : openssl - security updateNessusDebian Local Security Checks
high