ID

VAR-201507-0348


CVE

CVE-2015-1793


TITLE

OpenSSL Vulnerabilities in certificate chain validation failure

Trust: 0.8

sources: JVNDB: JVNDB-2015-003487

DESCRIPTION

The X509_verify_cert function in crypto/x509/x509_vfy.c in OpenSSL 1.0.1n, 1.0.1o, 1.0.2b, and 1.0.2c does not properly process X.509 Basic Constraints cA values during identification of alternative certificate chains, which allows remote attackers to spoof a Certification Authority role and trigger unintended certificate verifications via a valid leaf certificate. OpenSSL Contains a certificate chain validation flaw. 2015 Year 7 Moon 9 Day, OpenSSL Project Than OpenSSL Security Advisory [9 Jul 2015] Has been published. OpenSSL Security Advisory [9 Jul 2015] https://www.openssl.org/news/secadv_20150709.txt According to the advisory, the following vulnerabilities have been fixed: OpenSSL 1.0.2d , 1.0.1p Has been released. Severity − High (Severity: High) ・ Alternative chains certificate forgery (CVE-2015-1793) OpenSSL Tries to build an alternative certificate chain if the certificate validation fails to build the first certificate chain, but there is a flaw in the implementation of this process. As a result, for example CA Flag FALSE A certificate issued using a certificate that is considered to be trusted is not detected as being invalid. CA May be treated as a certificate issued by.Man-in-the-middle attacks (man-in-the-middle attack) By HTTPS The contents of the communication may be viewed or altered. OpenSSL is prone to a security-bypass vulnerability because the application fails to properly verify SSL, TLS, and DTLS certificates. Successfully exploiting this issue allows attackers to perform man-in-the-middle attacks and bypass certain security restrictions. This may aid in further attacks. OpenSSL versions 1.0.2c, 1.0.2b, 1.0.1n, and 1.0.1o are vulnerable. It supports a variety of encryption algorithms, including symmetric ciphers, hash algorithms, security hashing algorithm, etc. There is a security vulnerability in the TLS protocol 1.2 and earlier versions. The vulnerability comes from that when the server enables the DHE_EXPORT cipher suite, the program does not pass the DHE_EXPORT option correctly. Attackers can exploit this vulnerability to implement man-in-the-middle attacks and cipher-downgrade attacks by rewriting ClientHello (use DHE_EXPORT instead of DHE) and then rewrite ServerHello (use DHE instead of DHE_EXPORT). Here are the details from the Slackware 14.1 ChangeLog: +--------------------------+ patches/packages/openssl-1.0.1p-i486-1_slack14.1.txz: Upgraded. This issue will impact any application that verifies certificates including SSL/TLS/DTLS clients and SSL/TLS/DTLS servers using client authentication. This issue was reported to OpenSSL on 24th June 2015 by Adam Langley/David Benjamin (Google/BoringSSL). The fix was developed by the BoringSSL project. For more information, see: https://openssl.org/news/secadv_20150709.txt https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1793 (* Security fix *) patches/packages/openssl-solibs-1.0.1p-i486-1_slack14.1.txz: Upgraded. +--------------------------+ Where to find the new packages: +-----------------------------+ Thanks to the friendly folks at the OSU Open Source Lab (http://osuosl.org) for donating FTP and rsync hosting to the Slackware project! :-) Also see the "Get Slack" section on http://slackware.com for additional mirror sites near you. Updated packages for Slackware 14.0: ftp://ftp.slackware.com/pub/slackware/slackware-14.0/patches/packages/openssl-1.0.1p-i486-1_slack14.0.txz ftp://ftp.slackware.com/pub/slackware/slackware-14.0/patches/packages/openssl-solibs-1.0.1p-i486-1_slack14.0.txz Updated packages for Slackware x86_64 14.0: ftp://ftp.slackware.com/pub/slackware/slackware64-14.0/patches/packages/openssl-1.0.1p-x86_64-1_slack14.0.txz ftp://ftp.slackware.com/pub/slackware/slackware64-14.0/patches/packages/openssl-solibs-1.0.1p-x86_64-1_slack14.0.txz Updated packages for Slackware 14.1: ftp://ftp.slackware.com/pub/slackware/slackware-14.1/patches/packages/openssl-1.0.1p-i486-1_slack14.1.txz ftp://ftp.slackware.com/pub/slackware/slackware-14.1/patches/packages/openssl-solibs-1.0.1p-i486-1_slack14.1.txz Updated packages for Slackware x86_64 14.1: ftp://ftp.slackware.com/pub/slackware/slackware64-14.1/patches/packages/openssl-1.0.1p-x86_64-1_slack14.1.txz ftp://ftp.slackware.com/pub/slackware/slackware64-14.1/patches/packages/openssl-solibs-1.0.1p-x86_64-1_slack14.1.txz Updated packages for Slackware -current: ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/a/openssl-solibs-1.0.1p-i586-1.txz ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/openssl-1.0.1p-i586-1.txz Updated packages for Slackware x86_64 -current: ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/a/openssl-solibs-1.0.1p-x86_64-1.txz ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/n/openssl-1.0.1p-x86_64-1.txz MD5 signatures: +-------------+ Slackware 14.0 packages: a77913257d9e4d9f0b143e7c2bf829d3 openssl-1.0.1p-i486-1_slack14.0.txz 9d778b2df5c01be05c5133d3c420a216 openssl-solibs-1.0.1p-i486-1_slack14.0.txz Slackware x86_64 14.0 packages: 1423b29d8621434363fcd92480544d19 openssl-1.0.1p-x86_64-1_slack14.0.txz e510fd37b65ab9b585f505c3b8925755 openssl-solibs-1.0.1p-x86_64-1_slack14.0.txz Slackware 14.1 packages: 483c52a8f52243486db12c6a85e59ad3 openssl-1.0.1p-i486-1_slack14.1.txz a2704397b9eabd509336dedfe1b51ff3 openssl-solibs-1.0.1p-i486-1_slack14.1.txz Slackware x86_64 14.1 packages: 2a4b0b930a7513a24a719f9996c3cd5d openssl-1.0.1p-x86_64-1_slack14.1.txz 3414a0e114c93ac4352938f182df5180 openssl-solibs-1.0.1p-x86_64-1_slack14.1.txz Slackware -current packages: a867679d8f4a29a7b206930840d8c92f a/openssl-solibs-1.0.1p-i586-1.txz 1e28db3e77d547ef338c7116cf8d415f n/openssl-1.0.1p-i586-1.txz Slackware x86_64 -current packages: f53454dd43f9d3206db58b9cd8b4e53e a/openssl-solibs-1.0.1p-x86_64-1.txz 4433713b6723a0715dc60d1254ee2ca3 n/openssl-1.0.1p-x86_64-1.txz Installation instructions: +------------------------+ Upgrade the packages as root: # upgradepkg openssl-1.0.1p-i486-1_slack14.1.txz openssl-solibs-1.0.1p-i486-1_slack14.1.txz +-----+ Slackware Linux Security Team http://slackware.com/gpg-key security@slackware.com +------------------------------------------------------------------------+ | To leave the slackware-security mailing list: | +------------------------------------------------------------------------+ | Send an email to majordomo@slackware.com with this text in the body of | | the email message: | | | | unsubscribe slackware-security | | | | You will get a confirmation message back containing instructions to | | complete the process. Please do not reply to this email address. The vulnerabilities could be exploited remotely resulting in Denial of Service (DoS) or unauthorized access. References: - CVE-2014-8176 - Remote Denial of Service (DoS) - CVE-2015-1788 - Remote Denial of Service (DoS) - CVE-2015-1789 - Remote Denial of Service (DoS) - CVE-2015-1790 - Remote Denial of Service (DoS) - CVE-2015-1791 - Remote Denial of Service (DoS) - CVE-2015-1792 - Remote Denial of Service (DoS) - CVE-2015-1793 - Remote Unauthorized Access - PSRT110158, SSRT102264 SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. Please refer to the RESOLUTION below for a list of impacted products. **COMWARE 5 Products** + **A6600 (Comware 5) - Version: R3303P23** * HP Network Products - JC165A HP 6600 RPE-X1 Router Module - JC177A HP 6608 Router - JC177B HP 6608 Router Chassis - JC178A HP 6604 Router Chassis - JC178B HP 6604 Router Chassis - JC496A HP 6616 Router Chassis - JC566A HP 6600 RSE-X1 Router Main Processing Unit - JG780A HP 6600 RSE-X1 TAA-compliant Main Processing Unit - JG781A HP 6600 RPE-X1 TAA-compliant Main Processing Unit + **HSR6602 (Comware 5) - Version: R3303P23** * HP Network Products - JC176A HP 6602 Router Chassis - JG353A HP HSR6602-G Router - JG354A HP HSR6602-XG Router - JG355A HP 6600 MCP-X1 Router Main Processing Unit - JG356A HP 6600 MCP-X2 Router Main Processing Unit - JG776A HP HSR6602-G TAA-compliant Router - JG777A HP HSR6602-XG TAA-compliant Router - JG778A HP 6600 MCP-X2 Router TAA-compliant Main Processing Unit + **HSR6800 (Comware 5) - Version: R3303P23** * HP Network Products - JG361A HP HSR6802 Router Chassis - JG361B HP HSR6802 Router Chassis - JG362A HP HSR6804 Router Chassis - JG362B HP HSR6804 Router Chassis - JG363A HP HSR6808 Router Chassis - JG363B HP HSR6808 Router Chassis - JG364A HP HSR6800 RSE-X2 Router Main Processing Unit - JG779A HP HSR6800 RSE-X2 Router TAA-compliant Main Processing Unit + **MSR20 (Comware 5) - Version: R2514P10** * HP Network Products - JD432A HP A-MSR20-21 Router - JD662A HP MSR20-20 Router - JD663A HP A-MSR20-21 Router - JD663B HP MSR20-21 Router - JD664A HP MSR20-40 Router - JF228A HP MSR20-40 Router - JF283A HP MSR20-20 Router + **MSR20-1X (Comware 5) - Version: R2514P10** * HP Network Products - JD431A HP MSR20-10 Router - JD667A HP MSR20-15 IW Multi-Service Router - JD668A HP MSR20-13 Multi-Service Router - JD669A HP MSR20-13 W Multi-Service Router - JD670A HP MSR20-15 A Multi-Service Router - JD671A HP MSR20-15 AW Multi-Service Router - JD672A HP MSR20-15 I Multi-Service Router - JD673A HP MSR20-11 Multi-Service Router - JD674A HP MSR20-12 Multi-Service Router - JD675A HP MSR20-12 W Multi-Service Router - JD676A HP MSR20-12 T1 Multi-Service Router - JF236A HP MSR20-15-I Router - JF237A HP MSR20-15-A Router - JF238A HP MSR20-15-I-W Router - JF239A HP MSR20-11 Router - JF240A HP MSR20-13 Router - JF241A HP MSR20-12 Router - JF806A HP MSR20-12-T Router - JF807A HP MSR20-12-W Router - JF808A HP MSR20-13-W Router - JF809A HP MSR20-15-A-W Router - JF817A HP MSR20-15 Router - JG209A HP MSR20-12-T-W Router (NA) - JG210A HP MSR20-13-W Router (NA) + **MSR 30 (Comware 5) - Version: R2514P10** * HP Network Products - JD654A HP MSR30-60 POE Multi-Service Router - JD657A HP MSR30-40 Multi-Service Router - JD658A HP MSR30-60 Multi-Service Router - JD660A HP MSR30-20 POE Multi-Service Router - JD661A HP MSR30-40 POE Multi-Service Router - JD666A HP MSR30-20 Multi-Service Router - JF229A HP MSR30-40 Router - JF230A HP MSR30-60 Router - JF232A HP RTMSR3040-AC-OVSAS-H3 - JF235A HP MSR30-20 DC Router - JF284A HP MSR30-20 Router - JF287A HP MSR30-40 DC Router - JF801A HP MSR30-60 DC Router - JF802A HP MSR30-20 PoE Router - JF803A HP MSR30-40 PoE Router - JF804A HP MSR30-60 PoE Router - JG728A HP MSR30-20 TAA-compliant DC Router - JG729A HP MSR30-20 TAA-compliant Router + **MSR 30-16 (Comware 5) - Version: R2514P10** * HP Network Products - JD659A HP MSR30-16 POE Multi-Service Router - JD665A HP MSR30-16 Multi-Service Router - JF233A HP MSR30-16 Router - JF234A HP MSR30-16 PoE Router + **MSR 30-1X (Comware 5) - Version: R2514P10** * HP Network Products - JF800A HP MSR30-11 Router - JF816A HP MSR30-10 2 FE /2 SIC /1 MIM MS Rtr - JG182A HP MSR30-11E Router - JG183A HP MSR30-11F Router - JG184A HP MSR30-10 DC Router + **MSR 50 (Comware 5) - Version: R2514P10** * HP Network Products - JD433A HP MSR50-40 Router - JD653A HP MSR50 Processor Module - JD655A HP MSR50-40 Multi-Service Router - JD656A HP MSR50-60 Multi-Service Router - JF231A HP MSR50-60 Router - JF285A HP MSR50-40 DC Router - JF640A HP MSR50-60 Rtr Chassis w DC PwrSupply + **MSR 50-G2 (Comware 5) - Version: R2514P10** * HP Network Products - JD429A HP MSR50 G2 Processor Module - JD429B HP MSR50 G2 Processor Module + **MSR 9XX (Comware 5) - Version: R2514P10** * HP Network Products - JF812A HP MSR900 Router - JF813A HP MSR920 Router - JF814A HP MSR900-W Router - JF815A HP MSR920 2FEWAN/8FELAN/.11 b/g Rtr - JG207A HP MSR900-W Router (NA) - JG208A HP MSR920-W Router (NA) + **MSR 93X (Comware 5) - Version: R2514P10** * HP Network Products - JG511A HP MSR930 Router - JG511B HP MSR930 Router - JG512A HP MSR930 Wireless Router - JG513A HP MSR930 3G Router - JG513B HP MSR930 3G Router - JG514A HP MSR931 Router - JG514B HP MSR931 Router - JG515A HP MSR931 3G Router - JG516A HP MSR933 Router - JG517A HP MSR933 3G Router - JG518A HP MSR935 Router - JG518B HP MSR935 Router - JG519A HP MSR935 Wireless Router - JG520A HP MSR935 3G Router - JG531A HP MSR931 Dual 3G Router - JG531B HP MSR931 Dual 3G Router - JG596A HP MSR930 4G LTE/3G CDMA Router - JG597A HP MSR936 Wireless Router - JG665A HP MSR930 4G LTE/3G WCDMA Global Router - JG704A HP MSR930 4G LTE/3G WCDMA ATT Router - JH009A HP MSR931 Serial (TI) Router - JH010A HP MSR933 G.SHDSL (TI) Router - JH011A HP MSR935 ADSL2+ (TI) Router - JH012A HP MSR930 Wireless 802.11n (NA) Router - JH012B HP MSR930 Wireless 802.11n (NA) Router - JH013A HP MSR935 Wireless 802.11n (NA) Router + **MSR1000 (Comware 5) - Version: R2514P10** * HP Network Products - JG732A HP MSR1003-8 AC Router + **12500 (Comware 5) - Version: R1829P01** * HP Network Products - JC072B HP 12500 Main Processing Unit - JC085A HP A12518 Switch Chassis - JC086A HP A12508 Switch Chassis - JC652A HP 12508 DC Switch Chassis - JC653A HP 12518 DC Switch Chassis - JC654A HP 12504 AC Switch Chassis - JC655A HP 12504 DC Switch Chassis - JC808A HP 12500 TAA Main Processing Unit - JF430A HP A12518 Switch Chassis - JF430B HP 12518 Switch Chassis - JF430C HP 12518 AC Switch Chassis - JF431A HP A12508 Switch Chassis - JF431B HP 12508 Switch Chassis - JF431C HP 12508 AC Switch Chassis + **9500E (Comware 5) - Version: R1829P01** * HP Network Products - JC124A HP A9508 Switch Chassis - JC124B HP 9505 Switch Chassis - JC125A HP A9512 Switch Chassis - JC125B HP 9512 Switch Chassis - JC474A HP A9508-V Switch Chassis - JC474B HP 9508-V Switch Chassis + **10500 (Comware 5) - Version: R1210P01** * HP Network Products - JC611A HP 10508-V Switch Chassis - JC612A HP 10508 Switch Chassis - JC613A HP 10504 Switch Chassis - JC614A HP 10500 Main Processing Unit - JC748A HP 10512 Switch Chassis - JG375A HP 10500 TAA-compliant Main Processing Unit - JG820A HP 10504 TAA-compliant Switch Chassis - JG821A HP 10508 TAA-compliant Switch Chassis - JG822A HP 10508-V TAA-compliant Switch Chassis - JG823A HP 10512 TAA-compliant Switch Chassis + **7500 (Comware 5) - Version: R6710P01** * HP Network Products - JC666A HP 7503-S 144Gbps Fabric/MPU with PoE Upgradable 20-port Gig-T/4-port GbE Combo - JC697A HP 7502 TAA-compliant Main Processing Unit - JC698A HP 7503-S 144Gbps TAA Fabric / MPU with 16 GbE SFP Ports and 8 GbE Combo Ports - JC699A HP 7500 384Gbps TAA-compliant Fabric / MPU with 2 10GbE XFP Ports - JC700A HP 7500 384Gbps TAA-compliant Fabric / Main Processing Unit - JC701A HP 7500 768Gbps TAA-compliant Fabric / Main Processing Unit - JD193A HP 7500 384Gbps Fabric Module with 2 XFP Ports - JD193B HP 7500 384Gbps Fabric Module with 2 XFP Ports - JD194A HP 7500 384Gbps Fabric Module - JD194B HP 7500 384Gbps Fabric Module - JD195A HP 7500 384Gbps Advanced Fabric Module - JD196A HP 7502 Fabric Module - JD220A HP 7500 768Gbps Fabric Module - JD224A HP 7500 384Gbps Fabric Module with 12 SFP Ports - JD238A HP 7510 Switch Chassis - JD238B HP 7510 Switch Chassis - JD239A HP 7506 Switch Chassis - JD239B HP 7506 Switch Chassis - JD240A HP 7503 Switch Chassis - JD240B HP 7503 Switch Chassis - JD241A HP 7506-V Switch Chassis - JD241B HP 7506-V Switch Chassis - JD242A HP 7502 Switch Chassis - JD242B HP 7502 Switch Chassis - JD243A HP 7503-S Switch Chassis with 1 Fabric Slot - JD243B HP 7503-S Switch Chassis with 1 Fabric Slot - JE164A HP E7902 Switch Chassis - JE165A HP E7903 Switch Chassis - JE166A HP E7903 1 Fabric Slot Switch Chassis - JE167A HP E7906 Switch Chassis - JE168A HP E7906 Vertical Switch Chassis - JE169A HP E7910 Switch Chassis + **5830 (Comware 5) - Version: R1118P13** * HP Network Products - JC691A HP 5830AF-48G Switch with 1 Interface Slot - JC694A HP 5830AF-96G Switch - JG316A HP 5830AF-48G TAA-compliant Switch w/1 Interface Slot - JG374A HP 5830AF-96G TAA-compliant Switch + **5800 (Comware 5) - Version: R1809P11** * HP Network Products - JC099A HP 5800-24G-PoE Switch - JC099B HP 5800-24G-PoE+ Switch - JC100A HP 5800-24G Switch - JC100B HP 5800-24G Switch - JC101A HP 5800-48G Switch with 2 Slots - JC101B HP 5800-48G-PoE+ Switch with 2 Interface Slots - JC103A HP 5800-24G-SFP Switch - JC103B HP 5800-24G-SFP Switch with 1 Interface Slot - JC104A HP 5800-48G-PoE Switch - JC104B HP 5800-48G-PoE+ Switch with 1 Interface Slot - JC105A HP 5800-48G Switch - JC105B HP 5800-48G Switch with 1 Interface Slot - JG254A HP 5800-24G-PoE+ TAA-compliant Switch - JG254B HP 5800-24G-PoE+ TAA-compliant Switch - JG255A HP 5800-24G TAA-compliant Switch - JG255B HP 5800-24G TAA-compliant Switch - JG256A HP 5800-24G-SFP TAA-compliant Switch with 1 Interface Slot - JG256B HP 5800-24G-SFP TAA-compliant Switch with 1 Interface Slot - JG257A HP 5800-48G-PoE+ TAA-compliant Switch with 1 Interface Slot - JG257B HP 5800-48G-PoE+ TAA-compliant Switch with 1 Interface Slot - JG258A HP 5800-48G TAA-compliant Switch with 1 Interface Slot - JG258B HP 5800-48G TAA-compliant Switch with 1 Interface Slot - JG225A HP 5800AF-48G Switch - JG225B HP 5800AF-48G Switch - JG242A HP 5800-48G-PoE+ TAA-compliant Switch with 2 Interface Slots - JG242B HP 5800-48G-PoE+ TAA-compliant Switch with 2 Interface - JG243A HP 5820-24XG-SFP+ TAA-compliant Switch - JG243B HP 5820-24XG-SFP+ TAA-compliant Switch - JG259A HP 5820X-14XG-SFP+ TAA-compliant Switch with 2 Interface Slots & 1 OAA Slot - JG259B HP 5820-14XG-SFP+ TAA-compliant Switch with 2 Interface Slots and 1 OAA Slot - JC106A HP 5820-14XG-SFP+ Switch with 2 Slots - JC106B HP 5820-14XG-SFP+ Switch with 2 Interface Slots & 1 OAA Slot - JG219A HP 5820AF-24XG Switch - JG219B HP 5820AF-24XG Switch - JC102A HP 5820-24XG-SFP+ Switch - JC102B HP 5820-24XG-SFP+ Switch + **5500 HI (Comware 5) - Version: R5501P17** * HP Network Products - JG311A HP 5500-24G-4SFP HI Switch with 2 Interface Slots - JG312A HP 5500-48G-4SFP HI Switch with 2 Interface Slots - JG541A HP 5500-24G-PoE+-4SFP HI Switch with 2 Interface Slots - JG542A HP 5500-48G-PoE+-4SFP HI Switch with 2 Interface Slots - JG543A HP 5500-24G-SFP HI Switch with 2 Interface Slots - JG679A HP 5500-24G-PoE+-4SFP HI TAA-compliant Switch with 2 Interface Slots - JG680A HP 5500-48G-PoE+-4SFP HI TAA-compliant Switch with 2 Interface Slots - JG681A HP 5500-24G-SFP HI TAA-compliant Switch with 2 Interface Slots + **5500 EI (Comware 5) - Version: R2221P19** * HP Network Products - JD373A HP 5500-24G DC EI Switch - JD374A HP 5500-24G-SFP EI Switch - JD375A HP 5500-48G EI Switch - JD376A HP 5500-48G-PoE EI Switch - JD377A HP 5500-24G EI Switch - JD378A HP 5500-24G-PoE EI Switch - JD379A HP 5500-24G-SFP DC EI Switch - JG240A HP 5500-48G-PoE+ EI Switch with 2 Interface Slots - JG241A HP 5500-24G-PoE+ EI Switch with 2 Interface Slots - JG249A HP 5500-24G-SFP EI TAA-compliant Switch with 2 Interface - JG250A HP 5500-24G EI TAA-compliant Switch with 2 Interface Slots - JG251A HP 5500-48G EI TAA-compliant Switch with 2 Interface Slots - JG252A HP 5500-24G-PoE+ EI TAA-compliant Switch with 2 Interface Slots - JG253A HP 5500-48G-PoE+ EI TAA-compliant Switch with 2 Interface Slots + **4800G (Comware 5) - Version: R2221P19** * HP Network Products - JD007A HP 4800-24G Switch - JD008A HP 4800-24G-PoE Switch - JD009A HP 4800-24G-SFP Switch - JD010A HP 4800-48G Switch - JD011A HP 4800-48G-PoE Switch + **5500SI (Comware 5) - Version: R2221P20** * HP Network Products - JD369A HP 5500-24G SI Switch - JD370A HP 5500-48G SI Switch - JD371A HP 5500-24G-PoE SI Switch - JD372A HP 5500-48G-PoE SI Switch - JG238A HP 5500-24G-PoE+ SI Switch with 2 Interface Slots - JG239A HP 5500-48G-PoE+ SI Switch with 2 Interface Slots + **4500G (Comware 5) - Version: R2221P20** * HP Network Products - JF428A HP 4510-48G Switch - JF847A HP 4510-24G Switch + **5120 EI (Comware 5) - Version: R2221P20** * HP Network Products - JE066A HP 5120-24G EI Switch - JE067A HP 5120-48G EI Switch - JE068A HP 5120-24G EI Switch with 2 Interface Slots - JE069A HP 5120-48G EI Switch with 2 Interface Slots - JE070A HP 5120-24G-PoE EI 2-slot Switch - JE071A HP 5120-48G-PoE EI 2-slot Switch - JG236A HP 5120-24G-PoE+ EI Switch with 2 Interface Slots - JG237A HP 5120-48G-PoE+ EI Switch with 2 Interface Slots - JG245A HP 5120-24G EI TAA-compliant Switch with 2 Interface Slots - JG246A HP 5120-48G EI TAA-compliant Switch with 2 Interface Slots - JG247A HP 5120-24G-PoE+ EI TAA-compliant Switch with 2 Slots - JG248A HP 5120-48G-PoE+ EI TAA-compliant Switch with 2 Slots + **4210G (Comware 5) - Version: R2221P20** * HP Network Products - JF844A HP 4210-24G Switch - JF845A HP 4210-48G Switch - JF846A HP 4210-24G-PoE Switch + **5120 SI (Comware 5) - Version: R1516** * HP Network Products - JE072A HP 5120-48G SI Switch - JE072B HPE 5120 48G SI Switch - JE073A HP 5120-16G SI Switch - JE073B HPE 5120 16G SI Switch - JE074A HP 5120-24G SI Switch - JE074B HPE 5120 24G SI Switch - JG091A HP 5120-24G-PoE+ (370W) SI Switch - JG091B HPE 5120 24G PoE+ (370W) SI Switch - JG092A HP 5120-24G-PoE+ (170W) SI Switch - JG309B HPE 5120 8G PoE+ (180W) SI Switch - JG310B HPE 5120 8G PoE+ (65W) SI Switch + **3610 (Comware 5) - Version: R5319P14** * HP Network Products - JD335A HP 3610-48 Switch - JD336A HP 3610-24-4G-SFP Switch - JD337A HP 3610-24-2G-2G-SFP Switch - JD338A HP 3610-24-SFP Switch + **3600V2 (Comware 5) - Version: R2110P06** * HP Network Products - JG299A HP 3600-24 v2 EI Switch - JG299B HP 3600-24 v2 EI Switch - JG300A HP 3600-48 v2 EI Switch - JG300B HP 3600-48 v2 EI Switch - JG301A HP 3600-24-PoE+ v2 EI Switch - JG301B HP 3600-24-PoE+ v2 EI Switch - JG301C HP 3600-24-PoE+ v2 EI Switch - JG302A HP 3600-48-PoE+ v2 EI Switch - JG302B HP 3600-48-PoE+ v2 EI Switch - JG302C HP 3600-48-PoE+ v2 EI Switch - JG303A HP 3600-24-SFP v2 EI Switch - JG303B HP 3600-24-SFP v2 EI Switch - JG304A HP 3600-24 v2 SI Switch - JG304B HP 3600-24 v2 SI Switch - JG305A HP 3600-48 v2 SI Switch - JG305B HP 3600-48 v2 SI Switch - JG306A HP 3600-24-PoE+ v2 SI Switch - JG306B HP 3600-24-PoE+ v2 SI Switch - JG306C HP 3600-24-PoE+ v2 SI Switch - JG307A HP 3600-48-PoE+ v2 SI Switch - JG307B HP 3600-48-PoE+ v2 SI Switch - JG307C HP 3600-48-PoE+ v2 SI Switch + **3100V2-48 (Comware 5) - Version: R2110P06** * HP Network Products - JG315A HP 3100-48 v2 Switch - JG315B HP 3100-48 v2 Switch + **HP870 (Comware 5) - Version: R2607P46** * HP Network Products - JG723A HP 870 Unified Wired-WLAN Appliance - JG725A HP 870 Unified Wired-WLAN TAA-compliant Appliance + **HP850 (Comware 5) - Version: R2607P46** * HP Network Products - JG722A HP 850 Unified Wired-WLAN Appliance - JG724A HP 850 Unified Wired-WLAN TAA-compliant Appliance + **HP830 (Comware 5) - Version: R3507P46** * HP Network Products - JG640A HP 830 24-Port PoE+ Unified Wired-WLAN Switch - JG641A HP 830 8-port PoE+ Unified Wired-WLAN Switch - JG646A HP 830 24-Port PoE+ Unified Wired-WLAN TAA-compliant Switch - JG647A HP 830 8-Port PoE+ Unified Wired-WLAN TAA-compliant + **HP6000 (Comware 5) - Version: R2507P46** * HP Network Products - JG639A HP 10500/7500 20G Unified Wired-WLAN Module - JG645A HP 10500/7500 20G Unified Wired-WLAN TAA-compliant Module + **WX5004-EI (Comware 5) - Version: R2507P46** * HP Network Products - JD447B HP WX5002 Access Controller - JD448A HP WX5004 Access Controller - JD448B HP WX5004 Access Controller - JD469A HP WX5004 Access Controller + **SecBlade FW (Comware 5) - Version: R3181P07** * HP Network Products - JC635A HP 12500 VPN Firewall Module - JD245A HP 9500 VPN Firewall Module - JD249A HP 10500/7500 Advanced VPN Firewall Module - JD250A HP 6600 Firewall Processing Router Module - JD251A HP 8800 Firewall Processing Module - JD255A HP 5820 VPN Firewall Module + **F1000-E (Comware 5) - Version: R3181P07** * HP Network Products - JD272A HP F1000-E VPN Firewall Appliance + **F1000-A-EI (Comware 5) - Version: R3734P08** * HP Network Products - JG214A HP F1000-A-EI VPN Firewall Appliance + **F1000-S-EI (Comware 5) - Version: R3734P08** * HP Network Products - JG213A HP F1000-S-EI VPN Firewall Appliance + **F5000-A (Comware 5) - Version: F3210P26** * HP Network Products - JD259A HP A5000-A5 VPN Firewall Chassis - JG215A HP F5000 Firewall Main Processing Unit - JG216A HP F5000 Firewall Standalone Chassis + **U200S and CS (Comware 5) - Version: F5123P33** * HP Network Products - JD273A HP U200-S UTM Appliance + **U200A and M (Comware 5) - Version: F5123P33** * HP Network Products - JD275A HP U200-A UTM Appliance + **F5000-C/S (Comware 5) - Version: R3811P05** * HP Network Products - JG650A HP F5000-C VPN Firewall Appliance - JG370A HP F5000-S VPN Firewall Appliance + **SecBlade III (Comware 5) - Version: R3820P06** * HP Network Products - JG371A HP 12500 20Gbps VPN Firewall Module - JG372A HP 10500/11900/7500 20Gbps VPN Firewall Module + **6600 RSE RU (Comware 5 Low Encryption SW) - Version: R3303P23-RU** * HP Network Products - JC177A HP 6608 Router - JC177B HP 6608 Router Chassis - JC178A HP 6604 Router Chassis - JC178B HP 6604 Router Chassis - JC496A HP 6616 Router Chassis - JC566A HP 6600 RSE-X1 Router Main Processing Unit - JG780A HP 6600 RSE-X1 TAA-compliant Main Processing Unit + **6600 RPE RU (Comware 5 Low Encryption SW) - Version: R3303P23-RU** * HP Network Products - JC165A) HP 6600 RPE-X1 Router Module - JG781A) HP 6600 RPE-X1 TAA-compliant Main Processing Unit + **6602 RU (Comware 5 Low Encryption SW) - Version: R3303P23-RU** * HP Network Products - JC176A) HP 6602 Router Chassis + **HSR6602 RU (Comware 5 Low Encryption SW) - Version: R3303P23-RU** * HP Network Products - JC177A HP 6608 Router - JC177B HP 6608 Router Chassis - JC178A HP 6604 Router Chassis - JC178B HP 6604 Router Chassis - JC496A HP 6616 Router Chassis - JG353A HP HSR6602-G Router - JG354A HP HSR6602-XG Router - JG355A HP 6600 MCP-X1 Router Main Processing Unit - JG356A HP 6600 MCP-X2 Router Main Processing Unit - JG776A HP HSR6602-G TAA-compliant Router - JG777A HP HSR6602-XG TAA-compliant Router - JG778A HP 6600 MCP-X2 Router TAA-compliant Main Processing Unit + **HSR6800 RU (Comware 5 Low Encryption SW) - Version: R3303P23-RU** * HP Network Products - JG361A HP HSR6802 Router Chassis - JG361B HP HSR6802 Router Chassis - JG362A HP HSR6804 Router Chassis - JG362B HP HSR6804 Router Chassis - JG363A HP HSR6808 Router Chassis - JG363B HP HSR6808 Router Chassis - JG364A HP HSR6800 RSE-X2 Router Main Processing Unit - JG779A HP HSR6800 RSE-X2 Router TAA-compliant Main Processing Unit + **SMB1910 (Comware 5) - Version: R1111** * HP Network Products - JG540A HP 1910-48 Switch - JG539A HP 1910-24-PoE+ Switch - JG538A HP 1910-24 Switch - JG537A HP 1910-8 -PoE+ Switch - JG536A HP 1910-8 Switch + **SMB1920 (Comware 5) - Version: R1109** * HP Network Products - JG928A HP 1920-48G-PoE+ (370W) Switch - JG927A HP 1920-48G Switch - JG926A HP 1920-24G-PoE+ (370W) Switch - JG925A HP 1920-24G-PoE+ (180W) Switch - JG924A HP 1920-24G Switch - JG923A HP 1920-16G Switch - JG922A HP 1920-8G-PoE+ (180W) Switch - JG921A HP 1920-8G-PoE+ (65W) Switch - JG920A HP 1920-8G Switch + **V1910 (Comware 5) - Version: R1516** * HP Network Products - JE005A HP 1910-16G Switch - JE006A HP 1910-24G Switch - JE007A HP 1910-24G-PoE (365W) Switch - JE008A HP 1910-24G-PoE(170W) Switch - JE009A HP 1910-48G Switch - JG348A HP 1910-8G Switch - JG349A HP 1910-8G-PoE+ (65W) Switch - JG350A HP 1910-8G-PoE+ (180W) Switch + **SMB 1620 (Comware 5) - Version: R1108** * HP Network Products - JG914A HP 1620-48G Switch - JG913A HP 1620-24G Switch - JG912A HP 1620-8G Switch **COMWARE 7 Products** + **12500 (Comware 7) - Version: R7376** * HP Network Products - JC072B HP 12500 Main Processing Unit - JC085A HP A12518 Switch Chassis - JC086A HP A12508 Switch Chassis - JC652A HP 12508 DC Switch Chassis - JC653A HP 12518 DC Switch Chassis - JC654A HP 12504 AC Switch Chassis - JC655A HP 12504 DC Switch Chassis - JF430A HP A12518 Switch Chassis - JF430B HP 12518 Switch Chassis - JF430C HP 12518 AC Switch Chassis - JF431A HP A12508 Switch Chassis - JF431B HP 12508 Switch Chassis - JF431C HP 12508 AC Switch Chassis - JG497A HP 12500 MPU w/Comware V7 OS - JG782A HP FF 12508E AC Switch Chassis - JG783A HP FF 12508E DC Switch Chassis - JG784A HP FF 12518E AC Switch Chassis - JG785A HP FF 12518E DC Switch Chassis - JG802A HP FF 12500E MPU + **10500 (Comware 7) - Version: R7170** * HP Network Products - JC611A HP 10508-V Switch Chassis - JC612A HP 10508 Switch Chassis - JC613A HP 10504 Switch Chassis - JC748A HP 10512 Switch Chassis - JG608A HP FlexFabric 11908-V Switch Chassis - JG609A HP FlexFabric 11900 Main Processing Unit - JG820A HP 10504 TAA Switch Chassis - JG821A HP 10508 TAA Switch Chassis - JG822A HP 10508-V TAA Switch Chassis - JG823A HP 10512 TAA Switch Chassis - JG496A HP 10500 Type A MPU w/Comware v7 OS - JH198A HP 10500 Type D Main Processing Unit with Comware v7 Operating System - JH206A HP 10500 Type D TAA-compliant with Comware v7 Operating System Main Processing Unit + **12900 (Comware 7) - Version: R1138P01** * HP Network Products - JG619A HP FlexFabric 12910 Switch AC Chassis - JG621A HP FlexFabric 12910 Main Processing Unit - JG632A HP FlexFabric 12916 Switch AC Chassis - JG634A HP FlexFabric 12916 Main Processing Unit - JH104A HP FlexFabric 12900E Main Processing Unit - JH114A HP FlexFabric 12910 TAA-compliant Main Processing Unit - JH263A HP FlexFabric 12904E Main Processing Unit - JH255A HP FlexFabric 12908E Switch Chassis - JH262A HP FlexFabric 12904E Switch Chassis - JH113A HP FlexFabric 12910 TAA-compliant Switch AC Chassis - JH103A HP FlexFabric 12916E Switch Chassis + **5900 (Comware 7) - Version: R2422P01** * HP Network Products - JC772A HP 5900AF-48XG-4QSFP+ Switch - JG296A HP 5920AF-24XG Switch - JG336A HP 5900AF-48XGT-4QSFP+ Switch - JG510A HP 5900AF-48G-4XG-2QSFP+ Switch - JG554A HP 5900AF-48XG-4QSFP+ TAA Switch - JG555A HP 5920AF-24XG TAA Switch - JG838A HP FF 5900CP-48XG-4QSFP+ Switch - JH036A HP FlexFabric 5900CP 48XG 4QSFP+ TAA-Compliant - JH037A HP 5900AF 48XGT 4QSFP+ TAA-Compliant Switch - JH038A HP 5900AF 48G 4XG 2QSFP+ TAA-Compliant + **MSR1000 (Comware 7) - Version: R0305P04** * HP Network Products - JG875A HP MSR1002-4 AC Router - JH060A HP MSR1003-8S AC Router + **MSR2000 (Comware 7) - Version: R0305P04** * HP Network Products - JG411A HP MSR2003 AC Router - JG734A HP MSR2004-24 AC Router - JG735A HP MSR2004-48 Router - JG866A HP MSR2003 TAA-compliant AC Router + **MSR3000 (Comware 7) - Version: R0305P04** * HP Network Products - JG404A HP MSR3064 Router - JG405A HP MSR3044 Router - JG406A HP MSR3024 AC Router - JG407A HP MSR3024 DC Router - JG408A HP MSR3024 PoE Router - JG409A HP MSR3012 AC Router - JG410A HP MSR3012 DC Router - JG861A HP MSR3024 TAA-compliant AC Router + **MSR4000 (Comware 7) - Version: R0305P04** * HP Network Products - JG402A HP MSR4080 Router Chassis - JG403A HP MSR4060 Router Chassis - JG412A HP MSR4000 MPU-100 Main Processing Unit - JG869A HP MSR4000 TAA-compliant MPU-100 Main Processing Unit + **VSR (Comware 7) - Version: E0321P01** * HP Network Products - JG810AAE HP VSR1001 Virtual Services Router 60 Day Evaluation Software - JG811AAE HP VSR1001 Comware 7 Virtual Services Router - JG812AAE HP VSR1004 Comware 7 Virtual Services Router - JG813AAE HP VSR1008 Comware 7 Virtual Services Router + **7900 (Comware 7) - Version: R2138P01** * HP Network Products - JG682A HP FlexFabric 7904 Switch Chassis - JG841A HP FlexFabric 7910 Switch Chassis - JG842A HP FlexFabric 7910 7.2Tbps Fabric / Main Processing Unit - JH001A HP FlexFabric 7910 2.4Tbps Fabric / Main Processing Unit - JH122A HP FlexFabric 7904 TAA-compliant Switch Chassis - JH123A HP FlexFabric 7910 TAA-compliant Switch Chassis - JH124A HP FlexFabric 7910 7.2Tbps TAA-compliant Fabric/Main Processing Unit - JH125A HP FlexFabric 7910 2.4Tbps TAA-compliant Fabric/Main Processing Unit + **5130 (Comware 7) - Version: R3109P16** * HP Network Products - JG932A HP 5130-24G-4SFP+ EI Switch - JG933A HP 5130-24G-SFP-4SFP+ EI Switch - JG934A HP 5130-48G-4SFP+ EI Switch - JG936A HP 5130-24G-PoE+-4SFP+ (370W) EI Switch - JG937A HP 5130-48G-PoE+-4SFP+ (370W) EI Switch - JG938A HP 5130-24G-2SFP+-2XGT EI Switch - JG939A HP 5130-48G-2SFP+-2XGT EI Switch - JG940A HP 5130-24G-PoE+-2SFP+-2XGT (370W) EI Switch - JG941A HP 5130-48G-PoE+-2SFP+-2XGT (370W) EI Switch - JG975A HP 5130-24G-4SFP+ EI Brazil Switch - JG976A HP 5130-48G-4SFP+ EI Brazil Switch - JG977A HP 5130-24G-PoE+-4SFP+ (370W) EI Brazil Switch - JG978A HP 5130-48G-PoE+-4SFP+ (370W) EI Brazil Switch + **5700 (Comware 7) - Version: R2422P01** * HP Network Products - JG894A HP FlexFabric 5700-48G-4XG-2QSFP+ Switch - JG895A HP FlexFabric 5700-48G-4XG-2QSFP+ TAA-compliant Switch - JG896A HP FlexFabric 5700-40XG-2QSFP+ Switch - JG897A HP FlexFabric 5700-40XG-2QSFP+ TAA-compliant Switch - JG898A HP FlexFabric 5700-32XGT-8XG-2QSFP+ Switch - JG899A HP FlexFabric 5700-32XGT-8XG-2QSFP+ TAA-compliant Switch + **5930 (Comware 7) - Version: R2422P01** * HP Network Products - JG726A HP FlexFabric 5930 32QSFP+ Switch - JG727A HP FlexFabric 5930 32QSFP+ TAA-compliant Switch - JH178A HP FlexFabric 5930 2QSFP+ 2-slot Switch - JH179A HP FlexFabric 5930 4-slot Switch - JH187A HP FlexFabric 5930 2QSFP+ 2-slot TAA-compliant Switch - JH188A HP FlexFabric 5930 4-slot TAA-compliant Switch + **HSR6600 (Comware 7) - Version: R7103P05** * HP Network Products - JG353A HP HSR6602-G Router - JG354A HP HSR6602-XG Router - JG776A HP HSR6602-G TAA-compliant Router - JG777A HP HSR6602-XG TAA-compliant Router + **HSR6800 (Comware 7) - Version: R7103P05** * HP Network Products - JG361A HP HSR6802 Router Chassis - JG361B HP HSR6802 Router Chassis - JG362A HP HSR6804 Router Chassis - JG362B HP HSR6804 Router Chassis - JG363A HP HSR6808 Router Chassis - JG363B HP HSR6808 Router Chassis - JG364A HP HSR6800 RSE-X2 Router Main Processing Unit - JG779A HP HSR6800 RSE-X2 Router TAA-compliant Main Processing - JH075A HP HSR6800 RSE-X3 Router Main Processing Unit + **1950 (Comware 7) - Version: R3109P16** * HP Network Products - JG960A HP 1950-24G-4XG Switch - JG961A HP 1950-48G-2SFP+-2XGT Switch - JG962A HP 1950-24G-2SFP+-2XGT-PoE+(370W) Switch - JG963A HP 1950-48G-2SFP+-2XGT-PoE+(370W) Switch + **7500 (Comware 7) - Version: R7170** * HP Network Products - JD238C HP 7510 Switch Chassis - JD239C HP 7506 Switch Chassis - JD240C HP 7503 Switch Chassis - JD242C HP 7502 Switch Chassis - JH207A HP 7500 1.2Tbps Fabric with 2-port 40GbE QSFP+ for IRF-Only Main Processing Unit - JH208A HP 7502 Main Processing Unit - JH209A HP 7500 2.4Tbps Fabric with 8-port 1/10GbE SFP+ and 2-port 40GbE QSFP+ Main Processing Unit **iMC Products** + **iMC Plat - Version: iMC Plat 7.1 E0303P16** * HP Network Products - JD125A HP IMC Std S/W Platform w/100-node - JD126A HP IMC Ent S/W Platform w/100-node - JD808A HP IMC Ent Platform w/100-node License - JD814A HP A-IMC Enterprise Edition Software DVD Media - JD815A HP IMC Std Platform w/100-node License - JD816A HP A-IMC Standard Edition Software DVD Media - JF288AAE HP Network Director to Intelligent Management Center Upgrade E-LTU - JF289AAE HP Enterprise Management System to Intelligent Management Center Upgrade E-LTU - JF377A HP IMC Std S/W Platform w/100-node Lic - JF377AAE HP IMC Std S/W Pltfrm w/100-node E-LTU - JF378A HP IMC Ent S/W Platform w/200-node Lic - JF378AAE HP IMC Ent S/W Pltfrm w/200-node E-LTU - JG546AAE HP IMC Basic SW Platform w/50-node E-LTU - JG548AAE HP PCM+ to IMC Bsc Upgr w/50-node E-LTU - JG549AAE HP PCM+ to IMC Std Upgr w/200-node E-LTU - JG550AAE HP PMM to IMC Bsc WLM Upgr w/150AP E-LTU - JG590AAE HP IMC Bsc WLAN Mgr SW Pltfm 50 AP E-LTU - JG659AAE HP IMC Smart Connect VAE E-LTU - JG660AAE HP IMC Smart Connect w/WLM VAE E-LTU - JG747AAE HP IMC Std SW Plat w/ 50 Nodes E-LTU - JG748AAE HP IMC Ent SW Plat w/ 50 Nodes E-LTU - JG766AAE HP IMC SmCnct Vrtl Applnc SW E-LTU - JG767AAE HP IMC SmCnct WSM Vrtl Applnc SW E-LTU - JG768AAE HP PCM+ to IMC Std Upg w/ 200-node E-LTU + **iMC iNode - Version: iNode PC 7.1 E0313, or, iNode PC 7.2 (E0401)** * HP Network Products - JD144A HP A-IMC User Access Management Software Module with 200-user License - JD147A HP IMC Endpoint Admission Defense Software Module with 200-user License - JD435A HP A-IMC Endpoint Admission Defense Client Software - JF388A HP IMC User Authentication Management Software Module with 200-user License - JF388AAE HP IMC User Authentication Management Software Module with 200-user E-LTU - JF391A HP IMC Endpoint Admission Defense Software Module with 200-user License - JF391AAE HP IMC Endpoint Admission Defense Software Module with 200-user E-LTU - JG752AAE HP IMC User Access Manager Software Module with 50-user E-LTU - JG754AAE) HP IMC Endpoint Admission Defense Software Module with 50-user E-LTU + **iMC TAM_UAM - Version: iMC UAM_TAM 7.1 (E0307)** * HP Network Products - JF388A HP IMC UAM S/W MODULE W/200-USER LICENSE - JF388AAE HP IMC UAM S/W MODULE W/200-USER E-LTU - JG752AAE HP IMC UAM SW MOD W/ 50-USER E-LTU - JG483A HP IMC TAM S/W MODULE W/100-NODE LIC - JG483AAE HP IMC TAM S/W MODULE W/100-NODE E-LTU - JG764AAE HP IMC TAM SW MOD W/ 50-NODE E-LTU + **iMC NSM - Version: iMC WSM 7.1 E0303P10** * HP Network Products - JD456A HP IMC WSM Software Module with 50-Access Point License - JF414A HP IMC Wireless Service Manager Software Module with 50-Access Point License - JF414AAE HP IMC Wireless Service Manager Software Module with 50-Access Point E-LTU - JG551AAE HP PCM+ Mobility Manager to IMC Wireless Service Manager Module Upgrade with 250 Access Point E-LTU - JG758AAE HP IMC WSM/RTLS w/ 50-node E-LTU - JG769AAE HP PCM Mobility Manager to IMC Wireless Service Manager Upg with 250-node E-LTU **VCX Products** + **VCX - Version: 9.8.18** * HP Network Products - J9672A HP VCX V7205 Platform w/ DL360 G7 Srvr - J9668A HP VCX IPC V7005 Pltfrm w/ DL120 G6 Srvr - JC517A HP VCX V7205 Platform w/DL 360 G6 Server - JE355A HP VCX V6000 Branch Platform 9.0 - JC516A HP VCX V7005 Platform w/DL 120 G6 Server - JC518A HP VCX Connect 200 Primry 120 G6 Server - J9669A HP VCX IPC V7310 Pltfrm w/ DL360 G7 Srvr - JE341A HP VCX Connect 100 Secondary - JE252A HP VCX Connect Primary MIM Module - JE253A HP VCX Connect Secondary MIM Module - JE254A HP VCX Branch MIM Module - JE355A HP VCX V6000 Branch Platform 9.0 - JD028A HP MS30-40 RTR w/VCX + T1/FXO/FXS/Mod - JD023A HP MSR30-40 Router with VCX MIM Module - JD024A HP MSR30-16 RTR w/VCX Ent Br Com MIM - JD025A HP MSR30-16 RTR w/VCX + 4FXO/2FXS Mod - JD026A HP MSR30-16 RTR w/VCX + 8FXO/4FXS Mod - JD027A HP MSR30-16 RTR w/VCX + 8BRI/4FXS Mod - JD029A HP MSR30-16 RTR w/VCX + E1/4BRI/4FXS - JE340A HP VCX Connect 100 Pri Server 9.0 - JE342A HP VCX Connect 100 Sec Server 9.0 HISTORY Version:1 (rev.1) - 5 July 2016 Initial release Third Party Security Patches: Third party security patches that are to be installed on systems running Hewlett Packard Enterprise (HPE) software products should be applied in accordance with the customer's patch management policy. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 201507-15 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: OpenSSL: Alternate chains certificate forgery Date: July 10, 2015 Bugs: #554172 ID: 201507-15 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== Certain checks on untrusted certificates can be bypassed. Resolution ========== All OpenSSL users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=dev-libs/openssl-1.0.1p" References ========== [ 1 ] CVE-2015-1793 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1793 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/201507-15 Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org. License ======= Copyright 2015 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5 . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c04822825 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04822825 Version: 1 HPSBGN03424 rev.1 - HP Cloud Service Automation, Remote Authentication Bypass NOTICE: The information in this Security Bulletin should be acted upon as soon as possible. Release Date: 2015-09-30 Last Updated: 2015-09-30 Potential Security Impact: Remote authentication bypass Source: Hewlett-Packard Company, HP Software Security Response Team VULNERABILITY SUMMARY A potential security vulnerability was been identified in HP Cloud Service Automation version v4.5. The vulnerability could be exploited to allow remote authentication bypass. Note: HP C.A. contains a version of Node.js, that when used in FIPS mode is affected by Alternative Chains Certificate Forgery Vulnerability (CVE-2015-1793). References: CVE-2015-1793 SSRT102266 SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. Cloud Service Automation (CSA) v4.5 BACKGROUND CVSS 2.0 Base Metrics =========================================================== Reference Base Vector Base Score CVE-2015-1793 (AV:N/AC:L/Au:N/C:P/I:P/A:N) 6.4 =========================================================== Information on CVSS is documented in HP Customer Notice: HPSN-2008-002 RESOLUTION HP has provided HP Cloud Service Automation (HP CSA) v4.5 patch 1. The patch is available from HP Software Support Online portal (HP SSO). Note: This patch includes Node.js for FIPS mode that includes the newer version of OpenSSL (1.0.2d) which addresses the vulnerability. The patch can be downloaded from HP Software Support Online: https://software support.hp.com/group/softwaresupport/search-result/-/facetsearch/document/KM0 1807662?lang=en&cc=us&hpappid=113963_OSP_PRO_HPE Bulletin Applicability: This security bulletin applies to each OpenSSL component that is embedded within the HP products listed in the security bulletin. The bulletin does not apply to any other 3rd party application (e.g. operating system, web server, or application server) that may be required to be installed by the customer according instructions in the product install guide. HISTORY Version:1 (rev.1) - 30 September 2015 Initial release Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy. Support: For issues about implementing the recommendations of this Security Bulletin, contact normal HP Services support channel. For other issues about the content of this Security Bulletin, send e-mail to security-alert@hp.com. Report: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com Subscribe: To initiate a subscription to receive future HP Security Bulletin alerts via Email: http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins Security Bulletin Archive: A list of recently released Security Bulletins is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/ Software Product Category: The Software Product Category is represented in the title by the two characters following HPSB. 3C = 3COM 3P = 3rd Party Software GN = HP General Software HF = HP Hardware and Firmware MP = MPE/iX MU = Multi-Platform Software NS = NonStop Servers OV = OpenVMS PI = Printing and Imaging PV = ProCurve ST = Storage Software TU = Tru64 UNIX UX = HP-UX Copyright 2015 Hewlett-Packard Development Company, L.P. Hewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits; damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.13 (GNU/Linux) iEYEARECAAYFAlYMXNcACgkQ4B86/C0qfVmdxQCfTA4rC74W2BFszJ89DX6Kl3H2 KZQAoJzyRZm89nMZNKa+bfTvDCWAcjsg =XY84 -----END PGP SIGNATURE----- . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-15:12.openssl Security Advisory The FreeBSD Project Topic: OpenSSL alternate chains certificate forgery vulnerability Category: contrib Module: openssl Announced: 2015-07-09 Credits: Adam Langley/David Benjamin (Google/BoringSSL), OpenSSL Affects: FreeBSD 10.1-STABLE after 2015-06-11 and prior to the correction date. Corrected: 2015-07-09 17:17:22 UTC (stable/10, 10.2-PRERELEASE, 10.2-BETA1) CVE Name: CVE-2015-1793 For general information regarding FreeBSD Security Advisories, including descriptions of the fields above, security branches, and the following sections, please visit <URL:https://security.FreeBSD.org/>. I. Background FreeBSD includes software from the OpenSSL Project. The OpenSSL Project is a collaborative effort to develop a robust, commercial-grade, full-featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols as well as a full-strength general purpose cryptography library. II. An error in the implementation of this logic could erroneously mark certificate as trusted when they should not. III. IV. Workaround No workaround is available. NOTE WELL: This issue does not affect earlier FreeBSD releases, including the supported 8.4, 9.3 and 10.1-RELEASE because the alternative certificate chain feature was not introduced in these releases. Only 10.1-STABLE after 2015-06-11 and prior to the correction date is affected. V. Solution Upgrade your vulnerable system to the latest supported FreeBSD stable/10 branch dated after the correction date. Recompile the operating system using buildworld and installworld as described in <URL:https://www.FreeBSD.org/handbook/makeworld.html>. Restart all deamons using the library, or reboot the system. VI. Correction details The following list contains the correction revision numbers for each affected branch. Branch/path Revision - ------------------------------------------------------------------------- stable/10/ r285330 - ------------------------------------------------------------------------- To see which files were modified by a particular revision, run the following command, replacing NNNNNN with the revision number, on a machine with Subversion installed: # svn diff -cNNNNNN --summarize svn://svn.freebsd.org/base Or visit the following URL, replacing NNNNNN with the revision number: <URL:https://svnweb.freebsd.org/base?view=revision&revision=NNNNNN> VII

Trust: 2.61

sources: NVD: CVE-2015-1793 // JVNDB: JVNDB-2015-003487 // BID: 75652 // VULHUB: VHN-79754 // VULHUB: VHN-81961 // VULMON: CVE-2015-1793 // PACKETSTORM: 132634 // PACKETSTORM: 137772 // PACKETSTORM: 132642 // PACKETSTORM: 133793 // PACKETSTORM: 132646

AFFECTED PRODUCTS

vendor:oraclemodel:jd edwards enterpriseone toolsscope:eqversion:9.2

Trust: 2.1

vendor:oraclemodel:jd edwards enterpriseone toolsscope:eqversion:9.1

Trust: 2.1

vendor:opensslmodel:opensslscope:eqversion:1.0.1n

Trust: 1.8

vendor:opensslmodel:opensslscope:eqversion:1.0.1o

Trust: 1.8

vendor:opensslmodel:opensslscope:eqversion:1.0.2b

Trust: 1.8

vendor:opensslmodel:opensslscope:eqversion:1.0.2c

Trust: 1.8

vendor:oraclemodel:integrated lights out managerscope:eqversion:3.2

Trust: 1.1

vendor:oraclemodel:integrated lights out managerscope:eqversion:3.0

Trust: 1.1

vendor:oraclemodel:integrated lights out managerscope:eqversion:3.1

Trust: 1.1

vendor:oraclemodel:supply chain products suitescope:eqversion:6.1.2.2

Trust: 1.0

vendor:oraclemodel:supply chain products suitescope:eqversion:6.1.3.0

Trust: 1.0

vendor:oraclemodel:opus 10g ethernet switch familyscope:lteversion:2.0.0.6

Trust: 1.0

vendor:oraclemodel:supply chain products suitescope:eqversion:6.2.0

Trust: 1.0

vendor:junipermodel:junos 12.1x44-d20scope: - version: -

Trust: 0.9

vendor:oraclemodel:mysqlscope:lteversion:5.6.25

Trust: 0.8

vendor:oraclemodel:mysqlscope:lteversion:enterprise monitor 2.3.20

Trust: 0.8

vendor:oraclemodel:mysqlscope:lteversion:enterprise monitor 3.0.22

Trust: 0.8

vendor:oraclemodel:enterprise managerscope:eqversion:base platform 11.1.0.1

Trust: 0.8

vendor:oraclemodel:enterprise managerscope:eqversion:base platform 11.2.0.4

Trust: 0.8

vendor:oraclemodel:enterprise managerscope:eqversion:base platform 12.1.0.4

Trust: 0.8

vendor:oraclemodel:enterprise managerscope:eqversion:base platform 12.1.0.5

Trust: 0.8

vendor:oraclemodel:enterprise managerscope:ltversion:grid control of oss support tools 8.8.15.7.15

Trust: 0.8

vendor:oraclemodel:enterprise managerscope:ltversion:ops center 12.1.4

Trust: 0.8

vendor:oraclemodel:enterprise managerscope:eqversion:ops center 12.2.0

Trust: 0.8

vendor:oraclemodel:enterprise managerscope:eqversion:ops center 12.2.1

Trust: 0.8

vendor:oraclemodel:enterprise managerscope:eqversion:ops center 12.3.0

Trust: 0.8

vendor:oraclemodel:ethernet switchscope:ltversion:es2-64 2.0.0.6

Trust: 0.8

vendor:oraclemodel:ethernet switchscope:ltversion:es2-72 2.0.0.6

Trust: 0.8

vendor:oraclemodel:fusion middlewarescope:eqversion:of oracle business intelligence enterprise edition 11.1.1.7.0

Trust: 0.8

vendor:oraclemodel:fusion middlewarescope:eqversion:of oracle business intelligence enterprise edition 11.1.1.9.0

Trust: 0.8

vendor:oraclemodel:fusion middlewarescope:eqversion:of oracle endeca server 7.3.0.0

Trust: 0.8

vendor:oraclemodel:fusion middlewarescope:eqversion:of oracle endeca server 7.4.0.0

Trust: 0.8

vendor:oraclemodel:fusion middlewarescope:eqversion:of oracle endeca server 7.5.0.0

Trust: 0.8

vendor:oraclemodel:fusion middlewarescope:eqversion:of oracle endeca server 7.6.0.0

Trust: 0.8

vendor:oraclemodel:fusion middlewarescope:eqversion:of oracle tuxedo 12.1.1.0

Trust: 0.8

vendor:oraclemodel:jd edwards productsscope:eqversion:of jd edwards world security a9.4

Trust: 0.8

vendor:oraclemodel:peoplesoft productsscope:eqversion:of peoplesoft enterprise peopletools 8.53

Trust: 0.8

vendor:oraclemodel:peoplesoft productsscope:eqversion:of peoplesoft enterprise peopletools 8.54

Trust: 0.8

vendor:oraclemodel:supply chain products suitescope:eqversion:of oracle agile engineering data management 6.1.2.2

Trust: 0.8

vendor:oraclemodel:supply chain products suitescope:eqversion:of oracle agile engineering data management 6.1.3.0

Trust: 0.8

vendor:oraclemodel:supply chain products suitescope:eqversion:of oracle agile engineering data management 6.2.0.0

Trust: 0.8

vendor:oraclemodel:supply chain products suitescope:eqversion:of oracle transportation management 6.1

Trust: 0.8

vendor:oraclemodel:supply chain products suitescope:eqversion:of oracle transportation management 6.2

Trust: 0.8

vendor:oraclemodel:switchscope:ltversion:es1-24 1.3.1.13

Trust: 0.8

vendor:oraclemodel:sun blade 6000 ethernet switched nem 24p 10gescope:ltversion:1.2.2.13

Trust: 0.8

vendor:oraclemodel:sun network 10ge switch 72pscope:ltversion:1.2.2.15

Trust: 0.8

vendor:necmodel:capssuitescope:eqversion:v3.0 to v4.0 manager component

Trust: 0.8

vendor:necmodel:enterprisedirectoryserverscope:eqversion:ver8.0

Trust: 0.8

vendor:necmodel:express5800scope:eqversion:/sg series intersecvm/sg v1.2

Trust: 0.8

vendor:necmodel:express5800scope:eqversion:v3.0

Trust: 0.8

vendor:necmodel:express5800scope:eqversion:v3.1

Trust: 0.8

vendor:necmodel:express5800scope:eqversion:v4.0

Trust: 0.8

vendor:necmodel:express5800scope:eqversion:/sg series sg3600lm/lg/lj v6.1

Trust: 0.8

vendor:necmodel:express5800scope:eqversion:v6.2

Trust: 0.8

vendor:necmodel:express5800scope:eqversion:v7.0

Trust: 0.8

vendor:necmodel:express5800scope:eqversion:v7.1

Trust: 0.8

vendor:necmodel:express5800scope:eqversion:v8.0

Trust: 0.8

vendor:necmodel:express5800scope:eqversion:/sg series univerge sg3000lg/lj

Trust: 0.8

vendor:necmodel:istoragescope:eqversion:hs series

Trust: 0.8

vendor:necmodel:istoragescope:eqversion:nv7400/nv5400/nv3400 series

Trust: 0.8

vendor:necmodel:istoragescope:eqversion:nv7500/nv5500/nv3500 series

Trust: 0.8

vendor:necmodel:ix2000 seriesscope: - version: -

Trust: 0.8

vendor:necmodel:ix3000 seriesscope: - version: -

Trust: 0.8

vendor:necmodel:secureware/pki application development kitscope:eqversion:ver3.0

Trust: 0.8

vendor:necmodel:secureware/pki application development kitscope:eqversion:ver3.01

Trust: 0.8

vendor:necmodel:secureware/pki application development kitscope:eqversion:ver3.02

Trust: 0.8

vendor:necmodel:secureware/pki application development kitscope:eqversion:ver3.1

Trust: 0.8

vendor:necmodel:webotxscope:eqversion:enterprise edition v4.2 to v6.5

Trust: 0.8

vendor:necmodel:webotxscope:eqversion:standard edition v4.2 to v6.5

Trust: 0.8

vendor:necmodel:webotxscope:eqversion:standard-j edition v4.1 to v6.5

Trust: 0.8

vendor:necmodel:webotxscope:eqversion:uddi registry v1.1 to v7.1

Trust: 0.8

vendor:necmodel:webotxscope:eqversion:web edition v4.1 to v6.5

Trust: 0.8

vendor:necmodel:webotx application serverscope:eqversion:enterprise edition v7.1

Trust: 0.8

vendor:necmodel:webotx application serverscope:eqversion:enterprise v8.2 to v9.2

Trust: 0.8

vendor:necmodel:webotx application serverscope:eqversion:express v8.2 to v9.2

Trust: 0.8

vendor:necmodel:webotx application serverscope:eqversion:foundation v8.2 to v8.5

Trust: 0.8

vendor:necmodel:webotx application serverscope:eqversion:standard edition v7.1

Trust: 0.8

vendor:necmodel:webotx application serverscope:eqversion:standard v8.2 to v9.2

Trust: 0.8

vendor:necmodel:webotx application serverscope:eqversion:standard-j edition v7.1 to v8.1

Trust: 0.8

vendor:necmodel:webotx application serverscope:eqversion:web edition v7.1 to v8.1

Trust: 0.8

vendor:necmodel:webotx enterprise service busscope:eqversion:v6.4 to v9.2

Trust: 0.8

vendor:necmodel:webotx portalscope:eqversion:v8.2 to v9.1

Trust: 0.8

vendor:necmodel:webotx sip application serverscope:eqversion:standard edition v7.1 to v8.1

Trust: 0.8

vendor:necmodel:websamscope:eqversion:application navigator ver3.1.0.x to ver4.1.0.x

Trust: 0.8

vendor:junipermodel:junos 12.1x46-d25scope: - version: -

Trust: 0.6

vendor:oraclemodel:opus 10g ethernet switch familyscope:eqversion:2.0.0.6

Trust: 0.6

vendor:ibmmodel:sdk for node.jsscope:eqversion:1.2.0.3

Trust: 0.3

vendor:ibmmodel:security network controller 1.0.3361mscope: - version: -

Trust: 0.3

vendor:ciscomodel:registered envelope servicescope:eqversion:0

Trust: 0.3

vendor:oraclemodel:peoplesoft enterprise peopletoolsscope:eqversion:8.53

Trust: 0.3

vendor:hpmodel:hp-ux b.11.22scope: - version: -

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.6

Trust: 0.3

vendor:junipermodel:junos 12.1x44-d33scope: - version: -

Trust: 0.3

vendor:ibmmodel:i v5r4scope:eqversion:6.1

Trust: 0.3

vendor:ciscomodel:ios xe softwarescope:eqversion:0

Trust: 0.3

vendor:ibmmodel:contactoptimizationscope:eqversion:8.2

Trust: 0.3

vendor:junipermodel:junos 12.1x47-d25scope:neversion: -

Trust: 0.3

vendor:junipermodel:junos 14.1r3scope: - version: -

Trust: 0.3

vendor:ibmmodel:contactoptimizationscope:eqversion:9.1.1

Trust: 0.3

vendor:oraclemodel:enterprise manager base platformscope:eqversion:12.1.0.4

Trust: 0.3

vendor:ibmmodel:worklight foundation consumer editionscope:eqversion:6.20

Trust: 0.3

vendor:junipermodel:junos 13.3r5scope: - version: -

Trust: 0.3

vendor:ibmmodel:rational tauscope:eqversion:4.35

Trust: 0.3

vendor:ibmmodel:security network controllerscope:eqversion:1.0.1209

Trust: 0.3

vendor:ibmmodel:campaignscope:eqversion:9.1.0.4

Trust: 0.3

vendor:ibmmodel:i v5r3scope:eqversion:6.1

Trust: 0.3

vendor:ibmmodel:netinsightscope:eqversion:8.6.0

Trust: 0.3

vendor:oraclemodel:agile engineering data managementscope:eqversion:6.1.2.2

Trust: 0.3

vendor:ciscomodel:ios xescope:neversion:3.14

Trust: 0.3

vendor:ibmmodel:rational automation framework ifix5scope:neversion:3.0.1.3

Trust: 0.3

vendor:junipermodel:junos 12.1x44-d35scope: - version: -

Trust: 0.3

vendor:ibmmodel:security network controllerscope:eqversion:1.0.3361

Trust: 0.3

vendor:ibmmodel:rational automation frameworkscope:eqversion:3.0.1.1

Trust: 0.3

vendor:hpmodel:hp-ux b.11.04scope: - version: -

Trust: 0.3

vendor:ibmmodel:security proventia network active bypassscope:eqversion:2.13-34

Trust: 0.3

vendor:junipermodel:junos 12.1x44-d51scope: - version: -

Trust: 0.3

vendor:ciscomodel:prime license managerscope:eqversion:0

Trust: 0.3

vendor:ibmmodel:worklight foundation enterprise editionscope:eqversion:6.20

Trust: 0.3

vendor:ciscomodel:agent for openflowscope:eqversion:0

Trust: 0.3

vendor:junipermodel:junos 12.1x44-d34scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 13.3r6scope: - version: -

Trust: 0.3

vendor:ibmmodel:rational automation frameworkscope:eqversion:3.0.1.3

Trust: 0.3

vendor:ibmmodel:campaignscope:eqversion:8.1

Trust: 0.3

vendor:hpmodel:imc productsscope:eqversion:0

Trust: 0.3

vendor:ciscomodel:digital media players series 5.4 rbscope:neversion:4400

Trust: 0.3

vendor:junipermodel:junos 12.1x47-d10scope: - version: -

Trust: 0.3

vendor:ciscomodel:digital media players seriesscope:eqversion:44000

Trust: 0.3

vendor:ibmmodel:security proventia network active bypassscope:eqversion:2.16-37

Trust: 0.3

vendor:ciscomodel:digital media players 5.3 rbscope:neversion: -

Trust: 0.3

vendor:junipermodel:junos 12.1x44-d50scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 14.1r4scope: - version: -

Trust: 0.3

vendor:ibmmodel:campaignscope:eqversion:9.11

Trust: 0.3

vendor:ibmmodel:rational application developer for webspherescope:eqversion:9.1.1

Trust: 0.3

vendor:oraclemodel:enterprise manager ops centerscope:eqversion:11.1

Trust: 0.3

vendor:junipermodel:junos 12.3x48-d15scope: - version: -

Trust: 0.3

vendor:ibmmodel:rational application developer for webspherescope:eqversion:9.1

Trust: 0.3

vendor:ibmmodel:security proventia network active bypassscope:eqversion:3.4-23

Trust: 0.3

vendor:ciscomodel:prime collaboration provisioningscope:neversion:10.0

Trust: 0.3

vendor:ibmmodel:security proventia network active bypassscope:eqversion:3.25-57

Trust: 0.3

vendor:ibmmodel:security proventia network active bypassscope:eqversion:2.18-43

Trust: 0.3

vendor:ciscomodel:telepresence conductor xc4.0scope:neversion: -

Trust: 0.3

vendor:ciscomodel:ios xescope:neversion:3.16

Trust: 0.3

vendor:ibmmodel:security appscan enterprisescope:eqversion:9.0.1

Trust: 0.3

vendor:oraclemodel:ethernet switch es2-64scope:neversion:2.0.0.6

Trust: 0.3

vendor:ciscomodel:ios xescope:neversion:3.15

Trust: 0.3

vendor:oraclemodel:enterprise manager ops centerscope:eqversion:11.1.3

Trust: 0.3

vendor:ibmmodel:security network controllerscope:eqversion:1.0.913

Trust: 0.3

vendor:junipermodel:junos 12.3x48-d20scope:neversion: -

Trust: 0.3

vendor:junipermodel:junos 12.3r2scope: - version: -

Trust: 0.3

vendor:ibmmodel:aspera enterprise serverscope:eqversion:3.5.5

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.6.20

Trust: 0.3

vendor:junipermodel:junos d30scope:eqversion:12.1x44

Trust: 0.3

vendor:ciscomodel:local collector appliancescope:eqversion:0

Trust: 0.3

vendor:ibmmodel:mobilefirst platform foundationscope:eqversion:6.3.0.0

Trust: 0.3

vendor:oraclemodel:enterprise manager ops centerscope:neversion:12.2

Trust: 0.3

vendor:ibmmodel:security proventia network active bypassscope:eqversion:2.11-28

Trust: 0.3

vendor:ibmmodel:security appscan enterprisescope:eqversion:9.0.2

Trust: 0.3

vendor:oraclemodel:ethernet switch es2-72scope:neversion:2.0.0.6

Trust: 0.3

vendor:junipermodel:junos 15.1r2scope:neversion: -

Trust: 0.3

vendor:ibmmodel:rational tauscope:eqversion:4.36

Trust: 0.3

vendor:ibmmodel:security network controller 1.0.3350mscope: - version: -

Trust: 0.3

vendor:junipermodel:junos 14.2r1scope: - version: -

Trust: 0.3

vendor:ibmmodel:campaignscope:eqversion:8.3

Trust: 0.3

vendor:ciscomodel:prime collaboration provisioningscope:neversion:10.5.1

Trust: 0.3

vendor:junipermodel:junos 14.1r2scope: - version: -

Trust: 0.3

vendor:oraclemodel:ethernet switch es2-64scope:eqversion:1.9.1

Trust: 0.3

vendor:oraclemodel:enterprise manager base platformscope:eqversion:12.1.0.5

Trust: 0.3

vendor:ibmmodel:rational tauscope:eqversion:4.34

Trust: 0.3

vendor:ciscomodel:digital media players 5.4 rbscope:neversion: -

Trust: 0.3

vendor:ibmmodel:campaignscope:eqversion:8.5

Trust: 0.3

vendor:ibmmodel:rational automation frameworkscope:eqversion:3.0.1

Trust: 0.3

vendor:oraclemodel:jd edwards world security a9.4scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 13.3r4scope: - version: -

Trust: 0.3

vendor:oraclemodel:sun blade ethernet switched nem 24p 10gescope:eqversion:60000

Trust: 0.3

vendor:ciscomodel:packet tracerscope:eqversion:5.2

Trust: 0.3

vendor:ciscomodel:registered envelope servicescope:neversion:4.4.1

Trust: 0.3

vendor:ibmmodel:aspera orchestratorscope:eqversion:2.3

Trust: 0.3

vendor:junipermodel:junos 12.3r6scope: - version: -

Trust: 0.3

vendor:oraclemodel:ethernet switch es2-72scope:eqversion:1.9.1

Trust: 0.3

vendor:oraclemodel:peoplesoft enterprise peopletoolsscope:eqversion:8.54

Trust: 0.3

vendor:ciscomodel:partner supporting servicescope:eqversion:0

Trust: 0.3

vendor:oraclemodel:oss support toolsscope:eqversion:8.9.15.9.8

Trust: 0.3

vendor:junipermodel:junos 12.1x46-d20scope: - version: -

Trust: 0.3

vendor:ibmmodel:worklight consumer editionscope:eqversion:6.1.0.0

Trust: 0.3

vendor:ibmmodel:security proventia network active bypassscope:eqversion:2.15-36

Trust: 0.3

vendor:junipermodel:junos 12.1x44-d55scope:neversion: -

Trust: 0.3

vendor:junipermodel:junos d40scope:eqversion:12.1x44

Trust: 0.3

vendor:junipermodel:junos 12.1x44-d30.4scope: - version: -

Trust: 0.3

vendor:ciscomodel:prime collaboration deploymentscope:eqversion:0

Trust: 0.3

vendor:opensslmodel:project openssl 1.0.1pscope:neversion: -

Trust: 0.3

vendor:junipermodel:junos 15.1r1scope: - version: -

Trust: 0.3

vendor:ibmmodel:security network controller 1.0.3379mscope: - version: -

Trust: 0.3

vendor:ciscomodel:packet tracerscope:eqversion:5.3

Trust: 0.3

vendor:junipermodel:junos d20scope:eqversion:12.1x44

Trust: 0.3

vendor:hpmodel:comware productsscope:eqversion:50

Trust: 0.3

vendor:ciscomodel:prime network services controller 3.4.1cscope:neversion: -

Trust: 0.3

vendor:ibmmodel:rational application developer for webspherescope:eqversion:9.1.0.1

Trust: 0.3

vendor:oraclemodel:endeca serverscope:eqversion:7.6.0

Trust: 0.3

vendor:hpmodel:hp-ux b.11.11.16.09scope: - version: -

Trust: 0.3

vendor:ciscomodel:jabber software development kitscope:eqversion:0

Trust: 0.3

vendor:slackwaremodel:linux x86 64scope:eqversion:14.1

Trust: 0.3

vendor:ibmmodel:rational automation frameworkscope:eqversion:3.0.1.2

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.6.21

Trust: 0.3

vendor:junipermodel:junos 12.1x46-d10scope: - version: -

Trust: 0.3

vendor:ibmmodel:security network controllerscope:eqversion:1.0.1768

Trust: 0.3

vendor:oraclemodel:business intelligence enterprise editionscope:eqversion:11.1.1.9

Trust: 0.3

vendor:ciscomodel:webex messenger service ep1scope:neversion:7.9.9

Trust: 0.3

vendor:ibmmodel:sdk for node.jsscope:eqversion:1.1.0.15

Trust: 0.3

vendor:ibmmodel:contactoptimizationscope:eqversion:9.1

Trust: 0.3

vendor:oraclemodel:switch es1-24scope:eqversion:0

Trust: 0.3

vendor:ibmmodel:security proventia network active bypassscope:eqversion:1.0.2919

Trust: 0.3

vendor:ibmmodel:worklight enterprise editionscope:eqversion:6.1.0.0

Trust: 0.3

vendor:hpmodel:hp-ux b.11.11.13.14scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 14.1r6scope:neversion: -

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.6.15

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.6.25

Trust: 0.3

vendor:hpmodel:comware productsscope:eqversion:70

Trust: 0.3

vendor:ibmmodel:worklight consumer editionscope:eqversion:6.1.0.2

Trust: 0.3

vendor:ciscomodel:ios xescope:neversion:3.13

Trust: 0.3

vendor:freebsdmodel:10.1-stablescope: - version: -

Trust: 0.3

vendor:hpmodel:hp-ux b.11.23.1.007scope: - version: -

Trust: 0.3

vendor:oraclemodel:endeca serverscope:eqversion:7.5.0

Trust: 0.3

vendor:oraclemodel:sun network 10ge switch 72pscope:eqversion:0

Trust: 0.3

vendor:hpmodel:hp-ux b.11.11scope: - version: -

Trust: 0.3

vendor:ibmmodel:contactoptimizationscope:eqversion:8.5

Trust: 0.3

vendor:ciscomodel:prime security managerscope:neversion:9.3.4.2-4

Trust: 0.3

vendor:slackwaremodel:linuxscope:eqversion:14.1

Trust: 0.3

vendor:ibmmodel:security proventia network active bypassscope:eqversion:3.29-9

Trust: 0.3

vendor:oraclemodel:business intelligence enterprise editionscope:eqversion:11.1.1.7

Trust: 0.3

vendor:ibmmodel:contactoptimizationscope:eqversion:8.6

Trust: 0.3

vendor:ciscomodel:industrial routerscope:eqversion:9100

Trust: 0.3

vendor:ibmmodel:contactoptimizationscope:eqversion:9.0

Trust: 0.3

vendor:ibmmodel:security network controller 1.0.3352mscope: - version: -

Trust: 0.3

vendor:ciscomodel:security manager sp1scope:neversion:4.8

Trust: 0.3

vendor:oraclemodel:enterprise manager ops centerscope:neversion:12.1.4

Trust: 0.3

vendor:ibmmodel:rational tau interim fixscope:eqversion:4.3.0.6

Trust: 0.3

vendor:ciscomodel:nexus series switchesscope:eqversion:50000

Trust: 0.3

vendor:ibmmodel:infosphere information serverscope:eqversion:11.3

Trust: 0.3

vendor:ciscomodel:local collector appliancescope:neversion:2.2.10

Trust: 0.3

vendor:ibmmodel:i v5r4scope:eqversion:7.1

Trust: 0.3

vendor:ibmmodel:campaignscope:eqversion:8.0

Trust: 0.3

vendor:opensslmodel:project openssl 1.0.1nscope: - version: -

Trust: 0.3

vendor:opensslmodel:project openssl 1.0.1oscope: - version: -

Trust: 0.3

vendor:junipermodel:junos 13.2x51-d26scope: - version: -

Trust: 0.3

vendor:slackwaremodel:linux x86 64 -currentscope: - version: -

Trust: 0.3

vendor:slackwaremodel:linuxscope:eqversion:14.0

Trust: 0.3

vendor:junipermodel:junos 14.2r2scope: - version: -

Trust: 0.3

vendor:oraclemodel:enterprise manager ops centerscope:neversion:12.3

Trust: 0.3

vendor:ibmmodel:i v5r3scope:eqversion:7.1

Trust: 0.3

vendor:ciscomodel:digital media playersscope:eqversion:0

Trust: 0.3

vendor:junipermodel:junos d10scope:eqversion:12.1x44

Trust: 0.3

vendor:hpmodel:hp-ux b.11.23scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 12.1x46-d35scope: - version: -

Trust: 0.3

vendor:ibmmodel:i v5r4scope:eqversion:7.2

Trust: 0.3

vendor:ibmmodel:campaignscope:eqversion:8.2

Trust: 0.3

vendor:hpmodel:hp-ux b.11.11.02.008scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 12.1x44-d25scope: - version: -

Trust: 0.3

vendor:ibmmodel:netezza host managementscope:eqversion:5.3.2.0

Trust: 0.3

vendor:ciscomodel:prime network services controllerscope:eqversion:0

Trust: 0.3

vendor:ibmmodel:i v5r3scope:eqversion:7.2

Trust: 0.3

vendor:ibmmodel:aspera point to pointscope:eqversion:3.5.5

Trust: 0.3

vendor:ciscomodel:webex messenger servicescope:eqversion:0

Trust: 0.3

vendor:junipermodel:junos 12.1x46-d55scope:neversion: -

Trust: 0.3

vendor:ibmmodel:netinsightscope:neversion:8.6.0.14

Trust: 0.3

vendor:junipermodel:junos 12.1x47-d11scope: - version: -

Trust: 0.3

vendor:junipermodel:junos d25scope:eqversion:12.1x46

Trust: 0.3

vendor:junipermodel:junos 12.3r3scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 12.3r7scope: - version: -

Trust: 0.3

vendor:ciscomodel:security managerscope:eqversion:0

Trust: 0.3

vendor:huaweimodel:esight network v300r003c10spc201scope:neversion: -

Trust: 0.3

vendor:oraclemodel:agile engineering data managementscope:eqversion:6.1.3.0

Trust: 0.3

vendor:ciscomodel:socialminerscope:neversion:11.5.1

Trust: 0.3

vendor:junipermodel:junos 14.2r4scope:neversion: -

Trust: 0.3

vendor:oraclemodel:endeca serverscope:eqversion:7.3.0

Trust: 0.3

vendor:ibmmodel:aspera faspex applicationscope:eqversion:3.9.2

Trust: 0.3

vendor:ciscomodel:asa cx and cisco prime security managerscope:eqversion:0

Trust: 0.3

vendor:junipermodel:junos 13.2x51-d40scope:neversion: -

Trust: 0.3

vendor:junipermodel:junos 13.2x51-d20scope: - version: -

Trust: 0.3

vendor:junipermodel:junos d25scope:eqversion:12.1x44

Trust: 0.3

vendor:junipermodel:junos 12.1x47-d20scope: - version: -

Trust: 0.3

vendor:ciscomodel:socialminerscope:eqversion:0

Trust: 0.3

vendor:ibmmodel:contactoptimizationscope:eqversion:8.1

Trust: 0.3

vendor:ciscomodel:prime collaboration provisioningscope:neversion:10.6

Trust: 0.3

vendor:ibmmodel:security appscan enterprisescope:eqversion:9.0

Trust: 0.3

vendor:ciscomodel:model d9485 davic qpskscope:eqversion:0

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.6.24

Trust: 0.3

vendor:junipermodel:junos d35scope:eqversion:12.1x44

Trust: 0.3

vendor:hpmodel:vcx productsscope:eqversion:0

Trust: 0.3

vendor:oraclemodel:agile engineering data managementscope:eqversion:6.2.0.0

Trust: 0.3

vendor:junipermodel:junos 12.1x47-d45scope:neversion: -

Trust: 0.3

vendor:ciscomodel:nexus series fexscope:eqversion:20000

Trust: 0.3

vendor:oraclemodel:tuxedoscope:eqversion:12.1.1.0

Trust: 0.3

vendor:ibmmodel:security network controller 1.0.3381mscope: - version: -

Trust: 0.3

vendor:ciscomodel:prime collaboration provisioningscope:neversion:9.5

Trust: 0.3

vendor:ibmmodel:netezza host managementscope:eqversion:5.3.3

Trust: 0.3

vendor:junipermodel:junos 12.1x44-d40scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 12.1x44-d30scope: - version: -

Trust: 0.3

vendor:oraclemodel:enterprise manager ops centerscope:neversion:12.2.1

Trust: 0.3

vendor:ibmmodel:rational tau interim fixscope:neversion:4.3.0.6

Trust: 0.3

vendor:ciscomodel:digital media players series 5.4 rbscope:neversion:4300

Trust: 0.3

vendor:junipermodel:junos 12.1x46-d30scope: - version: -

Trust: 0.3

vendor:hpmodel:hp-ux b.11.11.17.02scope: - version: -

Trust: 0.3

vendor:ciscomodel:prime security managerscope:eqversion:0

Trust: 0.3

vendor:ibmmodel:security proventia network active bypassscope:eqversion:3.18-49

Trust: 0.3

vendor:ibmmodel:infosphere information serverscope:eqversion:9.1

Trust: 0.3

vendor:hpmodel:hp-ux b.11.00scope: - version: -

Trust: 0.3

vendor:ciscomodel:virtual security gatewayscope:eqversion:0

Trust: 0.3

vendor:ibmmodel:puredata system for analyticsscope:eqversion:1.0

Trust: 0.3

vendor:hpmodel:hp-ux b.11.31scope: - version: -

Trust: 0.3

vendor:ciscomodel:industrial router 1.2.1rb3scope:neversion:910

Trust: 0.3

vendor:ibmmodel:security proventia network active bypassscope:eqversion:3.13-41

Trust: 0.3

vendor:ibmmodel:aspera consolescope:eqversion:3.0.1

Trust: 0.3

vendor:slackwaremodel:linux x86 64scope:eqversion:14.0

Trust: 0.3

vendor:ibmmodel:rational tauscope:eqversion:4.31

Trust: 0.3

vendor:hpmodel:hp-ux b.11.23.07.04scope: - version: -

Trust: 0.3

vendor:ibmmodel:netezza host managementscope:neversion:5.3.7.0

Trust: 0.3

vendor:ciscomodel:unified attendant console standardscope:eqversion:0

Trust: 0.3

vendor:opensslmodel:project openssl 1.0.2dscope:neversion: -

Trust: 0.3

vendor:ibmmodel:contactoptimizationscope:eqversion:8.3

Trust: 0.3

vendor:junipermodel:junos 12.3x48-d10scope: - version: -

Trust: 0.3

vendor:ibmmodel:security network controllerscope:eqversion:1.0.3381

Trust: 0.3

vendor:ibmmodel:security proventia network active bypassscope:eqversion:3.9-34

Trust: 0.3

vendor:ciscomodel:digital media players seriesscope:eqversion:43000

Trust: 0.3

vendor:ibmmodel:security proventia network active bypass 0343c3cscope: - version: -

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.6.23

Trust: 0.3

vendor:junipermodel:junos 12.1x46-d40scope:neversion: -

Trust: 0.3

vendor:ibmmodel:infosphere information serverscope:eqversion:8.5

Trust: 0.3

vendor:oraclemodel:enterprise manager ops centerscope:eqversion:12.1

Trust: 0.3

vendor:junipermodel:junos 12.3r11scope:neversion: -

Trust: 0.3

vendor:ibmmodel:aspera proxyscope:eqversion:1.2.2

Trust: 0.3

vendor:ciscomodel:prime collaboration provisioningscope:eqversion:0

Trust: 0.3

vendor:ibmmodel:worklight consumer editionscope:eqversion:6.1.0.1

Trust: 0.3

vendor:junipermodel:junos 13.3r7scope:neversion: -

Trust: 0.3

vendor:huaweimodel:esight network v300r003c10spc100scope: - version: -

Trust: 0.3

vendor:junipermodel:junosscope:eqversion:12.1x47

Trust: 0.3

vendor:ibmmodel:aspera sharesscope:eqversion:1.9.2

Trust: 0.3

vendor:oraclemodel:solarisscope:eqversion:11.2

Trust: 0.3

vendor:junipermodel:junos 15.1x49-d10scope: - version: -

Trust: 0.3

vendor:oraclemodel:switch es1-24scope:eqversion:1.3

Trust: 0.3

vendor:ibmmodel:security network controllerscope:eqversion:1.0.3376

Trust: 0.3

vendor:oraclemodel:endeca serverscope:eqversion:7.4

Trust: 0.3

vendor:ibmmodel:security proventia network active bypassscope:eqversion:2.18-42

Trust: 0.3

vendor:ibmmodel:worklight enterprise editionscope:eqversion:6.1.0.2

Trust: 0.3

vendor:junipermodel:junos 14.1r5scope: - version: -

Trust: 0.3

vendor:ibmmodel:sdk for node.jsscope:eqversion:1.2.0.4

Trust: 0.3

vendor:ibmmodel:aspera enterprise server clientscope:eqversion:3.5.5

Trust: 0.3

vendor:ibmmodel:campaignscope:eqversion:9.1.1

Trust: 0.3

vendor:ibmmodel:worklight foundation consumer editionscope:eqversion:6.2.0.1

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.6.16

Trust: 0.3

vendor:ibmmodel:aspera ondemandscope:eqversion:3.5.4

Trust: 0.3

vendor:slackwaremodel:linux -currentscope: - version: -

Trust: 0.3

vendor:junipermodel:junos 12.3r9scope: - version: -

Trust: 0.3

vendor:ciscomodel:telepresence conductorscope:eqversion:0

Trust: 0.3

vendor:ibmmodel:campaignscope:eqversion:9.1

Trust: 0.3

vendor:ibmmodel:security proventia network active bypassscope:eqversion:1.0.1876

Trust: 0.3

vendor:ciscomodel:digital media players series 5.3 rbscope:neversion:4300

Trust: 0.3

vendor:ibmmodel:worklight enterprise editionscope:eqversion:6.1.0.1

Trust: 0.3

vendor:ciscomodel:connected analytics for collaborationscope:eqversion:0

Trust: 0.3

vendor:hpmodel:cloud service automationscope:eqversion:4.5

Trust: 0.3

vendor:junipermodel:junos 12.1x44-d26scope: - version: -

Trust: 0.3

vendor:ibmmodel:worklight foundation enterprise editionscope:eqversion:6.2.0.1

Trust: 0.3

vendor:hpmodel:hp-ux b.11.11.14.15scope: - version: -

Trust: 0.3

vendor:ciscomodel:webex node for mcsscope:eqversion:0

Trust: 0.3

vendor:junipermodel:junos 12.1x44-d35.5scope: - version: -

Trust: 0.3

vendor:gentoomodel:linuxscope: - version: -

Trust: 0.3

vendor:junipermodel:junos 12.3x48-d30scope:neversion: -

Trust: 0.3

vendor:opensslmodel:project openssl 1.0.2cscope: - version: -

Trust: 0.3

vendor:ibmmodel:rational tauscope:eqversion:4.32

Trust: 0.3

vendor:ciscomodel:virtual security gateway for microsoft hyper-vscope:eqversion:0

Trust: 0.3

vendor:oraclemodel:sun blade ethernet switched nem 24p 10gescope:neversion:60001.2.2.13

Trust: 0.3

vendor:ciscomodel:services analytic platformscope:eqversion:0

Trust: 0.3

vendor:oraclemodel:switch es1-24scope:neversion:1.3.1.3

Trust: 0.3

vendor:ciscomodel:security managerscope:neversion:4.9

Trust: 0.3

vendor:ibmmodel:security network controller 1.0.3376mscope: - version: -

Trust: 0.3

vendor:ibmmodel:infosphere information serverscope:eqversion:8.1

Trust: 0.3

vendor:ibmmodel:rational tauscope:eqversion:4.3

Trust: 0.3

vendor:ibmmodel:security network controllerscope:eqversion:1.0.3379

Trust: 0.3

vendor:junipermodel:junos 13.2x51-d15scope: - version: -

Trust: 0.3

vendor:opensslmodel:project openssl 1.0.2bscope: - version: -

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.6.22

Trust: 0.3

vendor:junipermodel:junos 12.1x46-d36scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 13.2x51-d25scope: - version: -

Trust: 0.3

vendor:ciscomodel:network performance analyticsscope:eqversion:0

Trust: 0.3

vendor:ibmmodel:mobilefirst platform foundationscope:eqversion:7.0.0.0

Trust: 0.3

vendor:hpmodel:hp-ux b.11.11.15.13scope: - version: -

Trust: 0.3

vendor:ciscomodel:emergency responderscope: - version: -

Trust: 0.3

vendor:ibmmodel:campaignscope:eqversion:8.6

Trust: 0.3

vendor:ibmmodel:campaignscope:eqversion:9.0

Trust: 0.3

vendor:ibmmodel:infosphere information serverscope:eqversion:8.7

Trust: 0.3

vendor:junipermodel:junos 15.1x49-d20scope:neversion: -

Trust: 0.3

vendor:junipermodel:junos 14.2r3scope: - version: -

Trust: 0.3

vendor:ciscomodel:model d9485 davic qpskscope:neversion:1.2.19

Trust: 0.3

vendor:oraclemodel:enterprise manager ops centerscope:eqversion:12.1.0.1

Trust: 0.3

vendor:ibmmodel:rational tauscope:eqversion:4.33

Trust: 0.3

vendor:ibmmodel:netezza host managementscope:eqversion:5.3.6.0

Trust: 0.3

vendor:junipermodel:junos 12.1x46-d15scope: - version: -

Trust: 0.3

vendor:oraclemodel:sun network 10ge switch 72pscope:neversion:1.2.2.15

Trust: 0.3

vendor:junipermodel:junos 12.1x47-d15scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 12.1x44-d32scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 13.2x51-d30scope: - version: -

Trust: 0.3

vendor:ciscomodel:im and presence servicescope:eqversion:0

Trust: 0.3

vendor:junipermodel:junos 12.3r10scope: - version: -

Trust: 0.3

vendor:ciscomodel:digital media players series 5.3 rbscope:neversion:4400

Trust: 0.3

vendor:junipermodel:junos 12.1x44-d15scope: - version: -

Trust: 0.3

sources: BID: 75652 // JVNDB: JVNDB-2015-003487 // CNNVD: CNNVD-201507-298 // NVD: CVE-2015-1793

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2015-1793
value: MEDIUM

Trust: 1.0

NVD: CVE-2015-1793
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-201507-298
value: MEDIUM

Trust: 0.6

VULHUB: VHN-79754
value: MEDIUM

Trust: 0.1

VULHUB: VHN-81961
value: MEDIUM

Trust: 0.1

VULMON: CVE-2015-1793
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2015-1793
severity: MEDIUM
baseScore: 6.4
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 4.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.9

VULHUB: VHN-79754
severity: MEDIUM
baseScore: 6.4
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 4.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

VULHUB: VHN-81961
severity: MEDIUM
baseScore: 4.3
vectorString: AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 8.6
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2015-1793
baseSeverity: MEDIUM
baseScore: 6.5
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: LOW
integrityImpact: LOW
availabilityImpact: NONE
exploitabilityScore: 3.9
impactScore: 2.5
version: 3.0

Trust: 1.8

sources: VULHUB: VHN-79754 // VULHUB: VHN-81961 // VULMON: CVE-2015-1793 // JVNDB: JVNDB-2015-003487 // CNNVD: CNNVD-201507-298 // NVD: CVE-2015-1793

PROBLEMTYPE DATA

problemtype:CWE-254

Trust: 1.1

problemtype:CWE-Other

Trust: 0.8

problemtype:CWE-310

Trust: 0.1

sources: VULHUB: VHN-79754 // VULHUB: VHN-81961 // JVNDB: JVNDB-2015-003487 // NVD: CVE-2015-1793

THREAT TYPE

remote

Trust: 0.7

sources: PACKETSTORM: 133793 // CNNVD: CNNVD-201507-298

TYPE

Input Validation Error

Trust: 0.3

sources: BID: 75652

CONFIGURATIONS

sources: JVNDB: JVNDB-2015-003487

EXPLOIT AVAILABILITY

sources: VULHUB: VHN-79754 // VULHUB: VHN-81961 // VULMON: CVE-2015-1793

PATCH

title:cisco-sa-20150710-opensslurl:http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150710-openssl

Trust: 0.8

title:Fix alternate chains certificate forgery issueurl:https://git.openssl.org/?p=openssl.git;a=commit;h=9a0db453ba017ebcaccbee933ee6511a9ae4d1c8

Trust: 0.8

title:Add test for CVE-2015-1793url:https://github.com/openssl/openssl/commit/f404943bcab4898d18f3ac1b36479d1d7bbbb9e6

Trust: 0.8

title:HPSBUX03388url:http://marc.info/?l=bugtraq&amp;m=143880121627664&amp;w=2

Trust: 0.8

title:HPSBGN03424url:http://marc.info/?l=bugtraq&m=144370846326989&w=2

Trust: 0.8

title:HPSBHF03613url:https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05184351

Trust: 0.8

title:HPSBMU03546url:https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05045763

Trust: 0.8

title:NV15-010url:http://jpn.nec.com/security-info/secinfo/nv15-010.html

Trust: 0.8

title:OpenSSL Security Advisory [9 Jul 2015]url:https://www.openssl.org/news/secadv_20150709.txt

Trust: 0.8

title:Oracle Critical Patch Update Advisory - October 2015url:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html

Trust: 0.8

title:Oracle Critical Patch Update Advisory - April 2016url:http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html

Trust: 0.8

title:Text Form of Oracle Critical Patch Update - October 2015 Risk Matricesurl:http://www.oracle.com/technetwork/topics/security/cpuoct2015verbose-2367954.html

Trust: 0.8

title:Oracle Critical Patch Update CVSS V2 Risk Matrices - April 2016url:http://www.oracle.com/technetwork/topics/security/cpuapr2016-2881694.html

Trust: 0.8

title:Text Form of Oracle Critical Patch Update - April 2016 Risk Matricesurl:http://www.oracle.com/technetwork/topics/security/cpuapr2016verbose-2881709.html

Trust: 0.8

title:Oracle Critical Patch Update Advisory - October 2016url:http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html

Trust: 0.8

title:Text Form of Oracle Critical Patch Update - October 2016 Risk Matricesurl:http://www.oracle.com/technetwork/security-advisory/cpuoct2016verbose-2881725.html

Trust: 0.8

title:Oracle Critical Patch Update Advisory - July 2016url:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html

Trust: 0.8

title:Oracle Critical Patch Update Advisory - January 2016url:http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html

Trust: 0.8

title:Text Form of Oracle Critical Patch Update - July 2016 Risk Matricesurl:http://www.oracle.com/technetwork/topics/security/cpujul2016verbose-2881721.html

Trust: 0.8

title:Text Form of Oracle Critical Patch Update - January 2016 Risk Matricesurl:http://www.oracle.com/technetwork/topics/security/cpujan2016verbose-2367956.html

Trust: 0.8

title:Oracle Solaris Third Party Bulletin - July 2015url:http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html

Trust: 0.8

title:January 2016 Critical Patch Update Releasedurl:https://blogs.oracle.com/security/entry/january_2016_critical_patch_update

Trust: 0.8

title:October 2015 Critical Patch Update Releasedurl:https://blogs.oracle.com/security/entry/october_2015_critical_patch_update

Trust: 0.8

title:April 2016 Critical Patch Update Releasedurl:https://blogs.oracle.com/security/entry/april_2016_critical_patch_update

Trust: 0.8

title:October 2016 Critical Patch Update Releasedurl:https://blogs.oracle.com/security/entry/october_2016_critical_patch_update

Trust: 0.8

title:July 2016 Critical Patch Update Releasedurl:http://blogs.oracle.com/security/entry/july_2016_critical_patch_update

Trust: 0.8

title:JSA10694url:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10694

Trust: 0.8

title:cisco-sa-20150710-opensslurl:http://www.cisco.com/cisco/web/support/JP/113/1130/1130208_cisco-sa-20150710-openssl-j.html

Trust: 0.8

title:openssl-1.0.2durl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=56655

Trust: 0.6

title:openssl-1.0.1purl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=56654

Trust: 0.6

title:The Registerurl:https://www.theregister.co.uk/2016/07/06/hpe_rushes_out_patch_for_more_than_a_year_of_openssl_vulns/

Trust: 0.2

title:Amazon Linux AMI: ALAS-2015-564url:https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami&qid=ALAS-2015-564

Trust: 0.1

title:Red Hat: CVE-2015-1793url:https://vulmon.com/vendoradvisory?qidtp=red_hat_cve_database&qid=CVE-2015-1793

Trust: 0.1

title:Symantec Security Advisories: SA101 : OpenSSL Security Advisory 09-July-2015url:https://vulmon.com/vendoradvisory?qidtp=symantec_security_advisories&qid=bb24cf23a4d911e95562099e0e8d0f2d

Trust: 0.1

title:Tenable Security Advisories: [R5] OpenSSL '20150709' Advisory Affects Tenable Productsurl:https://vulmon.com/vendoradvisory?qidtp=tenable_security_advisories&qid=TNS-2015-08

Trust: 0.1

title:Oracle Solaris Third Party Bulletins: Oracle Solaris Third Party Bulletin - July 2015url:https://vulmon.com/vendoradvisory?qidtp=oracle_solaris_third_party_bulletins&qid=8b701aba68029ec36b631a8e26157a22

Trust: 0.1

title:Oracle: Oracle Critical Patch Update Advisory - October 2015url:https://vulmon.com/vendoradvisory?qidtp=oracle_advisories&qid=744c19dc9f4f70ad58059bf8733ec9c1

Trust: 0.1

title:Oracle: Oracle Critical Patch Update Advisory - October 2016url:https://vulmon.com/vendoradvisory?qidtp=oracle_advisories&qid=05aabe19d38058b7814ef5514aab4c0c

Trust: 0.1

title:Oracle: Oracle Critical Patch Update Advisory - October 2017url:https://vulmon.com/vendoradvisory?qidtp=oracle_advisories&qid=523d3f220a64ff01dd95e064bd37566a

Trust: 0.1

title:Oracle: Oracle Critical Patch Update Advisory - April 2016url:https://vulmon.com/vendoradvisory?qidtp=oracle_advisories&qid=122319027ae43d6d626710f1b1bb1d43

Trust: 0.1

title:Oracle: Oracle Critical Patch Update Advisory - July 2016url:https://vulmon.com/vendoradvisory?qidtp=oracle_advisories&qid=3a04485ebb79f7fbc2472bf9af5ce489

Trust: 0.1

title:Oracle: Oracle Critical Patch Update Advisory - January 2016url:https://vulmon.com/vendoradvisory?qidtp=oracle_advisories&qid=63802a6c83b107c4e6e0c7f9241a66a8

Trust: 0.1

title: - url:https://github.com/Live-Hack-CVE/CVE-2015-4000

Trust: 0.1

title: - url:https://github.com/Live-Hack-CVE/CVE-2015-1788

Trust: 0.1

sources: VULMON: CVE-2015-1793 // JVNDB: JVNDB-2015-003487 // CNNVD: CNNVD-201507-298

EXTERNAL IDS

db:NVDid:CVE-2015-1793

Trust: 3.5

db:JUNIPERid:JSA10694

Trust: 1.5

db:BIDid:75652

Trust: 1.5

db:BIDid:91787

Trust: 1.3

db:EXPLOIT-DBid:38640

Trust: 1.2

db:SECTRACKid:1032817

Trust: 1.2

db:MCAFEEid:SB10125

Trust: 1.2

db:JVNid:JVNVU99160787

Trust: 0.8

db:JVNDBid:JVNDB-2015-003487

Trust: 0.8

db:CNNVDid:CNNVD-201507-298

Trust: 0.7

db:PACKETSTORMid:133793

Trust: 0.2

db:PACKETSTORMid:132642

Trust: 0.2

db:PACKETSTORMid:132646

Trust: 0.2

db:PACKETSTORMid:132634

Trust: 0.2

db:PACKETSTORMid:132625

Trust: 0.1

db:PACKETSTORMid:132843

Trust: 0.1

db:PACKETSTORMid:134250

Trust: 0.1

db:VULHUBid:VHN-79754

Trust: 0.1

db:SECTRACKid:1032864

Trust: 0.1

db:SECTRACKid:1033341

Trust: 0.1

db:SECTRACKid:1032777

Trust: 0.1

db:SECTRACKid:1032727

Trust: 0.1

db:SECTRACKid:1032871

Trust: 0.1

db:SECTRACKid:1032475

Trust: 0.1

db:SECTRACKid:1032783

Trust: 0.1

db:SECTRACKid:1032653

Trust: 0.1

db:SECTRACKid:1032702

Trust: 0.1

db:SECTRACKid:1033222

Trust: 0.1

db:SECTRACKid:1032865

Trust: 0.1

db:SECTRACKid:1033065

Trust: 0.1

db:SECTRACKid:1033208

Trust: 0.1

db:SECTRACKid:1033019

Trust: 0.1

db:SECTRACKid:1033991

Trust: 0.1

db:SECTRACKid:1032759

Trust: 0.1

db:SECTRACKid:1040630

Trust: 0.1

db:SECTRACKid:1032910

Trust: 0.1

db:SECTRACKid:1033067

Trust: 0.1

db:SECTRACKid:1032637

Trust: 0.1

db:SECTRACKid:1033064

Trust: 0.1

db:SECTRACKid:1032654

Trust: 0.1

db:SECTRACKid:1032656

Trust: 0.1

db:SECTRACKid:1034087

Trust: 0.1

db:SECTRACKid:1032932

Trust: 0.1

db:SECTRACKid:1033385

Trust: 0.1

db:SECTRACKid:1032652

Trust: 0.1

db:SECTRACKid:1032688

Trust: 0.1

db:SECTRACKid:1032699

Trust: 0.1

db:SECTRACKid:1032649

Trust: 0.1

db:SECTRACKid:1032960

Trust: 0.1

db:SECTRACKid:1032647

Trust: 0.1

db:SECTRACKid:1032474

Trust: 0.1

db:SECTRACKid:1033210

Trust: 0.1

db:SECTRACKid:1032778

Trust: 0.1

db:SECTRACKid:1033416

Trust: 0.1

db:SECTRACKid:1033891

Trust: 0.1

db:SECTRACKid:1032884

Trust: 0.1

db:SECTRACKid:1032651

Trust: 0.1

db:SECTRACKid:1033760

Trust: 0.1

db:SECTRACKid:1033433

Trust: 0.1

db:SECTRACKid:1032476

Trust: 0.1

db:SECTRACKid:1032784

Trust: 0.1

db:SECTRACKid:1036218

Trust: 0.1

db:SECTRACKid:1032856

Trust: 0.1

db:SECTRACKid:1033430

Trust: 0.1

db:SECTRACKid:1034884

Trust: 0.1

db:SECTRACKid:1032655

Trust: 0.1

db:SECTRACKid:1032650

Trust: 0.1

db:SECTRACKid:1032648

Trust: 0.1

db:SECTRACKid:1033513

Trust: 0.1

db:SECTRACKid:1033209

Trust: 0.1

db:SECTRACKid:1032645

Trust: 0.1

db:SECTRACKid:1034728

Trust: 0.1

db:PACKETSTORMid:132413

Trust: 0.1

db:PACKETSTORMid:132649

Trust: 0.1

db:PACKETSTORMid:132586

Trust: 0.1

db:PACKETSTORMid:132164

Trust: 0.1

db:PACKETSTORMid:132610

Trust: 0.1

db:PACKETSTORMid:135506

Trust: 0.1

db:PACKETSTORMid:136247

Trust: 0.1

db:PACKETSTORMid:137744

Trust: 0.1

db:PACKETSTORMid:132439

Trust: 0.1

db:PACKETSTORMid:132652

Trust: 0.1

db:PACKETSTORMid:139002

Trust: 0.1

db:PACKETSTORMid:135510

Trust: 0.1

db:PACKETSTORMid:132465

Trust: 0.1

db:PACKETSTORMid:133338

Trust: 0.1

db:PACKETSTORMid:132468

Trust: 0.1

db:PACKETSTORMid:134232

Trust: 0.1

db:PACKETSTORMid:134902

Trust: 0.1

db:PACKETSTORMid:133324

Trust: 0.1

db:PACKETSTORMid:136975

Trust: 0.1

db:PACKETSTORMid:134755

Trust: 0.1

db:JUNIPERid:JSA10681

Trust: 0.1

db:JUNIPERid:JSA10727

Trust: 0.1

db:CNNVDid:CNNVD-201505-428

Trust: 0.1

db:BIDid:74733

Trust: 0.1

db:MCAFEEid:SB10122

Trust: 0.1

db:OPENWALLid:OSS-SECURITY/2015/05/20/8

Trust: 0.1

db:SIEMENSid:SSA-412672

Trust: 0.1

db:VULHUBid:VHN-81961

Trust: 0.1

db:VULMONid:CVE-2015-1793

Trust: 0.1

db:PACKETSTORMid:137772

Trust: 0.1

sources: VULHUB: VHN-79754 // VULHUB: VHN-81961 // VULMON: CVE-2015-1793 // BID: 75652 // JVNDB: JVNDB-2015-003487 // PACKETSTORM: 132634 // PACKETSTORM: 137772 // PACKETSTORM: 132642 // PACKETSTORM: 133793 // PACKETSTORM: 132646 // CNNVD: CNNVD-201507-298 // NVD: CVE-2015-1793

REFERENCES

url:http://openssl.org/news/secadv_20150709.txt

Trust: 1.9

url:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html

Trust: 1.6

url:http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html

Trust: 1.6

url:http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html

Trust: 1.6

url:http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20150710-openssl

Trust: 1.5

url:http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html

Trust: 1.5

url:http://kb.juniper.net/infocenter/index?page=content&id=jsa10694

Trust: 1.4

url:http://www.securityfocus.com/bid/75652

Trust: 1.3

url:http://www.securityfocus.com/bid/91787

Trust: 1.3

url:http://fortiguard.com/advisory/2015-07-09-cve-2015-1793-openssl-alternative-chains-certificate-forgery

Trust: 1.3

url:http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html

Trust: 1.3

url:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html

Trust: 1.3

url:https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05045763

Trust: 1.3

url:https://help.ecostruxureit.com/display/public/uadco8x/struxureware+data+center+operation+software+vulnerability+fixes

Trust: 1.3

url:https://www.exploit-db.com/exploits/38640/

Trust: 1.3

url:https://security.gentoo.org/glsa/201507-15

Trust: 1.3

url:http://ftp.netbsd.org/pub/netbsd/security/advisories/netbsd-sa2015-008.txt.asc

Trust: 1.3

url:http://www.fortiguard.com/advisory/2015-07-09-cve-2015-1793-openssl-alternative-chains-certificate-forgery

Trust: 1.2

url:http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html

Trust: 1.2

url:http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-454058.htm

Trust: 1.2

url:https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04822825

Trust: 1.2

url:https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05184351

Trust: 1.2

url:http://lists.fedoraproject.org/pipermail/package-announce/2015-july/161747.html

Trust: 1.2

url:http://lists.fedoraproject.org/pipermail/package-announce/2015-july/161782.html

Trust: 1.2

url:https://www.freebsd.org/security/advisories/freebsd-sa-15:12.openssl.asc

Trust: 1.2

url:http://www.securitytracker.com/id/1032817

Trust: 1.2

url:http://marc.info/?l=bugtraq&m=143880121627664&w=2

Trust: 1.1

url:http://marc.info/?l=bugtraq&m=144370846326989&w=2

Trust: 1.1

url:https://kc.mcafee.com/corporate/index?page=content&id=sb10125

Trust: 1.1

url:http://www.slackware.com/security/viewer.php?l=slackware-security&y=2015&m=slackware-security.561427

Trust: 1.1

url:https://git.openssl.org/?p=openssl.git%3ba=commit%3bh=9a0db453ba017ebcaccbee933ee6511a9ae4d1c8

Trust: 1.1

url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-1793

Trust: 0.9

url:https://jvn.jp/vu/jvnvu99160787/index.html

Trust: 0.8

url:https://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-1793

Trust: 0.8

url:https://cryptanalysis.eu/blog/2015/07/09/bypassing-certificate-checks-in-openssl-1-0-2c-cve-2015-1793/

Trust: 0.8

url:https://git.openssl.org/?p=openssl.git;a=commit;h=9a0db453ba017ebcaccbee933ee6511a9ae4d1c8

Trust: 0.7

url:https://nvd.nist.gov/vuln/detail/cve-2015-1793

Trust: 0.5

url:https://mta.openssl.org/pipermail/openssl-announce/2015-july/000037.html

Trust: 0.3

url:http://openssl.org/

Trust: 0.3

url:https://support.asperasoft.com/entries/94843988-security-bulletin-openssl-,-tls-vulnerabilities-logjam-cve-2015-4000

Trust: 0.3

url:http://seclists.org/bugtraq/2015/aug/13

Trust: 0.3

url:https://www.openssl.org/news/secadv_20150709.txt

Trust: 0.3

url:http://www.oracle.com/technetwork/topics/security/cpuapr2016-2881694.html

Trust: 0.3

url:https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c04822825

Trust: 0.3

url:https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c05184351

Trust: 0.3

url:http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/archive/hw-454058.htm

Trust: 0.3

url:http://www-01.ibm.com/support/docview.wss?uid=swg21962519

Trust: 0.3

url:http://www-01.ibm.com/support/docview.wss?uid=swg21964231

Trust: 0.3

url:https://www-304.ibm.com/support/docview.wss?uid=swg21965399

Trust: 0.3

url:http://www-01.ibm.com/support/docview.wss?uid=nas8n1020840

Trust: 0.3

url:http://www-01.ibm.com/support/docview.wss?uid=swg21961179

Trust: 0.3

url:http://www-01.ibm.com/support/docview.wss?uid=swg21962398

Trust: 0.3

url:http://www-01.ibm.com/support/docview.wss?uid=swg21962929

Trust: 0.3

url:http://www-01.ibm.com/support/docview.wss?uid=swg21963448

Trust: 0.3

url:https://www.openssl.org/news/vulnerabilities.html#2015-1793

Trust: 0.3

url:http://www-01.ibm.com/support/docview.wss?uid=swg21963498

Trust: 0.3

url:http://www-01.ibm.com/support/docview.wss?uid=swg21966481

Trust: 0.3

url:http://www-01.ibm.com/support/docview.wss?uid=swg21966484

Trust: 0.3

url:http://www-01.ibm.com/support/docview.wss?uid=swg21965725

Trust: 0.3

url:http://www-01.ibm.com/support/docview.wss?uid=swg21965807

Trust: 0.3

url:http://marc.info/?l=bugtraq&amp;m=143880121627664&amp;w=2

Trust: 0.2

url:http://kb.juniper.net/infocenter/index?page=content&amp;id=jsa10694

Trust: 0.1

url:https://kc.mcafee.com/corporate/index?page=content&amp;id=sb10125

Trust: 0.1

url:http://marc.info/?l=bugtraq&amp;m=144370846326989&amp;w=2

Trust: 0.1

url:http://www.slackware.com/security/viewer.php?l=slackware-security&amp;y=2015&amp;m=slackware-security.561427

Trust: 0.1

url:http://lists.apple.com/archives/security-announce/2015/jun/msg00001.html

Trust: 0.1

url:http://lists.apple.com/archives/security-announce/2015/jun/msg00002.html

Trust: 0.1

url:http://www.securityfocus.com/bid/74733

Trust: 0.1

url:https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf

Trust: 0.1

url:http://aix.software.ibm.com/aix/efixes/security/sendmail_advisory2.asc

Trust: 0.1

url:http://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c04876402

Trust: 0.1

url:http://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c04949778

Trust: 0.1

url:http://kb.juniper.net/infocenter/index?page=content&amp;id=jsa10681

Trust: 0.1

url:http://kb.juniper.net/infocenter/index?page=content&amp;id=jsa10727

Trust: 0.1

url:http://support.apple.com/kb/ht204941

Trust: 0.1

url:http://support.apple.com/kb/ht204942

Trust: 0.1

url:http://support.citrix.com/article/ctx201114

Trust: 0.1

url:http://www-01.ibm.com/support/docview.wss?uid=swg21959111

Trust: 0.1

url:http://www-01.ibm.com/support/docview.wss?uid=swg21959195

Trust: 0.1

url:http://www-01.ibm.com/support/docview.wss?uid=swg21959325

Trust: 0.1

url:http://www-01.ibm.com/support/docview.wss?uid=swg21959453

Trust: 0.1

url:http://www-01.ibm.com/support/docview.wss?uid=swg21959481

Trust: 0.1

url:http://www-01.ibm.com/support/docview.wss?uid=swg21959517

Trust: 0.1

url:http://www-01.ibm.com/support/docview.wss?uid=swg21959530

Trust: 0.1

url:http://www-01.ibm.com/support/docview.wss?uid=swg21959539

Trust: 0.1

url:http://www-01.ibm.com/support/docview.wss?uid=swg21959636

Trust: 0.1

url:http://www-01.ibm.com/support/docview.wss?uid=swg21959812

Trust: 0.1

url:http://www-01.ibm.com/support/docview.wss?uid=swg21960191

Trust: 0.1

url:http://www-01.ibm.com/support/docview.wss?uid=swg21961717

Trust: 0.1

url:http://www-01.ibm.com/support/docview.wss?uid=swg21962455

Trust: 0.1

url:http://www-01.ibm.com/support/docview.wss?uid=swg21962739

Trust: 0.1

url:http://www-304.ibm.com/support/docview.wss?uid=swg21958984

Trust: 0.1

url:http://www-304.ibm.com/support/docview.wss?uid=swg21959132

Trust: 0.1

url:http://www-304.ibm.com/support/docview.wss?uid=swg21960041

Trust: 0.1

url:http://www-304.ibm.com/support/docview.wss?uid=swg21960194

Trust: 0.1

url:http://www-304.ibm.com/support/docview.wss?uid=swg21960380

Trust: 0.1

url:http://www-304.ibm.com/support/docview.wss?uid=swg21960418

Trust: 0.1

url:http://www-304.ibm.com/support/docview.wss?uid=swg21962816

Trust: 0.1

url:http://www-304.ibm.com/support/docview.wss?uid=swg21967893

Trust: 0.1

url:http://www.fortiguard.com/advisory/2015-05-20-logjam-attack

Trust: 0.1

url:http://www.mozilla.org/security/announce/2015/mfsa2015-70.html

Trust: 0.1

url:http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html

Trust: 0.1

url:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html

Trust: 0.1

url:http://www.solarwinds.com/documentation/storage/storagemanager/docs/releasenotes/releasenotes.htm

Trust: 0.1

url:https://bto.bluecoat.com/security-advisory/sa98

Trust: 0.1

url:https://bugzilla.mozilla.org/show_bug.cgi?id=1138554

Trust: 0.1

url:https://developer.mozilla.org/en-us/docs/mozilla/projects/nss/nss_3.19.1_release_notes

Trust: 0.1

url:https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04770140

Trust: 0.1

url:https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04772190

Trust: 0.1

url:https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04773119

Trust: 0.1

url:https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04773241

Trust: 0.1

url:https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04832246

Trust: 0.1

url:https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04918839

Trust: 0.1

url:https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04923929

Trust: 0.1

url:https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04926789

Trust: 0.1

url:https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04740527

Trust: 0.1

url:https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04953655

Trust: 0.1

url:https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05128722

Trust: 0.1

url:https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05193083

Trust: 0.1

url:https://kc.mcafee.com/corporate/index?page=content&amp;id=sb10122

Trust: 0.1

url:https://openssl.org/news/secadv/20150611.txt

Trust: 0.1

url:https://puppet.com/security/cve/cve-2015-4000

Trust: 0.1

url:https://security.netapp.com/advisory/ntap-20150619-0001/

Trust: 0.1

url:https://support.citrix.com/article/ctx216642

Trust: 0.1

url:https://support.hpe.com/hpsc/doc/public/display?doclocale=en_us&amp;docid=emr_na-hpesbhf03831en_us

Trust: 0.1

url:https://www-304.ibm.com/support/docview.wss?uid=swg21959745

Trust: 0.1

url:https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5098403

Trust: 0.1

url:https://www.openssl.org/blog/blog/2015/05/20/logjam-freak-upcoming-changes/

Trust: 0.1

url:https://www.openssl.org/news/secadv_20150611.txt

Trust: 0.1

url:https://www.suse.com/security/cve/cve-2015-4000.html

Trust: 0.1

url:http://www.debian.org/security/2015/dsa-3287

Trust: 0.1

url:http://www.debian.org/security/2015/dsa-3300

Trust: 0.1

url:http://www.debian.org/security/2015/dsa-3316

Trust: 0.1

url:http://www.debian.org/security/2015/dsa-3324

Trust: 0.1

url:http://www.debian.org/security/2015/dsa-3339

Trust: 0.1

url:http://www.debian.org/security/2016/dsa-3688

Trust: 0.1

url:http://lists.fedoraproject.org/pipermail/package-announce/2015-june/159351.html

Trust: 0.1

url:http://lists.fedoraproject.org/pipermail/package-announce/2015-june/159314.html

Trust: 0.1

url:http://lists.fedoraproject.org/pipermail/package-announce/2015-june/160117.html

Trust: 0.1

url:https://security.gentoo.org/glsa/201506-02

Trust: 0.1

url:https://security.gentoo.org/glsa/201512-10

Trust: 0.1

url:https://security.gentoo.org/glsa/201603-11

Trust: 0.1

url:https://security.gentoo.org/glsa/201701-46

Trust: 0.1

url:http://marc.info/?l=bugtraq&amp;m=143557934009303&amp;w=2

Trust: 0.1

url:http://marc.info/?l=bugtraq&amp;m=143628304012255&amp;w=2

Trust: 0.1

url:http://marc.info/?l=bugtraq&amp;m=143558092609708&amp;w=2

Trust: 0.1

url:http://marc.info/?l=bugtraq&amp;m=143655800220052&amp;w=2

Trust: 0.1

url:http://marc.info/?l=bugtraq&amp;m=144060576831314&amp;w=2

Trust: 0.1

url:http://marc.info/?l=bugtraq&amp;m=144069189622016&amp;w=2

Trust: 0.1

url:http://marc.info/?l=bugtraq&amp;m=144050121701297&amp;w=2

Trust: 0.1

url:http://marc.info/?l=bugtraq&amp;m=144060606031437&amp;w=2

Trust: 0.1

url:http://marc.info/?l=bugtraq&amp;m=144102017024820&amp;w=2

Trust: 0.1

url:http://marc.info/?l=bugtraq&amp;m=144061542602287&amp;w=2

Trust: 0.1

url:http://marc.info/?l=bugtraq&amp;m=145409266329539&amp;w=2

Trust: 0.1

url:http://marc.info/?l=bugtraq&amp;m=144043644216842&amp;w=2

Trust: 0.1

url:http://marc.info/?l=bugtraq&amp;m=143506486712441&amp;w=2

Trust: 0.1

url:http://marc.info/?l=bugtraq&amp;m=144104533800819&amp;w=2

Trust: 0.1

url:http://marc.info/?l=bugtraq&amp;m=143637549705650&amp;w=2

Trust: 0.1

url:http://marc.info/?l=bugtraq&amp;m=144493176821532&amp;w=2

Trust: 0.1

url:https://h20564.www2.hp.com/hpsc/doc/public/display?docid=emr_na-c04718196

Trust: 0.1

url:https://blog.cloudflare.com/logjam-the-latest-tls-vulnerability-explained/

Trust: 0.1

url:https://weakdh.org/

Trust: 0.1

url:https://weakdh.org/imperfect-forward-secrecy.pdf

Trust: 0.1

url:https://www.oracle.com/security-alerts/cpujan2021.html

Trust: 0.1

url:http://openwall.com/lists/oss-security/2015/05/20/8

Trust: 0.1

url:http://rhn.redhat.com/errata/rhsa-2015-1072.html

Trust: 0.1

url:http://rhn.redhat.com/errata/rhsa-2015-1185.html

Trust: 0.1

url:http://rhn.redhat.com/errata/rhsa-2015-1197.html

Trust: 0.1

url:http://rhn.redhat.com/errata/rhsa-2015-1228.html

Trust: 0.1

url:http://rhn.redhat.com/errata/rhsa-2015-1229.html

Trust: 0.1

url:http://rhn.redhat.com/errata/rhsa-2015-1230.html

Trust: 0.1

url:http://rhn.redhat.com/errata/rhsa-2015-1241.html

Trust: 0.1

url:http://rhn.redhat.com/errata/rhsa-2015-1242.html

Trust: 0.1

url:http://rhn.redhat.com/errata/rhsa-2015-1243.html

Trust: 0.1

url:http://rhn.redhat.com/errata/rhsa-2015-1485.html

Trust: 0.1

url:http://rhn.redhat.com/errata/rhsa-2015-1486.html

Trust: 0.1

url:http://rhn.redhat.com/errata/rhsa-2015-1488.html

Trust: 0.1

url:http://rhn.redhat.com/errata/rhsa-2015-1526.html

Trust: 0.1

url:http://rhn.redhat.com/errata/rhsa-2015-1544.html

Trust: 0.1

url:http://rhn.redhat.com/errata/rhsa-2015-1604.html

Trust: 0.1

url:http://rhn.redhat.com/errata/rhsa-2016-1624.html

Trust: 0.1

url:http://rhn.redhat.com/errata/rhsa-2016-2056.html

Trust: 0.1

url:http://www.securitytracker.com/id/1032474

Trust: 0.1

url:http://www.securitytracker.com/id/1032475

Trust: 0.1

url:http://www.securitytracker.com/id/1032476

Trust: 0.1

url:http://www.securitytracker.com/id/1032637

Trust: 0.1

url:http://www.securitytracker.com/id/1032645

Trust: 0.1

url:http://www.securitytracker.com/id/1032647

Trust: 0.1

url:http://www.securitytracker.com/id/1032648

Trust: 0.1

url:http://www.securitytracker.com/id/1032649

Trust: 0.1

url:http://www.securitytracker.com/id/1032650

Trust: 0.1

url:http://www.securitytracker.com/id/1032651

Trust: 0.1

url:http://www.securitytracker.com/id/1032652

Trust: 0.1

url:http://www.securitytracker.com/id/1032653

Trust: 0.1

url:http://www.securitytracker.com/id/1032654

Trust: 0.1

url:http://www.securitytracker.com/id/1032655

Trust: 0.1

url:http://www.securitytracker.com/id/1032656

Trust: 0.1

url:http://www.securitytracker.com/id/1032688

Trust: 0.1

url:http://www.securitytracker.com/id/1032699

Trust: 0.1

url:http://www.securitytracker.com/id/1032702

Trust: 0.1

url:http://www.securitytracker.com/id/1032727

Trust: 0.1

url:http://www.securitytracker.com/id/1032759

Trust: 0.1

url:http://www.securitytracker.com/id/1032777

Trust: 0.1

url:http://www.securitytracker.com/id/1032778

Trust: 0.1

url:http://www.securitytracker.com/id/1032783

Trust: 0.1

url:http://www.securitytracker.com/id/1032784

Trust: 0.1

url:http://www.securitytracker.com/id/1032856

Trust: 0.1

url:http://www.securitytracker.com/id/1032864

Trust: 0.1

url:http://www.securitytracker.com/id/1032865

Trust: 0.1

url:http://www.securitytracker.com/id/1032871

Trust: 0.1

url:http://www.securitytracker.com/id/1032884

Trust: 0.1

url:http://www.securitytracker.com/id/1032910

Trust: 0.1

url:http://www.securitytracker.com/id/1032932

Trust: 0.1

url:http://www.securitytracker.com/id/1032960

Trust: 0.1

url:http://www.securitytracker.com/id/1033019

Trust: 0.1

url:http://www.securitytracker.com/id/1033064

Trust: 0.1

url:http://www.securitytracker.com/id/1033065

Trust: 0.1

url:http://www.securitytracker.com/id/1033067

Trust: 0.1

url:http://www.securitytracker.com/id/1033208

Trust: 0.1

url:http://www.securitytracker.com/id/1033209

Trust: 0.1

url:http://www.securitytracker.com/id/1033210

Trust: 0.1

url:http://www.securitytracker.com/id/1033222

Trust: 0.1

url:http://www.securitytracker.com/id/1033341

Trust: 0.1

url:http://www.securitytracker.com/id/1033385

Trust: 0.1

url:http://www.securitytracker.com/id/1033416

Trust: 0.1

url:http://www.securitytracker.com/id/1033430

Trust: 0.1

url:http://www.securitytracker.com/id/1033433

Trust: 0.1

url:http://www.securitytracker.com/id/1033513

Trust: 0.1

url:http://www.securitytracker.com/id/1033760

Trust: 0.1

url:http://www.securitytracker.com/id/1033891

Trust: 0.1

url:http://www.securitytracker.com/id/1033991

Trust: 0.1

url:http://www.securitytracker.com/id/1034087

Trust: 0.1

url:http://www.securitytracker.com/id/1034728

Trust: 0.1

url:http://www.securitytracker.com/id/1034884

Trust: 0.1

url:http://www.securitytracker.com/id/1036218

Trust: 0.1

url:http://www.securitytracker.com/id/1040630

Trust: 0.1

url:http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00024.html

Trust: 0.1

url:http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00026.html

Trust: 0.1

url:http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00001.html

Trust: 0.1

url:http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00003.html

Trust: 0.1

url:http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00004.html

Trust: 0.1

url:http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00005.html

Trust: 0.1

url:http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00006.html

Trust: 0.1

url:http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00007.html

Trust: 0.1

url:http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00033.html

Trust: 0.1

url:http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00034.html

Trust: 0.1

url:http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00046.html

Trust: 0.1

url:http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00047.html

Trust: 0.1

url:http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00021.html

Trust: 0.1

url:http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00017.html

Trust: 0.1

url:http://lists.opensuse.org/opensuse-security-announce/2015-10/msg00001.html

Trust: 0.1

url:http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00031.html

Trust: 0.1

url:http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00040.html

Trust: 0.1

url:http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00023.html

Trust: 0.1

url:http://lists.opensuse.org/opensuse-updates/2015-07/msg00016.html

Trust: 0.1

url:http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00025.html

Trust: 0.1

url:http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html

Trust: 0.1

url:http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00037.html

Trust: 0.1

url:http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00039.html

Trust: 0.1

url:http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00040.html

Trust: 0.1

url:http://lists.opensuse.org/opensuse-updates/2015-10/msg00011.html

Trust: 0.1

url:http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00032.html

Trust: 0.1

url:http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00037.html

Trust: 0.1

url:http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00039.html

Trust: 0.1

url:http://lists.opensuse.org/opensuse-updates/2016-02/msg00094.html

Trust: 0.1

url:http://lists.opensuse.org/opensuse-updates/2016-02/msg00097.html

Trust: 0.1

url:http://www.ubuntu.com/usn/usn-2656-1

Trust: 0.1

url:http://www.ubuntu.com/usn/usn-2656-2

Trust: 0.1

url:http://www.ubuntu.com/usn/usn-2673-1

Trust: 0.1

url:http://www.ubuntu.com/usn/usn-2696-1

Trust: 0.1

url:http://www.ubuntu.com/usn/usn-2706-1

Trust: 0.1

url:https://cwe.mitre.org/data/definitions/254.html

Trust: 0.1

url:https://github.com/live-hack-cve/cve-2015-4000

Trust: 0.1

url:https://nvd.nist.gov

Trust: 0.1

url:https://www.rapid7.com/db/modules/auxiliary/server/openssl_altchainsforgery_mitm_proxy

Trust: 0.1

url:http://tools.cisco.com/security/center/viewalert.x?alertid=44733

Trust: 0.1

url:http://slackware.com

Trust: 0.1

url:http://osuosl.org)

Trust: 0.1

url:http://slackware.com/gpg-key

Trust: 0.1

url:https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_n

Trust: 0.1

url:http://www.hpe.com/support/security_bulletin_archive

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2015-1792

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2015-1790

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2015-1789

Trust: 0.1

url:https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay/?doci

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2015-1791

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2015-1788

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2014-8176

Trust: 0.1

url:http://www.hpe.com/support/subscriber_choice

Trust: 0.1

url:http://creativecommons.org/licenses/by-sa/2.5

Trust: 0.1

url:https://security.gentoo.org/

Trust: 0.1

url:https://bugs.gentoo.org.

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-1793

Trust: 0.1

url:https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secbullarchive/

Trust: 0.1

url:http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins

Trust: 0.1

url:https://software

Trust: 0.1

url:https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/

Trust: 0.1

url:https://www.freebsd.org/handbook/makeworld.html>.

Trust: 0.1

url:https://security.freebsd.org/>.

Trust: 0.1

url:https://www.openssl.org/news/secadv_20150709.txt>

Trust: 0.1

url:https://security.freebsd.org/advisories/freebsd-sa-15:12.openssl.asc>

Trust: 0.1

url:https://svnweb.freebsd.org/base?view=revision&revision=nnnnnn>

Trust: 0.1

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-1793>

Trust: 0.1

sources: VULHUB: VHN-79754 // VULHUB: VHN-81961 // VULMON: CVE-2015-1793 // BID: 75652 // JVNDB: JVNDB-2015-003487 // PACKETSTORM: 132634 // PACKETSTORM: 137772 // PACKETSTORM: 132642 // PACKETSTORM: 133793 // PACKETSTORM: 132646 // CNNVD: CNNVD-201507-298 // NVD: CVE-2015-1793

CREDITS

Adam Langley of Google and David Benjamin of BoringSSL.

Trust: 0.3

sources: BID: 75652

SOURCES

db:VULHUBid:VHN-79754
db:VULHUBid:VHN-81961
db:VULMONid:CVE-2015-1793
db:BIDid:75652
db:JVNDBid:JVNDB-2015-003487
db:PACKETSTORMid:132634
db:PACKETSTORMid:137772
db:PACKETSTORMid:132642
db:PACKETSTORMid:133793
db:PACKETSTORMid:132646
db:CNNVDid:CNNVD-201507-298
db:NVDid:CVE-2015-1793

LAST UPDATE DATE

2024-11-20T22:08:13.559000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-79754date:2018-11-30T00:00:00
db:VULHUBid:VHN-81961date:2023-02-09T00:00:00
db:VULMONid:CVE-2015-1793date:2023-11-07T00:00:00
db:BIDid:75652date:2016-10-26T05:10:00
db:JVNDBid:JVNDB-2015-003487date:2016-11-22T00:00:00
db:CNNVDid:CNNVD-201507-298date:2015-07-10T00:00:00
db:NVDid:CVE-2015-1793date:2023-11-07T02:24:55.670

SOURCES RELEASE DATE

db:VULHUBid:VHN-79754date:2015-07-09T00:00:00
db:VULHUBid:VHN-81961date:2015-05-21T00:00:00
db:VULMONid:CVE-2015-1793date:2015-07-09T00:00:00
db:BIDid:75652date:2015-07-09T00:00:00
db:JVNDBid:JVNDB-2015-003487date:2015-07-13T00:00:00
db:PACKETSTORMid:132634date:2015-07-10T15:42:50
db:PACKETSTORMid:137772date:2016-07-05T18:18:00
db:PACKETSTORMid:132642date:2015-07-10T15:43:49
db:PACKETSTORMid:133793date:2015-10-01T15:52:56
db:PACKETSTORMid:132646date:2015-07-10T15:53:18
db:CNNVDid:CNNVD-201507-298date:2015-07-10T00:00:00
db:NVDid:CVE-2015-1793date:2015-07-09T19:17:00.093