Vulnslist

Cisco vulnerabilities by product, model, software, and advisory.

CVE-2016-0701

The DH_check_pub_key function in crypto/dh/dh_check.c in OpenSSL 1.0.2 before 1.0.2f does not ensure that prime numbers are appropriate for Diffie-Hellman (DH) key exchange, which makes it easier for remote attackers to discover a private DH exponent by making multiple handshakes with a peer that chose an inappropriate number, as demonstrated by a number in an X9.42 file.

SeverityLOW
CVSS3.7
CWECWE-200
KEV
Published
Modified

Related Products

Product Advisory Evidence
UCS B-Series Blade Server Software cisco-sa-20160129-openssl Cisco OpenVuln
Intrusion Prevention System (IPS) cisco-sa-20160129-openssl Cisco OpenVuln
Cisco Webex Meetings cisco-sa-20160129-openssl Cisco OpenVuln
Cisco WebEx Meetings Server cisco-sa-20160129-openssl Cisco OpenVuln
Cisco Videoscape Control Suite cisco-sa-20160129-openssl Cisco OpenVuln
Cisco Unity Express cisco-sa-20160129-openssl Cisco OpenVuln
Cisco Unity Connection cisco-sa-20160129-openssl Cisco OpenVuln
Cisco Unity cisco-sa-20160129-openssl Cisco OpenVuln
Cisco Unified Intelligence Center cisco-sa-20160129-openssl Cisco OpenVuln
Cisco Unified IP Phone 8945 cisco-sa-20160129-openssl Cisco OpenVuln
Cisco Unified Contact Center Express cisco-sa-20160129-openssl Cisco OpenVuln
Cisco Unified Contact Center Enterprise cisco-sa-20160129-openssl Cisco OpenVuln
Cisco Unified Contact Center cisco-sa-20160129-openssl Cisco OpenVuln
Cisco Unified Attendant Console cisco-sa-20160129-openssl Cisco OpenVuln
Cisco UCS B-Series Blade Server Software cisco-sa-20160129-openssl Cisco OpenVuln
Cisco Telepresence Conductor cisco-sa-20160129-openssl Cisco OpenVuln
Cisco TelePresence Video Communication Server (VCS) cisco-sa-20160129-openssl Cisco OpenVuln
Cisco TelePresence cisco-sa-20160129-openssl Cisco OpenVuln
Cisco Secure Email cisco-sa-20160129-openssl Cisco OpenVuln
Cisco Registered Envelope Service cisco-sa-20160129-openssl Cisco OpenVuln
Cisco Prime Performance Manager cisco-sa-20160129-openssl Cisco OpenVuln
Cisco Prime Optical cisco-sa-20160129-openssl Cisco OpenVuln
Cisco Prime License Manager cisco-sa-20160129-openssl Cisco OpenVuln
Cisco Prime Collaboration Provisioning cisco-sa-20160129-openssl Cisco OpenVuln
Cisco Prime Collaboration Deployment cisco-sa-20160129-openssl Cisco OpenVuln
Cisco Prime Collaboration cisco-sa-20160129-openssl Cisco OpenVuln
Cisco ONS 15454 System Software cisco-sa-20160129-openssl Cisco OpenVuln
Cisco Nexus 3000 Series Switch cisco-sa-20160129-openssl Cisco OpenVuln
Cisco Mobility Services Engine cisco-sa-20160129-openssl Cisco OpenVuln
Cisco MediaSense cisco-sa-20160129-openssl Cisco OpenVuln
Cisco Jabber for Windows cisco-sa-20160129-openssl Cisco OpenVuln
Cisco Jabber cisco-sa-20160129-openssl Cisco OpenVuln
Cisco Intrusion Prevention System (IPS) cisco-sa-20160129-openssl Cisco OpenVuln
Cisco IP phone cisco-sa-20160129-openssl Cisco OpenVuln
Cisco IP Phone 8800 Series Software cisco-sa-20160129-openssl Cisco OpenVuln
Cisco Expressway cisco-sa-20160129-openssl Cisco OpenVuln
Cisco Emergency Responder cisco-sa-20160129-openssl Cisco OpenVuln
Cisco Email Security Appliance (ESA) cisco-sa-20160129-openssl Cisco OpenVuln
Cisco Cloupia Unified Infrastructure Controller cisco-sa-20160129-openssl Cisco OpenVuln
Cisco AnyRes Live cisco-sa-20160129-openssl Cisco OpenVuln
Cisco Agent Desktop cisco-sa-20160129-openssl Cisco OpenVuln