WID-SEC-W-2023-0782
Vulnerability from csaf_certbund - Published: 2023-03-28 22:00 - Updated: 2025-03-27 23:00Summary
OpenSSL: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen
Severity
Mittel
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: OpenSSL ist eine im Quelltext frei verfügbare Bibliothek, die Secure Sockets Layer (SSL) und Transport Layer Security (TLS) implementiert.
Angriff: Ein Angreifer kann mehrere Schwachstellen in OpenSSL ausnutzen, um Sicherheitsvorkehrungen zu umgehen.
Betroffene Betriebssysteme: - Linux
- MacOS X
- Sonstiges
- UNIX
- Windows
Affected products
Known affected
51 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Broadcom Fabric OS <9.1.1d
Broadcom / Fabric OS
|
<9.1.1d | ||
|
IBM Security Verify Access 10.0.0.0-10.0.6.1
IBM / Security Verify Access
|
cpe:/a:ibm:security_verify_access:10.0.0.0_-_10.0.6.1
|
10.0.0.0-10.0.6.1 | |
|
IBM Rational ClearQuest <9.0.2.8
IBM / Rational ClearQuest
|
<9.0.2.8 | ||
|
Red Hat JBoss Core Services
Red Hat / JBoss Core Services
|
cpe:/a:redhat:jboss_core_services:-
|
— | |
|
Hitachi Command Suite
Hitachi
|
cpe:/a:hitachi:command_suite:-
|
— | |
|
IBM Rational Build Forge 8.0.0.24
IBM / Rational Build Forge
|
cpe:/a:ibm:rational_build_forge:8.0.0.24
|
8.0.0.24 | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Broadcom Fabric OS <9.2.1
Broadcom / Fabric OS
|
<9.2.1 | ||
|
HCL BigFix <10.0.10
HCL / BigFix
|
<10.0.10 | ||
|
Insyde UEFI Firmware <SPF RV 23.05
Insyde / UEFI Firmware
|
<SPF RV 23.05 | ||
|
Insyde UEFI Firmware <OPF RV 23.06
Insyde / UEFI Firmware
|
<OPF RV 23.06 | ||
|
Insyde UEFI Firmware <05.60.23
Insyde / UEFI Firmware
|
<05.60.23 | ||
|
Insyde UEFI Firmware <05.53.23
Insyde / UEFI Firmware
|
<05.53.23 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Insyde UEFI Firmware <05.45.23
Insyde / UEFI Firmware
|
<05.45.23 | ||
|
Insyde UEFI Firmware <05.37.23
Insyde / UEFI Firmware
|
<05.37.23 | ||
|
IBM AIX 7.3
IBM / AIX
|
cpe:/o:ibm:aix:7.3
|
7.3 | |
|
IBM Rational ClearQuest <9.1.0.5
IBM / Rational ClearQuest
|
<9.1.0.5 | ||
|
HPE Switch
HPE
|
cpe:/h:hp:switch:san_switch
|
— | |
|
IBM Rational ClearQuest <10.0.3
IBM / Rational ClearQuest
|
<10.0.3 | ||
|
IBM AIX 7.2
IBM / AIX
|
cpe:/o:ibm:aix:7.2
|
7.2 | |
|
NetApp Data ONTAP
NetApp
|
cpe:/a:netapp:data_ontap:-
|
— | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Dell NetWorker <19.10
Dell / NetWorker
|
<19.10 | ||
|
Hitachi Ops Center
Hitachi
|
cpe:/a:hitachi:ops_center:-
|
— | |
|
Open Source OpenSSL 3.1
Open Source / OpenSSL
|
cpe:/a:openssl:openssl:3.1.x
|
3.1 | |
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
IBM InfoSphere Information Server 11.7
IBM / InfoSphere Information Server
|
cpe:/a:ibm:infosphere_information_server:11.7
|
11.7 | |
|
Tenable Security Nessus <10.5.3
Tenable Security / Nessus
|
<10.5.3 | ||
|
Red Hat JBoss Core Services 1
Red Hat / JBoss Core Services
|
cpe:/a:redhat:jboss_core_services:1.0
|
1 | |
|
Red Hat OpenShift Container Platform 4.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:container_platform_4.12
|
Container Platform 4.12 | |
|
HCL BigFix <9.5.23
HCL / BigFix
|
<9.5.23 | ||
|
Open Source OpenSSL 1.1.1
Open Source / OpenSSL
|
cpe:/a:openssl:openssl:1.1.1:-
|
1.1.1 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Broadcom Fabric OS <8.2.3e
Broadcom / Fabric OS
|
<8.2.3e | ||
|
Broadcom Fabric OS
Broadcom / Fabric OS
|
cpe:/o:broadcom:fabric_operating_system:-
|
— | |
|
Broadcom Fabric OS <9.2.0b
Broadcom / Fabric OS
|
<9.2.0b | ||
|
Hitachi Configuration Manager
Hitachi
|
cpe:/a:hitachi:configuration_manager:-
|
— | |
|
Dell NetWorker
Dell / NetWorker
|
cpe:/a:dell:networker:-
|
— | |
|
Red Hat JBoss Web Server <5.7.7
Red Hat / JBoss Web Server
|
<5.7.7 | ||
|
Open Source OpenSSL 1.0.2
Open Source / OpenSSL
|
cpe:/a:openssl:openssl:1.0.2:-
|
1.0.2 | |
|
IBM Rational ClearCase <9.0.2.8
IBM / Rational ClearCase
|
<9.0.2.8 | ||
|
Dell PowerEdge T40 <1.15.0
Dell / PowerEdge
|
T40 <1.15.0 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
IBM Rational ClearCase <9.1.0.5
IBM / Rational ClearCase
|
<9.1.0.5 | ||
|
IBM Sterling Connect:Direct HP NonStop <3.6.0.6 iFix000
IBM / Sterling Connect:Direct
|
HP NonStop <3.6.0.6 iFix000 | ||
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source OpenSSL 3.0
Open Source / OpenSSL
|
cpe:/a:openssl:openssl:3.0.x
|
3 | |
|
Broadcom Brocade SANnav
Broadcom
|
cpe:/a:broadcom:brocade_sannav:-
|
— | |
|
Tenable Security Nessus agent <10.4.1
Tenable Security / Nessus
|
agent <10.4.1 |
Affected products
Known affected
51 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Broadcom Fabric OS <9.1.1d
Broadcom / Fabric OS
|
<9.1.1d | ||
|
IBM Security Verify Access 10.0.0.0-10.0.6.1
IBM / Security Verify Access
|
cpe:/a:ibm:security_verify_access:10.0.0.0_-_10.0.6.1
|
10.0.0.0-10.0.6.1 | |
|
IBM Rational ClearQuest <9.0.2.8
IBM / Rational ClearQuest
|
<9.0.2.8 | ||
|
Red Hat JBoss Core Services
Red Hat / JBoss Core Services
|
cpe:/a:redhat:jboss_core_services:-
|
— | |
|
Hitachi Command Suite
Hitachi
|
cpe:/a:hitachi:command_suite:-
|
— | |
|
IBM Rational Build Forge 8.0.0.24
IBM / Rational Build Forge
|
cpe:/a:ibm:rational_build_forge:8.0.0.24
|
8.0.0.24 | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Broadcom Fabric OS <9.2.1
Broadcom / Fabric OS
|
<9.2.1 | ||
|
HCL BigFix <10.0.10
HCL / BigFix
|
<10.0.10 | ||
|
Insyde UEFI Firmware <SPF RV 23.05
Insyde / UEFI Firmware
|
<SPF RV 23.05 | ||
|
Insyde UEFI Firmware <OPF RV 23.06
Insyde / UEFI Firmware
|
<OPF RV 23.06 | ||
|
Insyde UEFI Firmware <05.60.23
Insyde / UEFI Firmware
|
<05.60.23 | ||
|
Insyde UEFI Firmware <05.53.23
Insyde / UEFI Firmware
|
<05.53.23 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Insyde UEFI Firmware <05.45.23
Insyde / UEFI Firmware
|
<05.45.23 | ||
|
Insyde UEFI Firmware <05.37.23
Insyde / UEFI Firmware
|
<05.37.23 | ||
|
IBM AIX 7.3
IBM / AIX
|
cpe:/o:ibm:aix:7.3
|
7.3 | |
|
IBM Rational ClearQuest <9.1.0.5
IBM / Rational ClearQuest
|
<9.1.0.5 | ||
|
HPE Switch
HPE
|
cpe:/h:hp:switch:san_switch
|
— | |
|
IBM Rational ClearQuest <10.0.3
IBM / Rational ClearQuest
|
<10.0.3 | ||
|
IBM AIX 7.2
IBM / AIX
|
cpe:/o:ibm:aix:7.2
|
7.2 | |
|
NetApp Data ONTAP
NetApp
|
cpe:/a:netapp:data_ontap:-
|
— | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Dell NetWorker <19.10
Dell / NetWorker
|
<19.10 | ||
|
Hitachi Ops Center
Hitachi
|
cpe:/a:hitachi:ops_center:-
|
— | |
|
Open Source OpenSSL 3.1
Open Source / OpenSSL
|
cpe:/a:openssl:openssl:3.1.x
|
3.1 | |
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
IBM InfoSphere Information Server 11.7
IBM / InfoSphere Information Server
|
cpe:/a:ibm:infosphere_information_server:11.7
|
11.7 | |
|
Tenable Security Nessus <10.5.3
Tenable Security / Nessus
|
<10.5.3 | ||
|
Red Hat JBoss Core Services 1
Red Hat / JBoss Core Services
|
cpe:/a:redhat:jboss_core_services:1.0
|
1 | |
|
Red Hat OpenShift Container Platform 4.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:container_platform_4.12
|
Container Platform 4.12 | |
|
HCL BigFix <9.5.23
HCL / BigFix
|
<9.5.23 | ||
|
Open Source OpenSSL 1.1.1
Open Source / OpenSSL
|
cpe:/a:openssl:openssl:1.1.1:-
|
1.1.1 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Broadcom Fabric OS <8.2.3e
Broadcom / Fabric OS
|
<8.2.3e | ||
|
Broadcom Fabric OS
Broadcom / Fabric OS
|
cpe:/o:broadcom:fabric_operating_system:-
|
— | |
|
Broadcom Fabric OS <9.2.0b
Broadcom / Fabric OS
|
<9.2.0b | ||
|
Hitachi Configuration Manager
Hitachi
|
cpe:/a:hitachi:configuration_manager:-
|
— | |
|
Dell NetWorker
Dell / NetWorker
|
cpe:/a:dell:networker:-
|
— | |
|
Red Hat JBoss Web Server <5.7.7
Red Hat / JBoss Web Server
|
<5.7.7 | ||
|
Open Source OpenSSL 1.0.2
Open Source / OpenSSL
|
cpe:/a:openssl:openssl:1.0.2:-
|
1.0.2 | |
|
IBM Rational ClearCase <9.0.2.8
IBM / Rational ClearCase
|
<9.0.2.8 | ||
|
Dell PowerEdge T40 <1.15.0
Dell / PowerEdge
|
T40 <1.15.0 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
IBM Rational ClearCase <9.1.0.5
IBM / Rational ClearCase
|
<9.1.0.5 | ||
|
IBM Sterling Connect:Direct HP NonStop <3.6.0.6 iFix000
IBM / Sterling Connect:Direct
|
HP NonStop <3.6.0.6 iFix000 | ||
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source OpenSSL 3.0
Open Source / OpenSSL
|
cpe:/a:openssl:openssl:3.0.x
|
3 | |
|
Broadcom Brocade SANnav
Broadcom
|
cpe:/a:broadcom:brocade_sannav:-
|
— | |
|
Tenable Security Nessus agent <10.4.1
Tenable Security / Nessus
|
agent <10.4.1 |
References
65 references
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "OpenSSL ist eine im Quelltext frei verf\u00fcgbare Bibliothek, die Secure Sockets Layer (SSL) und Transport Layer Security (TLS) implementiert.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer kann mehrere Schwachstellen in OpenSSL ausnutzen, um Sicherheitsvorkehrungen zu umgehen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux\n- MacOS X\n- Sonstiges\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2023-0782 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-0782.json"
},
{
"category": "self",
"summary": "WID-SEC-2023-0782 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0782"
},
{
"category": "external",
"summary": "OpenSSL Security Advisory vom 2023-03-28",
"url": "https://www.openssl.org/news/secadv/20230328.txt"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2023:1794-1 vom 2023-04-07",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-April/014431.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2023:1790-1 vom 2023-04-07",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-April/014426.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2023:1790-1 vom 2023-04-07",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-April/014425.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2023:1790-1 vom 2023-04-06",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-April/014422.html"
},
{
"category": "external",
"summary": "NetApp Security Advisory NTAP-20230414-0001 vom 2023-04-14",
"url": "https://security.netapp.com/advisory/ntap-20230414-0001/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2023:1898-1 vom 2023-04-18",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-April/014486.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2023:1908-1 vom 2023-04-19",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-April/014492.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2023:1907-1 vom 2023-04-19",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-April/014493.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2023:1922-1 vom 2023-04-19",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-April/014501.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2023:1911-1 vom 2023-04-19",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-April/014498.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2023:1912-1 vom 2023-04-19",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-April/014497.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2023:1914-1 vom 2023-04-20",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-April/014503.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2023:1914-1 vom 2023-04-20",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-April/014504.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2023:1926-1 vom 2023-04-20",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-April/014520.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2023:1960-1 vom 2023-04-24",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-April/014557.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6039-1 vom 2023-04-25",
"url": "https://ubuntu.com/security/notices/USN-6039-1"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2023-2039 vom 2023-05-17",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2039.html"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-5417 vom 2023-06-01",
"url": "https://www.debian.org/security/2023/dsa-5417"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS2-2023-2073 vom 2023-06-08",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2073.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2023-1762 vom 2023-06-09",
"url": "https://alas.aws.amazon.com/ALAS-2023-1762.html"
},
{
"category": "external",
"summary": "Debian Security Advisory DLA-3449 vom 2023-06-08",
"url": "https://lists.debian.org/debian-lts-announce/2023/06/msg00011.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2023-3722 vom 2023-06-22",
"url": "https://linux.oracle.com/errata/ELSA-2023-3722.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2023:3722 vom 2023-06-21",
"url": "https://access.redhat.com/errata/RHSA-2023:3722"
},
{
"category": "external",
"summary": "Tenable Security Advisory TNS-2023-22 vom 2023-06-28",
"url": "https://de.tenable.com/security/tns-2023-22"
},
{
"category": "external",
"summary": "Tenable Security Advisory TNS-2023-24 vom 2023-07-06",
"url": "https://de.tenable.com/security/tns-2023-24"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2023:3925 vom 2023-07-06",
"url": "https://access.redhat.com/errata/RHSA-2023:3925"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2023:4091 vom 2023-07-20",
"url": "https://access.redhat.com/errata/RHSA-2023:4091"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2023-12768 vom 2023-09-01",
"url": "https://linux.oracle.com/errata/ELSA-2023-12768.html"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7031625 vom 2023-09-11",
"url": "https://aix.software.ibm.com/aix/efixes/security/openssl_advisory39.asc"
},
{
"category": "external",
"summary": "Insyde Security Advisory 2023042",
"url": "https://www.insyde.com/security-pledge/SA-2023042"
},
{
"category": "external",
"summary": "Insyde Security Advisory 2023043",
"url": "https://www.insyde.com/security-pledge/SA-2023043"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALASOPENSSL-SNAPSAFE-2023-002 vom 2023-09-27",
"url": "https://alas.aws.amazon.com/AL2/ALASOPENSSL-SNAPSAFE-2023-002.html"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7035373 vom 2023-10-03",
"url": "https://www.ibm.com/support/pages/node/7035373"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7041682 vom 2023-10-04",
"url": "https://www.ibm.com/support/pages/node/7041682"
},
{
"category": "external",
"summary": "HCL Security Bulletin KB0107791 vom 2023-10-11",
"url": "https://support.hcltechsw.com/csm?id=kb_article\u0026sysparm_article=KB0107791"
},
{
"category": "external",
"summary": "Tenable Security Advisory TNS-2023-34 vom 2023-10-25",
"url": "https://de.tenable.com/security/tns-2023-34"
},
{
"category": "external",
"summary": "IBM Security Bulletin",
"url": "https://www.ibm.com/support/pages/node/7082717"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2023-13027 vom 2023-12-07",
"url": "https://linux.oracle.com/errata/ELSA-2023-13027.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2023-32790 vom 2023-12-07",
"url": "https://linux.oracle.com/errata/ELSA-2023-32790.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2023:7626 vom 2023-12-07",
"url": "https://access.redhat.com/errata/RHSA-2023:7626"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2023:7622 vom 2023-12-07",
"url": "https://access.redhat.com/errata/RHSA-2023:7622"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2023:7623 vom 2023-12-07",
"url": "https://access.redhat.com/errata/RHSA-2023:7623"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2023:7625 vom 2023-12-07",
"url": "https://access.redhat.com/errata/RHSA-2023:7625"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2023-13024 vom 2023-12-07",
"url": "https://linux.oracle.com/errata/ELSA-2023-13024.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2023-13025 vom 2023-12-07",
"url": "https://linux.oracle.com/errata/ELSA-2023-13025.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2023-32791 vom 2023-12-07",
"url": "https://linux.oracle.com/errata/ELSA-2023-32791.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2023-13026 vom 2023-12-07",
"url": "https://linux.oracle.com/errata/ELSA-2023-13026.html"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7105279 vom 2024-01-05",
"url": "https://www.ibm.com/support/pages/node/7105279"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7108821 vom 2024-01-17",
"url": "https://www.ibm.com/support/pages/node/7108821"
},
{
"category": "external",
"summary": "Dell Knowledge Base Article",
"url": "https://www.dell.com/support/kbdoc/en-us/000221474/dsa-2024-059-security-update-for-dell-networker-multiple-components-vulnerabilities"
},
{
"category": "external",
"summary": "Gentoo Linux Security Advisory GLSA-202402-08 vom 2024-02-04",
"url": "https://security.gentoo.org/glsa/202402-08"
},
{
"category": "external",
"summary": "Dell Security Advisory DSA-2024-082 vom 2024-02-21",
"url": "https://www.dell.com/support/kbdoc/000222226/dsa-2024-="
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2024-2502 vom 2024-03-19",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2502.html"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-EPEL-2024-B002585DD2 vom 2024-04-22",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-b002585dd2"
},
{
"category": "external",
"summary": "HPE Security Bulletin vom 2024-04-25",
"url": "https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbst04635en_us\u0026docLocale=en_US"
},
{
"category": "external",
"summary": "Brocade Security Advisory BSA-2023-2228 vom 2024-04-30",
"url": "https://support.broadcom.com/external/content/SecurityAdvisories/0/23234"
},
{
"category": "external",
"summary": "Broadcom Security Advisory vom 2024-04-30",
"url": "https://support.broadcom.com/external/content/SecurityAdvisories/0/23299"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-12408 vom 2024-06-05",
"url": "https://linux.oracle.com/errata/ELSA-2024-12408.html"
},
{
"category": "external",
"summary": "Hitachi Vulnerability Information HITACHI-SEC-2024-145 vom 2024-09-17",
"url": "https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2024-145/index.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-12842 vom 2024-11-25",
"url": "https://linux.oracle.com/errata/ELSA-2024-12842.html"
},
{
"category": "external",
"summary": "Dell Security Advisory DSA-2025-064 vom 2025-01-30",
"url": "https://www.dell.com/support/kbdoc/de-de/000278811/dsa-2025-064-security-update-for-dell-networker-networker-virtual-edition-and-networker-management-console-multiple-component-vulnerabilities"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7229378 vom 2025-03-28",
"url": "https://www.ibm.com/support/pages/node/7229378"
}
],
"source_lang": "en-US",
"title": "OpenSSL: Mehrere Schwachstellen erm\u00f6glichen Umgehen von Sicherheitsvorkehrungen",
"tracking": {
"current_release_date": "2025-03-27T23:00:00.000+00:00",
"generator": {
"date": "2025-03-28T13:18:04.579+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.12"
}
},
"id": "WID-SEC-W-2023-0782",
"initial_release_date": "2023-03-28T22:00:00.000+00:00",
"revision_history": [
{
"date": "2023-03-28T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2023-04-10T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2023-04-16T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von NetApp aufgenommen"
},
{
"date": "2023-04-18T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2023-04-19T22:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2023-04-24T22:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2023-05-16T22:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2023-05-31T22:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von Debian aufgenommen"
},
{
"date": "2023-06-08T22:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von Amazon und Debian aufgenommen"
},
{
"date": "2023-06-21T22:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von Oracle Linux und Red Hat aufgenommen"
},
{
"date": "2023-06-28T22:00:00.000+00:00",
"number": "11",
"summary": "Neue Updates von Tenable aufgenommen"
},
{
"date": "2023-07-06T22:00:00.000+00:00",
"number": "12",
"summary": "Neue Updates von Tenable und Red Hat aufgenommen"
},
{
"date": "2023-07-20T22:00:00.000+00:00",
"number": "13",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2023-09-03T22:00:00.000+00:00",
"number": "14",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2023-09-11T22:00:00.000+00:00",
"number": "15",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2023-09-17T22:00:00.000+00:00",
"number": "16",
"summary": "Neue Updates von Insyde aufgenommen"
},
{
"date": "2023-09-27T22:00:00.000+00:00",
"number": "17",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2023-10-03T22:00:00.000+00:00",
"number": "18",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2023-10-10T22:00:00.000+00:00",
"number": "19",
"summary": "Neue Updates von HCL aufgenommen"
},
{
"date": "2023-10-25T22:00:00.000+00:00",
"number": "20",
"summary": "Neue Updates von Tenable aufgenommen"
},
{
"date": "2023-11-26T23:00:00.000+00:00",
"number": "21",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2023-12-07T23:00:00.000+00:00",
"number": "22",
"summary": "Neue Updates von Oracle Linux und Red Hat aufgenommen"
},
{
"date": "2024-01-04T23:00:00.000+00:00",
"number": "23",
"summary": "Neue Updates von IBM und IBM-APAR aufgenommen"
},
{
"date": "2024-01-17T23:00:00.000+00:00",
"number": "24",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2024-01-25T23:00:00.000+00:00",
"number": "25",
"summary": "Neue Updates von Dell aufgenommen"
},
{
"date": "2024-02-04T23:00:00.000+00:00",
"number": "26",
"summary": "Neue Updates von Gentoo aufgenommen"
},
{
"date": "2024-02-20T23:00:00.000+00:00",
"number": "27",
"summary": "Neue Updates von Dell aufgenommen"
},
{
"date": "2024-03-18T23:00:00.000+00:00",
"number": "28",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2024-04-22T22:00:00.000+00:00",
"number": "29",
"summary": "Neue Updates von Fedora aufgenommen"
},
{
"date": "2024-04-24T22:00:00.000+00:00",
"number": "30",
"summary": "Neue Updates von HP aufgenommen"
},
{
"date": "2024-05-01T22:00:00.000+00:00",
"number": "31",
"summary": "Neue Updates von BROCADE aufgenommen"
},
{
"date": "2024-06-04T22:00:00.000+00:00",
"number": "32",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2024-09-16T22:00:00.000+00:00",
"number": "33",
"summary": "Neue Updates von HITACHI aufgenommen"
},
{
"date": "2024-11-25T23:00:00.000+00:00",
"number": "34",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2025-01-29T23:00:00.000+00:00",
"number": "35",
"summary": "Neue Updates von Dell aufgenommen"
},
{
"date": "2025-03-27T23:00:00.000+00:00",
"number": "36",
"summary": "Neue Updates von IBM aufgenommen"
}
],
"status": "final",
"version": "36"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Amazon Linux 2",
"product": {
"name": "Amazon Linux 2",
"product_id": "398363",
"product_identification_helper": {
"cpe": "cpe:/o:amazon:linux_2:-"
}
}
}
],
"category": "vendor",
"name": "Amazon"
},
{
"branches": [
{
"category": "product_name",
"name": "Broadcom Brocade SANnav",
"product": {
"name": "Broadcom Brocade SANnav",
"product_id": "T022212",
"product_identification_helper": {
"cpe": "cpe:/a:broadcom:brocade_sannav:-"
}
}
},
{
"branches": [
{
"category": "product_name",
"name": "Broadcom Fabric OS",
"product": {
"name": "Broadcom Fabric OS",
"product_id": "978054",
"product_identification_helper": {
"cpe": "cpe:/o:broadcom:fabric_operating_system:-"
}
}
},
{
"category": "product_version_range",
"name": "\u003c9.1.1d",
"product": {
"name": "Broadcom Fabric OS \u003c9.1.1d",
"product_id": "T034128"
}
},
{
"category": "product_version",
"name": "9.1.1d",
"product": {
"name": "Broadcom Fabric OS 9.1.1d",
"product_id": "T034128-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:broadcom:fabric_operating_system:9.1.1d"
}
}
},
{
"category": "product_version_range",
"name": "\u003c9.2.0b",
"product": {
"name": "Broadcom Fabric OS \u003c9.2.0b",
"product_id": "T034260"
}
},
{
"category": "product_version",
"name": "9.2.0b",
"product": {
"name": "Broadcom Fabric OS 9.2.0b",
"product_id": "T034260-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:broadcom:fabric_operating_system:9.2.0b"
}
}
},
{
"category": "product_version_range",
"name": "\u003c8.2.3e",
"product": {
"name": "Broadcom Fabric OS \u003c8.2.3e",
"product_id": "T034262"
}
},
{
"category": "product_version",
"name": "8.2.3e",
"product": {
"name": "Broadcom Fabric OS 8.2.3e",
"product_id": "T034262-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:broadcom:fabric_operating_system:8.2.3e"
}
}
},
{
"category": "product_version_range",
"name": "\u003c9.2.1",
"product": {
"name": "Broadcom Fabric OS \u003c9.2.1",
"product_id": "T034487"
}
},
{
"category": "product_version",
"name": "9.2.1",
"product": {
"name": "Broadcom Fabric OS 9.2.1",
"product_id": "T034487-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:broadcom:fabric_operating_system:9.2.1"
}
}
}
],
"category": "product_name",
"name": "Fabric OS"
}
],
"category": "vendor",
"name": "Broadcom"
},
{
"branches": [
{
"category": "product_name",
"name": "Debian Linux",
"product": {
"name": "Debian Linux",
"product_id": "2951",
"product_identification_helper": {
"cpe": "cpe:/o:debian:debian_linux:-"
}
}
}
],
"category": "vendor",
"name": "Debian"
},
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Dell NetWorker",
"product": {
"name": "Dell NetWorker",
"product_id": "T024663",
"product_identification_helper": {
"cpe": "cpe:/a:dell:networker:-"
}
}
},
{
"category": "product_version_range",
"name": "\u003c19.10",
"product": {
"name": "Dell NetWorker \u003c19.10",
"product_id": "T032354"
}
},
{
"category": "product_version",
"name": "19.1",
"product": {
"name": "Dell NetWorker 19.10",
"product_id": "T032354-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:dell:networker:19.10"
}
}
}
],
"category": "product_name",
"name": "NetWorker"
},
{
"branches": [
{
"category": "product_version_range",
"name": "T40 \u003c1.15.0",
"product": {
"name": "Dell PowerEdge T40 \u003c1.15.0",
"product_id": "T032971"
}
},
{
"category": "product_version",
"name": "T40 1.15.0",
"product": {
"name": "Dell PowerEdge T40 1.15.0",
"product_id": "T032971-fixed",
"product_identification_helper": {
"cpe": "cpe:/h:dell:poweredge:t40__1.15.0"
}
}
}
],
"category": "product_name",
"name": "PowerEdge"
}
],
"category": "vendor",
"name": "Dell"
},
{
"branches": [
{
"category": "product_name",
"name": "Fedora Linux",
"product": {
"name": "Fedora Linux",
"product_id": "74185",
"product_identification_helper": {
"cpe": "cpe:/o:fedoraproject:fedora:-"
}
}
}
],
"category": "vendor",
"name": "Fedora"
},
{
"branches": [
{
"category": "product_name",
"name": "Gentoo Linux",
"product": {
"name": "Gentoo Linux",
"product_id": "T012167",
"product_identification_helper": {
"cpe": "cpe:/o:gentoo:linux:-"
}
}
}
],
"category": "vendor",
"name": "Gentoo"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.0.10",
"product": {
"name": "HCL BigFix \u003c10.0.10",
"product_id": "T024886"
}
},
{
"category": "product_version",
"name": "10.0.10",
"product": {
"name": "HCL BigFix 10.0.10",
"product_id": "T024886-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:hcltech:bigfix:10.0.10.0"
}
}
},
{
"category": "product_version_range",
"name": "\u003c9.5.23",
"product": {
"name": "HCL BigFix \u003c9.5.23",
"product_id": "T030464"
}
},
{
"category": "product_version",
"name": "9.5.23",
"product": {
"name": "HCL BigFix 9.5.23",
"product_id": "T030464-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:hcltech:bigfix:9.5.23"
}
}
}
],
"category": "product_name",
"name": "BigFix"
}
],
"category": "vendor",
"name": "HCL"
},
{
"branches": [
{
"category": "product_name",
"name": "HPE Switch",
"product": {
"name": "HPE Switch",
"product_id": "T029100",
"product_identification_helper": {
"cpe": "cpe:/h:hp:switch:san_switch"
}
}
}
],
"category": "vendor",
"name": "HPE"
},
{
"branches": [
{
"category": "product_name",
"name": "Hitachi Command Suite",
"product": {
"name": "Hitachi Command Suite",
"product_id": "T010951",
"product_identification_helper": {
"cpe": "cpe:/a:hitachi:command_suite:-"
}
}
},
{
"category": "product_name",
"name": "Hitachi Configuration Manager",
"product": {
"name": "Hitachi Configuration Manager",
"product_id": "T020304",
"product_identification_helper": {
"cpe": "cpe:/a:hitachi:configuration_manager:-"
}
}
},
{
"category": "product_name",
"name": "Hitachi Ops Center",
"product": {
"name": "Hitachi Ops Center",
"product_id": "T017562",
"product_identification_helper": {
"cpe": "cpe:/a:hitachi:ops_center:-"
}
}
}
],
"category": "vendor",
"name": "Hitachi"
},
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "7.2",
"product": {
"name": "IBM AIX 7.2",
"product_id": "434967",
"product_identification_helper": {
"cpe": "cpe:/o:ibm:aix:7.2"
}
}
},
{
"category": "product_version",
"name": "7.3",
"product": {
"name": "IBM AIX 7.3",
"product_id": "T029653",
"product_identification_helper": {
"cpe": "cpe:/o:ibm:aix:7.3"
}
}
}
],
"category": "product_name",
"name": "AIX"
},
{
"branches": [
{
"category": "product_version",
"name": "11.7",
"product": {
"name": "IBM InfoSphere Information Server 11.7",
"product_id": "444803",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:infosphere_information_server:11.7"
}
}
}
],
"category": "product_name",
"name": "InfoSphere Information Server"
},
{
"branches": [
{
"category": "product_version",
"name": "8.0.0.24",
"product": {
"name": "IBM Rational Build Forge 8.0.0.24",
"product_id": "T030689",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:rational_build_forge:8.0.0.24"
}
}
}
],
"category": "product_name",
"name": "Rational Build Forge"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c9.1.0.5",
"product": {
"name": "IBM Rational ClearCase \u003c9.1.0.5",
"product_id": "T030198"
}
},
{
"category": "product_version",
"name": "9.1.0.5",
"product": {
"name": "IBM Rational ClearCase 9.1.0.5",
"product_id": "T030198-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:rational_clearcase:9.1.0.5"
}
}
},
{
"category": "product_version_range",
"name": "\u003c9.0.2.8",
"product": {
"name": "IBM Rational ClearCase \u003c9.0.2.8",
"product_id": "T030199"
}
},
{
"category": "product_version",
"name": "9.0.2.8",
"product": {
"name": "IBM Rational ClearCase 9.0.2.8",
"product_id": "T030199-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:rational_clearcase:9.0.2.8"
}
}
}
],
"category": "product_name",
"name": "Rational ClearCase"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.0.3",
"product": {
"name": "IBM Rational ClearQuest \u003c10.0.3",
"product_id": "T030177"
}
},
{
"category": "product_version",
"name": "10.0.3",
"product": {
"name": "IBM Rational ClearQuest 10.0.3",
"product_id": "T030177-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:rational_clearquest:10.0.3"
}
}
},
{
"category": "product_version_range",
"name": "\u003c9.0.2.8",
"product": {
"name": "IBM Rational ClearQuest \u003c9.0.2.8",
"product_id": "T030204"
}
},
{
"category": "product_version",
"name": "9.0.2.8",
"product": {
"name": "IBM Rational ClearQuest 9.0.2.8",
"product_id": "T030204-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:rational_clearquest:9.0.2.8"
}
}
},
{
"category": "product_version_range",
"name": "\u003c9.1.0.5",
"product": {
"name": "IBM Rational ClearQuest \u003c9.1.0.5",
"product_id": "T030211"
}
},
{
"category": "product_version",
"name": "9.1.0.5",
"product": {
"name": "IBM Rational ClearQuest 9.1.0.5",
"product_id": "T030211-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:rational_clearquest:9.1.0.5"
}
}
}
],
"category": "product_name",
"name": "Rational ClearQuest"
},
{
"branches": [
{
"category": "product_version",
"name": "10.0.0.0-10.0.6.1",
"product": {
"name": "IBM Security Verify Access 10.0.0.0-10.0.6.1",
"product_id": "T031895",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:security_verify_access:10.0.0.0_-_10.0.6.1"
}
}
}
],
"category": "product_name",
"name": "Security Verify Access"
},
{
"branches": [
{
"category": "product_version_range",
"name": "HP NonStop \u003c3.6.0.6 iFix000",
"product": {
"name": "IBM Sterling Connect:Direct HP NonStop \u003c3.6.0.6 iFix000",
"product_id": "T042203"
}
},
{
"category": "product_version",
"name": "HP NonStop 3.6.0.6 iFix000",
"product": {
"name": "IBM Sterling Connect:Direct HP NonStop 3.6.0.6 iFix000",
"product_id": "T042203-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:sterling_connect%3adirect:hp_nonstop__3.6.0.6_ifix000"
}
}
}
],
"category": "product_name",
"name": "Sterling Connect:Direct"
}
],
"category": "vendor",
"name": "IBM"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c05.37.23",
"product": {
"name": "Insyde UEFI Firmware \u003c05.37.23",
"product_id": "T029931"
}
},
{
"category": "product_version",
"name": "05.37.23",
"product": {
"name": "Insyde UEFI Firmware 05.37.23",
"product_id": "T029931-fixed",
"product_identification_helper": {
"cpe": "cpe:/h:insyde:uefi:05.37.23"
}
}
},
{
"category": "product_version_range",
"name": "\u003c05.45.23",
"product": {
"name": "Insyde UEFI Firmware \u003c05.45.23",
"product_id": "T029932"
}
},
{
"category": "product_version",
"name": "05.45.23",
"product": {
"name": "Insyde UEFI Firmware 05.45.23",
"product_id": "T029932-fixed",
"product_identification_helper": {
"cpe": "cpe:/h:insyde:uefi:05.45.23"
}
}
},
{
"category": "product_version_range",
"name": "\u003c05.53.23",
"product": {
"name": "Insyde UEFI Firmware \u003c05.53.23",
"product_id": "T029933"
}
},
{
"category": "product_version",
"name": "05.53.23",
"product": {
"name": "Insyde UEFI Firmware 05.53.23",
"product_id": "T029933-fixed",
"product_identification_helper": {
"cpe": "cpe:/h:insyde:uefi:05.53.23"
}
}
},
{
"category": "product_version_range",
"name": "\u003c05.60.23",
"product": {
"name": "Insyde UEFI Firmware \u003c05.60.23",
"product_id": "T029934"
}
},
{
"category": "product_version",
"name": "05.60.23",
"product": {
"name": "Insyde UEFI Firmware 05.60.23",
"product_id": "T029934-fixed",
"product_identification_helper": {
"cpe": "cpe:/h:insyde:uefi:05.60.23"
}
}
},
{
"category": "product_version_range",
"name": "\u003cOPF RV 23.06",
"product": {
"name": "Insyde UEFI Firmware \u003cOPF RV 23.06",
"product_id": "T029935"
}
},
{
"category": "product_version",
"name": "OPF RV 23.06",
"product": {
"name": "Insyde UEFI Firmware OPF RV 23.06",
"product_id": "T029935-fixed",
"product_identification_helper": {
"cpe": "cpe:/h:insyde:uefi:opf_rv_23.06"
}
}
},
{
"category": "product_version_range",
"name": "\u003cSPF RV 23.05",
"product": {
"name": "Insyde UEFI Firmware \u003cSPF RV 23.05",
"product_id": "T029936"
}
},
{
"category": "product_version",
"name": "SPF RV 23.05",
"product": {
"name": "Insyde UEFI Firmware SPF RV 23.05",
"product_id": "T029936-fixed",
"product_identification_helper": {
"cpe": "cpe:/h:insyde:uefi:spf_rv_23.05"
}
}
}
],
"category": "product_name",
"name": "UEFI Firmware"
}
],
"category": "vendor",
"name": "Insyde"
},
{
"branches": [
{
"category": "product_name",
"name": "NetApp Data ONTAP",
"product": {
"name": "NetApp Data ONTAP",
"product_id": "7654",
"product_identification_helper": {
"cpe": "cpe:/a:netapp:data_ontap:-"
}
}
}
],
"category": "vendor",
"name": "NetApp"
},
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "1.1.1",
"product": {
"name": "Open Source OpenSSL 1.1.1",
"product_id": "1126000",
"product_identification_helper": {
"cpe": "cpe:/a:openssl:openssl:1.1.1:-"
}
}
},
{
"category": "product_version",
"name": "1.0.2",
"product": {
"name": "Open Source OpenSSL 1.0.2",
"product_id": "1126009",
"product_identification_helper": {
"cpe": "cpe:/a:openssl:openssl:1.0.2:-"
}
}
},
{
"category": "product_version",
"name": "3",
"product": {
"name": "Open Source OpenSSL 3.0",
"product_id": "T022451",
"product_identification_helper": {
"cpe": "cpe:/a:openssl:openssl:3.0.x"
}
}
},
{
"category": "product_version",
"name": "3.1",
"product": {
"name": "Open Source OpenSSL 3.1",
"product_id": "T026917",
"product_identification_helper": {
"cpe": "cpe:/a:openssl:openssl:3.1.x"
}
}
}
],
"category": "product_name",
"name": "OpenSSL"
}
],
"category": "vendor",
"name": "Open Source"
},
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T004914",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
},
{
"branches": [
{
"category": "product_version",
"name": "1",
"product": {
"name": "Red Hat JBoss Core Services 1",
"product_id": "459970",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_core_services:1.0"
}
}
},
{
"category": "product_name",
"name": "Red Hat JBoss Core Services",
"product": {
"name": "Red Hat JBoss Core Services",
"product_id": "T012412",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_core_services:-"
}
}
}
],
"category": "product_name",
"name": "JBoss Core Services"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c5.7.7",
"product": {
"name": "Red Hat JBoss Web Server \u003c5.7.7",
"product_id": "T031508"
}
},
{
"category": "product_version",
"name": "5.7.7",
"product": {
"name": "Red Hat JBoss Web Server 5.7.7",
"product_id": "T031508-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_enterprise_web_server:5.7.7"
}
}
}
],
"category": "product_name",
"name": "JBoss Web Server"
},
{
"branches": [
{
"category": "product_version",
"name": "Container Platform 4.12",
"product": {
"name": "Red Hat OpenShift Container Platform 4.12",
"product_id": "T026435",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform_4.12"
}
}
}
],
"category": "product_name",
"name": "OpenShift"
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.5.3",
"product": {
"name": "Tenable Security Nessus \u003c10.5.3",
"product_id": "T028339"
}
},
{
"category": "product_version",
"name": "10.5.3",
"product": {
"name": "Tenable Security Nessus 10.5.3",
"product_id": "T028339-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:tenable:nessus:10.5.3"
}
}
},
{
"category": "product_version_range",
"name": "agent \u003c10.4.1",
"product": {
"name": "Tenable Security Nessus agent \u003c10.4.1",
"product_id": "T028433"
}
},
{
"category": "product_version",
"name": "agent 10.4.1",
"product": {
"name": "Tenable Security Nessus agent 10.4.1",
"product_id": "T028433-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:tenable:nessus:agent__10.4.1"
}
}
}
],
"category": "product_name",
"name": "Nessus"
}
],
"category": "vendor",
"name": "Tenable Security"
},
{
"branches": [
{
"category": "product_name",
"name": "Ubuntu Linux",
"product": {
"name": "Ubuntu Linux",
"product_id": "T000126",
"product_identification_helper": {
"cpe": "cpe:/o:canonical:ubuntu_linux:-"
}
}
}
],
"category": "vendor",
"name": "Ubuntu"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-0465",
"product_status": {
"known_affected": [
"T034128",
"T031895",
"T030204",
"T012412",
"T010951",
"T030689",
"T004914",
"T034487",
"T024886",
"T029936",
"T029935",
"T029934",
"T029933",
"398363",
"T029932",
"T029931",
"T029653",
"T030211",
"T029100",
"T030177",
"434967",
"7654",
"T012167",
"T032354",
"T017562",
"T026917",
"2951",
"T002207",
"444803",
"T028339",
"459970",
"T026435",
"T030464",
"1126000",
"67646",
"T034262",
"978054",
"T034260",
"T020304",
"T024663",
"T031508",
"1126009",
"T030199",
"T032971",
"74185",
"T030198",
"T042203",
"T000126",
"T022451",
"T022212",
"T028433"
]
},
"release_date": "2023-03-28T22:00:00.000+00:00",
"title": "CVE-2023-0465"
},
{
"cve": "CVE-2023-0466",
"product_status": {
"known_affected": [
"T034128",
"T031895",
"T030204",
"T012412",
"T010951",
"T030689",
"T004914",
"T034487",
"T024886",
"T029936",
"T029935",
"T029934",
"T029933",
"398363",
"T029932",
"T029931",
"T029653",
"T030211",
"T029100",
"T030177",
"434967",
"7654",
"T012167",
"T032354",
"T017562",
"T026917",
"2951",
"T002207",
"444803",
"T028339",
"459970",
"T026435",
"T030464",
"1126000",
"67646",
"T034262",
"978054",
"T034260",
"T020304",
"T024663",
"T031508",
"1126009",
"T030199",
"T032971",
"74185",
"T030198",
"T042203",
"T000126",
"T022451",
"T022212",
"T028433"
]
},
"release_date": "2023-03-28T22:00:00.000+00:00",
"title": "CVE-2023-0466"
}
]
}
Loading…
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…