If an application encounters a fatal protocol error and then calls SSL_shutdown() twice (once to send a close_notify, and once to receive one) then OpenSSL can respond differently to the calling application if a 0 byte record is received with invalid padding compared to if a 0 byte record is received with an invalid MAC. If the application then behaves differently based on that in a way that is detectable to the remote peer, then this amounts to a padding oracle that could be used to decrypt data. In order for this to be exploitable "non-stitched" ciphersuites must be in use. Stitched ciphersuites are optimised implementations of certain commonly used ciphersuites. Also the application must call SSL_shutdown() twice even if a protocol error has occurred (applications should not do this but some do anyway). Fixed in OpenSSL 1.0.2r (Affected 1.0.2-1.0.2q).
AI analysis not yet available
Plain-English explanation, risk summary, and remediation steps will appear here once AI analysis is complete.
No Fix Known
No patch has been released yet. Apply workarounds or mitigations where available.
| Vendor | Product | Versions | Fixed In |
|---|---|---|---|
| openssl | openssl | 1.0.2 - 1.0.2r | - |
| canonical | ubuntu_linux | - |
Published
CVE disclosed publicly
Last Modified
Most recent update
Indexed to CVEInsight
Added to this platform
AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
169
Affected Products
72
References
openssl / openssl
| - |
| canonical | ubuntu_linux | - | - |
| canonical | ubuntu_linux | - | - |
| debian | debian_linux | - | - |
| debian | debian_linux | - | - |
| netapp | active_iq_unified_manager | 7.3 | - |
| netapp | active_iq_unified_manager | 9.5 | - |
| netapp | active_iq_unified_manager | - | - |
| netapp | altavault | - | - |
| netapp | cloud_backup | - | - |
| netapp | clustered_data_ontap_antivirus_connector | - | - |
| netapp | element_software | - | - |
| netapp | hci_management_node | - | - |
| netapp | hyper_converged_infrastructure | - | - |
| netapp | oncommand_insight | - | - |
| netapp | oncommand_unified_manager | - | - |
| netapp | oncommand_unified_manager | - | - |
| netapp | oncommand_unified_manager_core_package | - | - |
| netapp | oncommand_workflow_automation | - | - |
| netapp | ontap_select_deploy | - | - |
| netapp | ontap_select_deploy_administration_utility | - | - |
| netapp | santricity_smi-s_provider | - | - |
| netapp | service_processor | - | - |
| netapp | smi-s_provider | - | - |
| netapp | snapcenter | - | - |
| netapp | snapdrive | - | - |
| netapp | snapdrive | - | - |
| netapp | snapprotect | - | - |
| netapp | solidfire | - | - |
| netapp | steelstore_cloud_integrated_storage | - | - |
| netapp | storage_automation_store | - | - |
| netapp | storagegrid | 9.0.0 - 9.0.4 | - |
| netapp | storagegrid | - | - |
| netapp | hci_compute_node | - | - |
| f5 | big-ip_access_policy_manager | 12.1.0 - 12.1.5 | - |
| f5 | big-ip_access_policy_manager | 13.0.0 - 13.1.3 | - |
| f5 | big-ip_access_policy_manager | 14.0.0 - 14.1.2 | - |
| f5 | big-ip_access_policy_manager | 15.0.0 - 15.1.0 | - |
| f5 | big-ip_advanced_firewall_manager | 12.1.0 - 12.1.5 | - |
| f5 | big-ip_advanced_firewall_manager | 13.0.0 - 13.1.3 | - |
| f5 | big-ip_advanced_firewall_manager | 14.0.0 - 14.1.2 | - |
| f5 | big-ip_advanced_firewall_manager | 15.0.0 - 15.1.0 | - |
| f5 | big-ip_analytics | 12.1.0 - 12.1.5 | - |
| f5 | big-ip_analytics | 13.0.0 - 13.1.3 | - |
| f5 | big-ip_analytics | 14.0.0 - 14.1.2 | - |
| f5 | big-ip_analytics | 15.0.0 - 15.1.0 | - |
| f5 | big-ip_application_acceleration_manager | 12.1.0 - 12.1.5 | - |
| f5 | big-ip_application_acceleration_manager | 13.0.0 - 13.1.3 | - |
| f5 | big-ip_application_acceleration_manager | 14.0.0 - 14.1.2 | - |
| f5 | big-ip_application_acceleration_manager | 15.0.0 - 15.1.0 | - |
| f5 | big-ip_application_security_manager | 12.1.0 - 12.1.5 | - |
| f5 | big-ip_application_security_manager | 13.0.0 - 13.1.3 | - |
| f5 | big-ip_application_security_manager | 14.0.0 - 14.1.2 | - |
| f5 | big-ip_application_security_manager | 15.0.0 - 15.1.0 | - |
| f5 | big-ip_domain_name_system | 12.1.0 - 12.1.5 | - |
| f5 | big-ip_domain_name_system | 13.0.0 - 13.1.3 | - |
| f5 | big-ip_domain_name_system | 14.0.0 - 14.1.2 | - |
| f5 | big-ip_domain_name_system | 15.0.0 - 15.1.0 | - |
| f5 | big-ip_edge_gateway | 12.1.0 - 12.1.5 | - |
| f5 | big-ip_edge_gateway | 13.0.0 - 13.1.3 | - |
| f5 | big-ip_edge_gateway | 14.0.0 - 14.1.2 | - |
| f5 | big-ip_edge_gateway | 15.0.0 - 15.1.0 | - |
| f5 | big-ip_fraud_protection_service | 12.1.0 - 12.1.5 | - |
| f5 | big-ip_fraud_protection_service | 13.0.0 - 13.1.3 | - |
| f5 | big-ip_fraud_protection_service | 14.0.0 - 14.1.2 | - |
| f5 | big-ip_fraud_protection_service | 15.0.0 - 15.1.0 | - |
| f5 | big-ip_global_traffic_manager | 12.1.0 - 12.1.5 | - |
| f5 | big-ip_global_traffic_manager | 13.0.0 - 13.1.3 | - |
| f5 | big-ip_global_traffic_manager | 14.0.0 - 14.1.2 | - |
| f5 | big-ip_global_traffic_manager | 15.0.0 - 15.1.0 | - |
| f5 | big-ip_link_controller | 12.1.0 - 12.1.5 | - |
| f5 | big-ip_link_controller | 13.0.0 - 13.1.3 | - |
| f5 | big-ip_link_controller | 14.0.0 - 14.1.2 | - |
| f5 | big-ip_link_controller | 15.0.0 - 15.1.0 | - |
| f5 | big-ip_local_traffic_manager | 12.1.0 - 12.1.5 | - |
| f5 | big-ip_local_traffic_manager | 13.0.0 - 13.1.3 | - |
| f5 | big-ip_local_traffic_manager | 14.0.0 - 14.1.2 | - |
| f5 | big-ip_local_traffic_manager | 15.0.0 - 15.1.0 | - |
| f5 | big-ip_policy_enforcement_manager | 12.1.0 - 12.1.5 | - |
| f5 | big-ip_policy_enforcement_manager | 13.0.0 - 13.1.3 | - |
| f5 | big-ip_policy_enforcement_manager | 14.0.0 - 14.1.2 | - |
| f5 | big-ip_policy_enforcement_manager | 15.0.0 - 15.1.0 | - |
| f5 | big-ip_webaccelerator | 12.1.0 - 12.1.5 | - |
| f5 | big-ip_webaccelerator | 13.0.0 - 13.1.3 | - |
| f5 | big-ip_webaccelerator | 14.0.0 - 14.1.2 | - |
| f5 | big-ip_webaccelerator | 15.0.0 - 15.1.0 | - |
| f5 | big-iq_centralized_management | 6.0.0 - 6.1.0 | - |
| f5 | big-iq_centralized_management | 7.0.0 - 7.1.0 | - |
| f5 | traffix_signaling_delivery_controller | 5.0.0 - 5.1.0 | - |
| f5 | traffix_signaling_delivery_controller | - | - |
| tenable | nessus | 8.2.3 | - |
| opensuse | leap | - | - |
| opensuse | leap | - | - |
| opensuse | leap | - | - |
| netapp | cn1610_firmware | - | - |
| netapp | a320_firmware | - | - |
| netapp | c190_firmware | - | - |
| netapp | a220_firmware | - | - |
| netapp | fas2720_firmware | - | - |
| netapp | fas2750_firmware | - | - |
| netapp | a800_firmware | - | - |
| fedoraproject | fedora | - | - |
| fedoraproject | fedora | - | - |
| fedoraproject | fedora | - | - |
| mcafee | agent | 5.6.0 - 5.6.4 | - |
| mcafee | data_exchange_layer | 4.0.0 - 6.0.0 | - |
| mcafee | threat_intelligence_exchange_server | 2.0.0 - 3.0.0 | - |
| mcafee | web_gateway | 7.0.0 - 9.0.0 | - |
| redhat | jboss_enterprise_web_server | - | - |
| redhat | virtualization | - | - |
| redhat | virtualization_host | - | - |
| redhat | enterprise_linux_desktop | - | - |
| redhat | enterprise_linux_desktop | - | - |
| redhat | enterprise_linux_server | - | - |
| redhat | enterprise_linux_server | - | - |
| redhat | enterprise_linux_workstation | - | - |
| redhat | enterprise_linux_workstation | - | - |
| oracle | api_gateway | - | - |
| oracle | business_intelligence | - | - |
| oracle | business_intelligence | - | - |
| oracle | business_intelligence | - | - |
| oracle | communications_diameter_signaling_router | - | - |
| oracle | communications_diameter_signaling_router | - | - |
| oracle | communications_diameter_signaling_router | - | - |
| oracle | communications_diameter_signaling_router | - | - |
| oracle | communications_diameter_signaling_router | - | - |
| oracle | communications_performance_intelligence_center | - | - |
| oracle | communications_session_border_controller | - | - |
| oracle | communications_session_border_controller | - | - |
| oracle | communications_session_border_controller | - | - |
| oracle | communications_session_border_controller | - | - |
| oracle | communications_session_border_controller | - | - |
| oracle | communications_session_router | - | - |
| oracle | communications_session_router | - | - |
| oracle | communications_session_router | - | - |
| oracle | communications_session_router | - | - |
| oracle | communications_session_router | - | - |
| oracle | communications_unified_session_manager | - | - |
| oracle | communications_unified_session_manager | - | - |
| oracle | endeca_server | - | - |
| oracle | enterprise_manager_base_platform | - | - |
| oracle | enterprise_manager_base_platform | - | - |
| oracle | enterprise_manager_base_platform | - | - |
| oracle | enterprise_manager_ops_center | - | - |
| oracle | enterprise_manager_ops_center | - | - |
| oracle | jd_edwards_enterpriseone_tools | - | - |
| oracle | jd_edwards_world_security | - | - |
| oracle | jd_edwards_world_security | - | - |
| oracle | jd_edwards_world_security | - | - |
| oracle | mysql | 5.6.0 - 5.6.43 | - |
| oracle | mysql | 5.7.0 - 5.7.25 | - |
| oracle | mysql | 8.0.0 - 8.0.15 | - |
| oracle | mysql_enterprise_monitor | 4.0.8 | - |
| oracle | mysql_enterprise_monitor | 8.0.0 - 8.0.14 | - |
| oracle | mysql_workbench | 8.0.16 | - |
| oracle | peoplesoft_enterprise_peopletools | - | - |
| oracle | peoplesoft_enterprise_peopletools | - | - |
| oracle | peoplesoft_enterprise_peopletools | - | - |
| oracle | secure_global_desktop | - | - |
| oracle | services_tools_bundle | - | - |
| paloaltonetworks | pan-os | 7.1.0 - 7.1.15 | - |
| paloaltonetworks | pan-os | 8.0.0 - 8.0.20 | - |
| paloaltonetworks | pan-os | 8.1.0 - 8.1.8 | - |
| paloaltonetworks | pan-os | 9.0.0 - 9.0.2 | - |
| nodejs | node.js | 6.0.0 - 6.8.1 | - |
| nodejs | node.js | 6.9.0 - 6.17.0 | - |
| nodejs | node.js | 8.0.0 - 8.8.1 | - |
| nodejs | node.js | 8.9.0 - 8.15.1 | - |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Exploitability
Impact