Search

Find a vulnerability

Search criteria

    4 vulnerabilities found for s2750_firmware by huawei

    CVE-2014-4706 (GCVE-0-2014-4706)

    Vulnerability from nvd – Published: 2017-04-02 20:00 – Updated: 2024-08-06 11:27
    VLAI
    Summary
    Huawei Campus S3700HI with software V200R001C00SPC300; Campus S5700 with software V200R002C00SPC100; Campus S7700 with software V200R003C00SPC300,V200R003C00SPC500; LSW S9700 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500; S2350 with software V200R003C00SPC300; S2750 with software V200R003C00SPC300; S5300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300; S5700 with software V200R001C00SPC300,V200R003C00SPC300; S6300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300; S6700 S3300HI with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300; S7700 with software V200R001C00SPC300; S9300 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500; S9300E with software V200R003C00SPC300,V200R003C00SPC500 allow attackers to keep sending malformed packets to cause a denial of service (DoS) attack, aka a heap overflow.
    Severity
    No CVSS data available.
    CWE
    • Heap Overflow
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a Campus S3700HI, S5700, S6700 S3300HI, S5300, S6300, S9300, S7700,LSW S9700,Campus S5700, S6700,Campus S7700, S9300E, S2350, S2750,S9300,S9300E, Campus S3700HI with software V200R001C00SPC300,Campus S5700 with software V200R002C00SPC100,Campus S7700 with software V200R003C00SPC300,V200R003C00SPC500,LSW S9700 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500,S2350 with software V200R003C00SPC300,S2750 with software V200R003C00SPC300,S5300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S5700 with software V200R001C00SPC300,V200R003C00SPC300,S6300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S6700 S3300HI with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S7700 with software V200R001C00SPC300,S9300 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500,S9300E with software V200R003C00SPC300,V200R003C00SPC500, Affected: Campus S3700HI, S5700, S6700 S3300HI, S5300, S6300, S9300, S7700,LSW S9700,Campus S5700, S6700,Campus S7700, S9300E, S2350, S2750,S9300,S9300E, Campus S3700HI with software V200R001C00SPC300,Campus S5700 with software V200R002C00SPC100,Campus S7700 with software V200R003C00SPC300,V200R003C00SPC500,LSW S9700 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500,S2350 with software V200R003C00SPC300,S2750 with software V200R003C00SPC300,S5300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S5700 with software V200R001C00SPC300,V200R003C00SPC300,S6300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S6700 S3300HI with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S7700 with software V200R001C00SPC300,S9300 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500,S9300E with software V200R003C00SPC300,V200R003C00SPC500,
    Date Public
    2017-03-27 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T11:27:36.889Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.huawei.com/en/psirt/security-advisories/hw-343218"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Campus S3700HI, S5700, S6700 S3300HI, S5300, S6300, S9300, S7700,LSW S9700,Campus S5700, S6700,Campus S7700, S9300E, S2350, S2750,S9300,S9300E, Campus S3700HI with software V200R001C00SPC300,Campus S5700 with software V200R002C00SPC100,Campus S7700 with software V200R003C00SPC300,V200R003C00SPC500,LSW S9700 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500,S2350 with software V200R003C00SPC300,S2750 with software V200R003C00SPC300,S5300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S5700 with software V200R001C00SPC300,V200R003C00SPC300,S6300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S6700 S3300HI with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S7700 with software V200R001C00SPC300,S9300 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500,S9300E with software V200R003C00SPC300,V200R003C00SPC500,",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "Campus S3700HI, S5700, S6700 S3300HI, S5300, S6300, S9300, S7700,LSW S9700,Campus S5700, S6700,Campus S7700, S9300E, S2350, S2750,S9300,S9300E, Campus S3700HI with software V200R001C00SPC300,Campus S5700 with software V200R002C00SPC100,Campus S7700 with software V200R003C00SPC300,V200R003C00SPC500,LSW S9700 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500,S2350 with software V200R003C00SPC300,S2750 with software V200R003C00SPC300,S5300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S5700 with software V200R001C00SPC300,V200R003C00SPC300,S6300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S6700 S3300HI with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S7700 with software V200R001C00SPC300,S9300 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500,S9300E with software V200R003C00SPC300,V200R003C00SPC500,"
                }
              ]
            }
          ],
          "datePublic": "2017-03-27T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Huawei Campus S3700HI with software V200R001C00SPC300; Campus S5700 with software V200R002C00SPC100; Campus S7700 with software V200R003C00SPC300,V200R003C00SPC500; LSW S9700 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500; S2350 with software V200R003C00SPC300; S2750 with software V200R003C00SPC300; S5300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300; S5700 with software V200R001C00SPC300,V200R003C00SPC300; S6300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300; S6700 S3300HI with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300; S7700 with software V200R001C00SPC300; S9300 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500; S9300E with software V200R003C00SPC300,V200R003C00SPC500 allow attackers to keep sending malformed packets to cause a denial of service (DoS) attack, aka a heap overflow."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Heap Overflow",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-04-02T19:57:01.000Z",
            "orgId": "25ac1063-e409-4190-8079-24548c77ea2e",
            "shortName": "huawei"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.huawei.com/en/psirt/security-advisories/hw-343218"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "psirt@huawei.com",
              "ID": "CVE-2014-4706",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Campus S3700HI, S5700, S6700 S3300HI, S5300, S6300, S9300, S7700,LSW S9700,Campus S5700, S6700,Campus S7700, S9300E, S2350, S2750,S9300,S9300E, Campus S3700HI with software V200R001C00SPC300,Campus S5700 with software V200R002C00SPC100,Campus S7700 with software V200R003C00SPC300,V200R003C00SPC500,LSW S9700 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500,S2350 with software V200R003C00SPC300,S2750 with software V200R003C00SPC300,S5300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S5700 with software V200R001C00SPC300,V200R003C00SPC300,S6300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S6700 S3300HI with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S7700 with software V200R001C00SPC300,S9300 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500,S9300E with software V200R003C00SPC300,V200R003C00SPC500,",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Campus S3700HI, S5700, S6700 S3300HI, S5300, S6300, S9300, S7700,LSW S9700,Campus S5700, S6700,Campus S7700, S9300E, S2350, S2750,S9300,S9300E, Campus S3700HI with software V200R001C00SPC300,Campus S5700 with software V200R002C00SPC100,Campus S7700 with software V200R003C00SPC300,V200R003C00SPC500,LSW S9700 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500,S2350 with software V200R003C00SPC300,S2750 with software V200R003C00SPC300,S5300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S5700 with software V200R001C00SPC300,V200R003C00SPC300,S6300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S6700 S3300HI with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S7700 with software V200R001C00SPC300,S9300 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500,S9300E with software V200R003C00SPC300,V200R003C00SPC500,"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Huawei Campus S3700HI with software V200R001C00SPC300; Campus S5700 with software V200R002C00SPC100; Campus S7700 with software V200R003C00SPC300,V200R003C00SPC500; LSW S9700 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500; S2350 with software V200R003C00SPC300; S2750 with software V200R003C00SPC300; S5300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300; S5700 with software V200R001C00SPC300,V200R003C00SPC300; S6300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300; S6700 S3300HI with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300; S7700 with software V200R001C00SPC300; S9300 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500; S9300E with software V200R003C00SPC300,V200R003C00SPC500 allow attackers to keep sending malformed packets to cause a denial of service (DoS) attack, aka a heap overflow."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Heap Overflow"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://www.huawei.com/en/psirt/security-advisories/hw-343218",
                  "refsource": "CONFIRM",
                  "url": "http://www.huawei.com/en/psirt/security-advisories/hw-343218"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "25ac1063-e409-4190-8079-24548c77ea2e",
        "assignerShortName": "huawei",
        "cveId": "CVE-2014-4706",
        "datePublished": "2017-04-02T20:00:00.000Z",
        "dateReserved": "2014-07-01T00:00:00.000Z",
        "dateUpdated": "2024-08-06T11:27:36.889Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2015-2808 (GCVE-0-2015-2808)

    Vulnerability from nvd – Published: 2015-04-01 00:00 – Updated: 2026-05-28 12:53
    VLAI
    Summary
    The RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combine state data with key data during the initialization phase, which makes it easier for remote attackers to conduct plaintext-recovery attacks against the initial bytes of a stream by sniffing network traffic that occasionally relies on keys affected by the Invariance Weakness, and then using a brute-force approach involving LSB values, aka the "Bar Mitzvah" issue.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • n/a
    • CWE-327 - Use of a Broken or Risky Cryptographic Algorithm
    Assigner
    References
    URL Tags
    http://marc.info/?l=bugtraq&m=143818140118771&w=2 vendor-advisory
    http://rhn.redhat.com/errata/RHSA-2015-1243.html vendor-advisory
    http://rhn.redhat.com/errata/RHSA-2015-1007.html vendor-advisory
    http://marc.info/?l=bugtraq&m=143817899717054&w=2 vendor-advisory
    http://marc.info/?l=bugtraq&m=144493176821532&w=2 vendor-advisory
    http://www.oracle.com/technetwork/topics/security…
    http://rhn.redhat.com/errata/RHSA-2015-1006.html vendor-advisory
    https://h20564.www2.hpe.com/portal/site/hpsc/publ…
    https://kb.juniper.net/JSA10783
    http://www.securitytracker.com/id/1033737 vdb-entry
    http://lists.opensuse.org/opensuse-security-annou… vendor-advisory
    http://marc.info/?l=bugtraq&m=144060576831314&w=2 vendor-advisory
    http://www.oracle.com/technetwork/security-adviso…
    http://www.securitytracker.com/id/1036222 vdb-entry
    http://h20564.www2.hpe.com/hpsc/doc/public/displa…
    http://www-304.ibm.com/support/docview.wss?uid=sw…
    https://security.gentoo.org/glsa/201512-10 vendor-advisory
    http://rhn.redhat.com/errata/RHSA-2015-1229.html vendor-advisory
    https://h20566.www2.hpe.com/hpsc/doc/public/displ…
    http://www.securitytracker.com/id/1032600 vdb-entry
    http://www.securitytracker.com/id/1032910 vdb-entry
    http://www.ubuntu.com/usn/USN-2706-1 vendor-advisory
    http://rhn.redhat.com/errata/RHSA-2015-1526.html vendor-advisory
    http://marc.info/?l=bugtraq&m=143817021313142&w=2 vendor-advisory
    http://www.oracle.com/technetwork/security-adviso…
    http://www.securitytracker.com/id/1032599 vdb-entry
    http://marc.info/?l=bugtraq&m=144104533800819&w=2 vendor-advisory
    http://www-304.ibm.com/support/docview.wss?uid=sw…
    https://h20564.www2.hpe.com/portal/site/hpsc/publ…
    https://h20566.www2.hpe.com/hpsc/doc/public/displ…
    https://kc.mcafee.com/corporate/index?page=conten…
    http://marc.info/?l=bugtraq&m=144043644216842&w=2 vendor-advisory
    http://www.securitytracker.com/id/1032734 vdb-entry
    http://www-01.ibm.com/support/docview.wss?uid=swg… vendor-advisory
    https://h20566.www2.hpe.com/portal/site/hpsc/publ…
    http://www.securitytracker.com/id/1033769 vdb-entry
    http://www.securitytracker.com/id/1032707 vdb-entry
    http://lists.opensuse.org/opensuse-security-annou… vendor-advisory
    http://rhn.redhat.com/errata/RHSA-2015-1091.html vendor-advisory
    http://marc.info/?l=bugtraq&m=144069189622016&w=2 vendor-advisory
    http://www-01.ibm.com/support/docview.wss?uid=swg… vendor-advisory
    http://rhn.redhat.com/errata/RHSA-2015-1228.html vendor-advisory
    http://marc.info/?l=bugtraq&m=144060606031437&w=2 vendor-advisory
    http://www.securitytracker.com/id/1032708 vdb-entry
    http://www.huawei.com/en/psirt/security-advisorie…
    http://www.debian.org/security/2015/dsa-3316 vendor-advisory
    http://lists.opensuse.org/opensuse-security-annou… vendor-advisory
    http://www.oracle.com/technetwork/security-adviso…
    http://www.securitytracker.com/id/1033415 vdb-entry
    https://h20564.www2.hpe.com/portal/site/hpsc/publ…
    https://www-947.ibm.com/support/entry/portal/docd…
    http://marc.info/?l=bugtraq&m=144104565600964&w=2 vendor-advisory
    http://www-01.ibm.com/support/docview.wss?uid=swg…
    http://marc.info/?l=bugtraq&m=144102017024820&w=2 vendor-advisory
    http://www.securitytracker.com/id/1033432 vdb-entry
    http://marc.info/?l=bugtraq&m=143629696317098&w=2 vendor-advisory
    http://lists.opensuse.org/opensuse-security-annou… vendor-advisory
    http://www.securitytracker.com/id/1032858 vdb-entry
    https://h20564.www2.hp.com/portal/site/hpsc/publi… vendor-advisory
    http://www.securitytracker.com/id/1032788 vdb-entry
    http://www.ubuntu.com/usn/USN-2696-1 vendor-advisory
    https://www.blackhat.com/docs/asia-15/materials/a…
    http://www.debian.org/security/2015/dsa-3339 vendor-advisory
    http://rhn.redhat.com/errata/RHSA-2015-1020.html vendor-advisory
    http://rhn.redhat.com/errata/RHSA-2015-1242.html vendor-advisory
    http://kb.juniper.net/InfoCenter/index?page=conte…
    https://h20564.www2.hpe.com/portal/site/hpsc/publ…
    http://lists.opensuse.org/opensuse-security-annou… vendor-advisory
    http://www.securitytracker.com/id/1033431 vdb-entry
    http://www1.huawei.com/en/security/psirt/security…
    https://h20566.www2.hpe.com/portal/site/hpsc/publ…
    http://www.securitytracker.com/id/1032868 vdb-entry
    http://marc.info/?l=bugtraq&m=144059703728085&w=2 vendor-advisory
    http://www.oracle.com/technetwork/security-adviso…
    http://www.securityfocus.com/bid/91787 vdb-entry
    http://lists.opensuse.org/opensuse-security-annou… vendor-advisory
    http://lists.opensuse.org/opensuse-security-annou… vendor-advisory
    http://lists.opensuse.org/opensuse-security-annou… vendor-advisory
    http://rhn.redhat.com/errata/RHSA-2015-1241.html vendor-advisory
    https://h20564.www2.hpe.com/portal/site/hpsc/publ…
    http://kb.juniper.net/InfoCenter/index?page=conte…
    http://rhn.redhat.com/errata/RHSA-2015-1230.html vendor-advisory
    https://h20566.www2.hpe.com/portal/site/hpsc/publ…
    http://marc.info/?l=bugtraq&m=143456209711959&w=2 vendor-advisory
    http://www.securitytracker.com/id/1033386 vdb-entry
    http://marc.info/?l=bugtraq&m=143741441012338&w=2 vendor-advisory
    http://www.securitytracker.com/id/1033072 vdb-entry
    https://h20564.www2.hpe.com/portal/site/hpsc/publ…
    http://lists.opensuse.org/opensuse-security-annou… vendor-advisory
    https://h20564.www2.hpe.com/portal/site/hpsc/publ…
    http://rhn.redhat.com/errata/RHSA-2015-1021.html vendor-advisory
    http://www-304.ibm.com/support/docview.wss?uid=sw…
    http://lists.opensuse.org/opensuse-security-annou… vendor-advisory
    https://h20566.www2.hpe.com/portal/site/hpsc/publ…
    http://lists.opensuse.org/opensuse-security-annou… vendor-advisory
    http://marc.info/?l=bugtraq&m=144059660127919&w=2 vendor-advisory
    http://www.securityfocus.com/bid/73684 vdb-entry
    http://www.securitytracker.com/id/1032990 vdb-entry
    http://www.securitytracker.com/id/1033071 vdb-entry
    http://lists.opensuse.org/opensuse-security-annou… vendor-advisory
    https://www.secpod.com/blog/cve-2015-2808-bar-mit…
    Date Public
    2015-03-26 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T05:24:38.828Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "SSRT102127",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=143818140118771\u0026w=2"
              },
              {
                "name": "RHSA-2015:1243",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://rhn.redhat.com/errata/RHSA-2015-1243.html"
              },
              {
                "name": "RHSA-2015:1007",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://rhn.redhat.com/errata/RHSA-2015-1007.html"
              },
              {
                "name": "HPSBGN03367",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=143817899717054\u0026w=2"
              },
              {
                "name": "HPSBUX03512",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=144493176821532\u0026w=2"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html"
              },
              {
                "name": "RHSA-2015:1006",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://rhn.redhat.com/errata/RHSA-2015-1006.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773256"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://kb.juniper.net/JSA10783"
              },
              {
                "name": "1033737",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1033737"
              },
              {
                "name": "SUSE-SU-2015:2192",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00004.html"
              },
              {
                "name": "HPSBGN03399",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=144060576831314\u0026w=2"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html"
              },
              {
                "name": "1036222",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1036222"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04779034"
              },
              {
                "name": "SSRT102129",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=143817899717054\u0026w=2"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://www-304.ibm.com/support/docview.wss?uid=swg21960769"
              },
              {
                "name": "GLSA-201512-10",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://security.gentoo.org/glsa/201512-10"
              },
              {
                "name": "RHSA-2015:1229",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://rhn.redhat.com/errata/RHSA-2015-1229.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04708650"
              },
              {
                "name": "1032600",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1032600"
              },
              {
                "name": "1032910",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1032910"
              },
              {
                "name": "USN-2706-1",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www.ubuntu.com/usn/USN-2706-1"
              },
              {
                "name": "RHSA-2015:1526",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://rhn.redhat.com/errata/RHSA-2015-1526.html"
              },
              {
                "name": "SSRT102133",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=143817021313142\u0026w=2"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html"
              },
              {
                "name": "1032599",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1032599"
              },
              {
                "name": "HPSBMU03401",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=144104533800819\u0026w=2"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://www-304.ibm.com/support/docview.wss?uid=swg21903565"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04772190"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04711380"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10163"
              },
              {
                "name": "HPSBMU03345",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=144043644216842\u0026w=2"
              },
              {
                "name": "1032734",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1032734"
              },
              {
                "name": "IV71892",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IV71892"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05193347"
              },
              {
                "name": "1033769",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1033769"
              },
              {
                "name": "1032707",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1032707"
              },
              {
                "name": "openSUSE-SU-2015:1289",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00040.html"
              },
              {
                "name": "HPSBGN03372",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=143817021313142\u0026w=2"
              },
              {
                "name": "RHSA-2015:1091",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://rhn.redhat.com/errata/RHSA-2015-1091.html"
              },
              {
                "name": "HPSBGN03402",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=144069189622016\u0026w=2"
              },
              {
                "name": "IV71888",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IV71888"
              },
              {
                "name": "RHSA-2015:1228",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://rhn.redhat.com/errata/RHSA-2015-1228.html"
              },
              {
                "name": "HPSBGN03405",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=144060606031437\u0026w=2"
              },
              {
                "name": "1032708",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1032708"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://www.huawei.com/en/psirt/security-advisories/hw-454055"
              },
              {
                "name": "DSA-3316",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www.debian.org/security/2015/dsa-3316"
              },
              {
                "name": "SUSE-SU-2015:2166",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00000.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"
              },
              {
                "name": "1033415",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1033415"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04832246"
              },
              {
                "name": "HPSBGN03366",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=143818140118771\u0026w=2"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5098709"
              },
              {
                "name": "HPSBGN03403",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=144104565600964\u0026w=2"
              },
              {
                "name": "SSRT102254",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=144493176821532\u0026w=2"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21883640"
              },
              {
                "name": "HPSBGN03407",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=144102017024820\u0026w=2"
              },
              {
                "name": "1033432",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1033432"
              },
              {
                "name": "HPSBGN03354",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=143629696317098\u0026w=2"
              },
              {
                "name": "SUSE-SU-2015:1138",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00022.html"
              },
              {
                "name": "1032858",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1032858"
              },
              {
                "name": "SSRT102073",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04687922"
              },
              {
                "name": "1032788",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1032788"
              },
              {
                "name": "USN-2696-1",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www.ubuntu.com/usn/USN-2696-1"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.blackhat.com/docs/asia-15/materials/asia-15-Mantin-Bar-Mitzvah-Attack-Breaking-SSL-With-13-Year-Old-RC4-Weakness-wp.pdf"
              },
              {
                "name": "DSA-3339",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www.debian.org/security/2015/dsa-3339"
              },
              {
                "name": "RHSA-2015:1020",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://rhn.redhat.com/errata/RHSA-2015-1020.html"
              },
              {
                "name": "RHSA-2015:1242",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://rhn.redhat.com/errata/RHSA-2015-1242.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10727"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773241"
              },
              {
                "name": "SUSE-SU-2015:1086",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00015.html"
              },
              {
                "name": "1033431",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1033431"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-454055.htm"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05085988"
              },
              {
                "name": "1032868",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1032868"
              },
              {
                "name": "HPSBGN03415",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=144059703728085\u0026w=2"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html"
              },
              {
                "name": "91787",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/91787"
              },
              {
                "name": "SUSE-SU-2015:1319",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00046.html"
              },
              {
                "name": "SUSE-SU-2015:1320",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00047.html"
              },
              {
                "name": "openSUSE-SU-2015:1288",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00039.html"
              },
              {
                "name": "RHSA-2015:1241",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://rhn.redhat.com/errata/RHSA-2015-1241.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04770140"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10705"
              },
              {
                "name": "RHSA-2015:1230",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://rhn.redhat.com/errata/RHSA-2015-1230.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05336888"
              },
              {
                "name": "HPSBGN03338",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=143456209711959\u0026w=2"
              },
              {
                "name": "1033386",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1033386"
              },
              {
                "name": "HPSBMU03377",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=143741441012338\u0026w=2"
              },
              {
                "name": "1033072",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1033072"
              },
              {
                "name": "SSRT102150",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=143741441012338\u0026w=2"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04926789"
              },
              {
                "name": "SUSE-SU-2015:1085",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00014.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773119"
              },
              {
                "name": "RHSA-2015:1021",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://rhn.redhat.com/errata/RHSA-2015-1021.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://www-304.ibm.com/support/docview.wss?uid=swg21960015"
              },
              {
                "name": "SUSE-SU-2015:1073",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00013.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05289935"
              },
              {
                "name": "SUSE-SU-2015:1161",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00031.html"
              },
              {
                "name": "HPSBGN03414",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=144059660127919\u0026w=2"
              },
              {
                "name": "73684",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/73684"
              },
              {
                "name": "1032990",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1032990"
              },
              {
                "name": "1033071",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1033071"
              },
              {
                "name": "SUSE-SU-2016:0113",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00005.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.secpod.com/blog/cve-2015-2808-bar-mitzvah-attack-in-rc4-2/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "HIGH",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "NONE",
                  "baseScore": 3.7,
                  "baseSeverity": "LOW",
                  "confidentialityImpact": "LOW",
                  "integrityImpact": "NONE",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2015-2808",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-27T23:55:11.123525Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-327",
                    "description": "CWE-327 Use of a Broken or Risky Cryptographic Algorithm",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-28T12:53:51.914Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2015-03-26T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "The RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combine state data with key data during the initialization phase, which makes it easier for remote attackers to conduct plaintext-recovery attacks against the initial bytes of a stream by sniffing network traffic that occasionally relies on keys affected by the Invariance Weakness, and then using a brute-force approach involving LSB values, aka the \"Bar Mitzvah\" issue."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-09-07T16:46:59.848Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "SSRT102127",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=143818140118771\u0026w=2"
            },
            {
              "name": "RHSA-2015:1243",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-1243.html"
            },
            {
              "name": "RHSA-2015:1007",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-1007.html"
            },
            {
              "name": "HPSBGN03367",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=143817899717054\u0026w=2"
            },
            {
              "name": "HPSBUX03512",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=144493176821532\u0026w=2"
            },
            {
              "url": "http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html"
            },
            {
              "name": "RHSA-2015:1006",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-1006.html"
            },
            {
              "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773256"
            },
            {
              "url": "https://kb.juniper.net/JSA10783"
            },
            {
              "name": "1033737",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1033737"
            },
            {
              "name": "SUSE-SU-2015:2192",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00004.html"
            },
            {
              "name": "HPSBGN03399",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=144060576831314\u0026w=2"
            },
            {
              "url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html"
            },
            {
              "name": "1036222",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1036222"
            },
            {
              "url": "http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04779034"
            },
            {
              "name": "SSRT102129",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=143817899717054\u0026w=2"
            },
            {
              "url": "http://www-304.ibm.com/support/docview.wss?uid=swg21960769"
            },
            {
              "name": "GLSA-201512-10",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://security.gentoo.org/glsa/201512-10"
            },
            {
              "name": "RHSA-2015:1229",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-1229.html"
            },
            {
              "url": "https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04708650"
            },
            {
              "name": "1032600",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1032600"
            },
            {
              "name": "1032910",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1032910"
            },
            {
              "name": "USN-2706-1",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www.ubuntu.com/usn/USN-2706-1"
            },
            {
              "name": "RHSA-2015:1526",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-1526.html"
            },
            {
              "name": "SSRT102133",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=143817021313142\u0026w=2"
            },
            {
              "url": "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html"
            },
            {
              "name": "1032599",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1032599"
            },
            {
              "name": "HPSBMU03401",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=144104533800819\u0026w=2"
            },
            {
              "url": "http://www-304.ibm.com/support/docview.wss?uid=swg21903565"
            },
            {
              "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04772190"
            },
            {
              "url": "https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04711380"
            },
            {
              "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10163"
            },
            {
              "name": "HPSBMU03345",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=144043644216842\u0026w=2"
            },
            {
              "name": "1032734",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1032734"
            },
            {
              "name": "IV71892",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IV71892"
            },
            {
              "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05193347"
            },
            {
              "name": "1033769",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1033769"
            },
            {
              "name": "1032707",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1032707"
            },
            {
              "name": "openSUSE-SU-2015:1289",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00040.html"
            },
            {
              "name": "HPSBGN03372",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=143817021313142\u0026w=2"
            },
            {
              "name": "RHSA-2015:1091",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-1091.html"
            },
            {
              "name": "HPSBGN03402",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=144069189622016\u0026w=2"
            },
            {
              "name": "IV71888",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IV71888"
            },
            {
              "name": "RHSA-2015:1228",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-1228.html"
            },
            {
              "name": "HPSBGN03405",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=144060606031437\u0026w=2"
            },
            {
              "name": "1032708",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1032708"
            },
            {
              "url": "http://www.huawei.com/en/psirt/security-advisories/hw-454055"
            },
            {
              "name": "DSA-3316",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www.debian.org/security/2015/dsa-3316"
            },
            {
              "name": "SUSE-SU-2015:2166",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00000.html"
            },
            {
              "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"
            },
            {
              "name": "1033415",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1033415"
            },
            {
              "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04832246"
            },
            {
              "name": "HPSBGN03366",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=143818140118771\u0026w=2"
            },
            {
              "url": "https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5098709"
            },
            {
              "name": "HPSBGN03403",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=144104565600964\u0026w=2"
            },
            {
              "name": "SSRT102254",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=144493176821532\u0026w=2"
            },
            {
              "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21883640"
            },
            {
              "name": "HPSBGN03407",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=144102017024820\u0026w=2"
            },
            {
              "name": "1033432",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1033432"
            },
            {
              "name": "HPSBGN03354",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=143629696317098\u0026w=2"
            },
            {
              "name": "SUSE-SU-2015:1138",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00022.html"
            },
            {
              "name": "1032858",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1032858"
            },
            {
              "name": "SSRT102073",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04687922"
            },
            {
              "name": "1032788",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1032788"
            },
            {
              "name": "USN-2696-1",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www.ubuntu.com/usn/USN-2696-1"
            },
            {
              "url": "https://www.blackhat.com/docs/asia-15/materials/asia-15-Mantin-Bar-Mitzvah-Attack-Breaking-SSL-With-13-Year-Old-RC4-Weakness-wp.pdf"
            },
            {
              "name": "DSA-3339",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www.debian.org/security/2015/dsa-3339"
            },
            {
              "name": "RHSA-2015:1020",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-1020.html"
            },
            {
              "name": "RHSA-2015:1242",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-1242.html"
            },
            {
              "url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10727"
            },
            {
              "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773241"
            },
            {
              "name": "SUSE-SU-2015:1086",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00015.html"
            },
            {
              "name": "1033431",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1033431"
            },
            {
              "url": "http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-454055.htm"
            },
            {
              "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05085988"
            },
            {
              "name": "1032868",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1032868"
            },
            {
              "name": "HPSBGN03415",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=144059703728085\u0026w=2"
            },
            {
              "url": "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html"
            },
            {
              "name": "91787",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securityfocus.com/bid/91787"
            },
            {
              "name": "SUSE-SU-2015:1319",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00046.html"
            },
            {
              "name": "SUSE-SU-2015:1320",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00047.html"
            },
            {
              "name": "openSUSE-SU-2015:1288",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00039.html"
            },
            {
              "name": "RHSA-2015:1241",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-1241.html"
            },
            {
              "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04770140"
            },
            {
              "url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10705"
            },
            {
              "name": "RHSA-2015:1230",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-1230.html"
            },
            {
              "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05336888"
            },
            {
              "name": "HPSBGN03338",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=143456209711959\u0026w=2"
            },
            {
              "name": "1033386",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1033386"
            },
            {
              "name": "HPSBMU03377",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=143741441012338\u0026w=2"
            },
            {
              "name": "1033072",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1033072"
            },
            {
              "name": "SSRT102150",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=143741441012338\u0026w=2"
            },
            {
              "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04926789"
            },
            {
              "name": "SUSE-SU-2015:1085",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00014.html"
            },
            {
              "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773119"
            },
            {
              "name": "RHSA-2015:1021",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-1021.html"
            },
            {
              "url": "http://www-304.ibm.com/support/docview.wss?uid=swg21960015"
            },
            {
              "name": "SUSE-SU-2015:1073",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00013.html"
            },
            {
              "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05289935"
            },
            {
              "name": "SUSE-SU-2015:1161",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00031.html"
            },
            {
              "name": "HPSBGN03414",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=144059660127919\u0026w=2"
            },
            {
              "name": "73684",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securityfocus.com/bid/73684"
            },
            {
              "name": "1032990",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1032990"
            },
            {
              "name": "1033071",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1033071"
            },
            {
              "name": "SUSE-SU-2016:0113",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00005.html"
            },
            {
              "url": "https://www.secpod.com/blog/cve-2015-2808-bar-mitzvah-attack-in-rc4-2/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2015-2808",
        "datePublished": "2015-04-01T00:00:00.000Z",
        "dateReserved": "2015-03-31T00:00:00.000Z",
        "dateUpdated": "2026-05-28T12:53:51.914Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2014-4706 (GCVE-0-2014-4706)

    Vulnerability from cvelistv5 – Published: 2017-04-02 20:00 – Updated: 2024-08-06 11:27
    VLAI
    Summary
    Huawei Campus S3700HI with software V200R001C00SPC300; Campus S5700 with software V200R002C00SPC100; Campus S7700 with software V200R003C00SPC300,V200R003C00SPC500; LSW S9700 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500; S2350 with software V200R003C00SPC300; S2750 with software V200R003C00SPC300; S5300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300; S5700 with software V200R001C00SPC300,V200R003C00SPC300; S6300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300; S6700 S3300HI with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300; S7700 with software V200R001C00SPC300; S9300 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500; S9300E with software V200R003C00SPC300,V200R003C00SPC500 allow attackers to keep sending malformed packets to cause a denial of service (DoS) attack, aka a heap overflow.
    Severity
    No CVSS data available.
    CWE
    • Heap Overflow
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a Campus S3700HI, S5700, S6700 S3300HI, S5300, S6300, S9300, S7700,LSW S9700,Campus S5700, S6700,Campus S7700, S9300E, S2350, S2750,S9300,S9300E, Campus S3700HI with software V200R001C00SPC300,Campus S5700 with software V200R002C00SPC100,Campus S7700 with software V200R003C00SPC300,V200R003C00SPC500,LSW S9700 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500,S2350 with software V200R003C00SPC300,S2750 with software V200R003C00SPC300,S5300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S5700 with software V200R001C00SPC300,V200R003C00SPC300,S6300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S6700 S3300HI with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S7700 with software V200R001C00SPC300,S9300 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500,S9300E with software V200R003C00SPC300,V200R003C00SPC500, Affected: Campus S3700HI, S5700, S6700 S3300HI, S5300, S6300, S9300, S7700,LSW S9700,Campus S5700, S6700,Campus S7700, S9300E, S2350, S2750,S9300,S9300E, Campus S3700HI with software V200R001C00SPC300,Campus S5700 with software V200R002C00SPC100,Campus S7700 with software V200R003C00SPC300,V200R003C00SPC500,LSW S9700 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500,S2350 with software V200R003C00SPC300,S2750 with software V200R003C00SPC300,S5300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S5700 with software V200R001C00SPC300,V200R003C00SPC300,S6300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S6700 S3300HI with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S7700 with software V200R001C00SPC300,S9300 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500,S9300E with software V200R003C00SPC300,V200R003C00SPC500,
    Date Public
    2017-03-27 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T11:27:36.889Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.huawei.com/en/psirt/security-advisories/hw-343218"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Campus S3700HI, S5700, S6700 S3300HI, S5300, S6300, S9300, S7700,LSW S9700,Campus S5700, S6700,Campus S7700, S9300E, S2350, S2750,S9300,S9300E, Campus S3700HI with software V200R001C00SPC300,Campus S5700 with software V200R002C00SPC100,Campus S7700 with software V200R003C00SPC300,V200R003C00SPC500,LSW S9700 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500,S2350 with software V200R003C00SPC300,S2750 with software V200R003C00SPC300,S5300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S5700 with software V200R001C00SPC300,V200R003C00SPC300,S6300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S6700 S3300HI with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S7700 with software V200R001C00SPC300,S9300 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500,S9300E with software V200R003C00SPC300,V200R003C00SPC500,",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "Campus S3700HI, S5700, S6700 S3300HI, S5300, S6300, S9300, S7700,LSW S9700,Campus S5700, S6700,Campus S7700, S9300E, S2350, S2750,S9300,S9300E, Campus S3700HI with software V200R001C00SPC300,Campus S5700 with software V200R002C00SPC100,Campus S7700 with software V200R003C00SPC300,V200R003C00SPC500,LSW S9700 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500,S2350 with software V200R003C00SPC300,S2750 with software V200R003C00SPC300,S5300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S5700 with software V200R001C00SPC300,V200R003C00SPC300,S6300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S6700 S3300HI with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S7700 with software V200R001C00SPC300,S9300 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500,S9300E with software V200R003C00SPC300,V200R003C00SPC500,"
                }
              ]
            }
          ],
          "datePublic": "2017-03-27T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Huawei Campus S3700HI with software V200R001C00SPC300; Campus S5700 with software V200R002C00SPC100; Campus S7700 with software V200R003C00SPC300,V200R003C00SPC500; LSW S9700 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500; S2350 with software V200R003C00SPC300; S2750 with software V200R003C00SPC300; S5300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300; S5700 with software V200R001C00SPC300,V200R003C00SPC300; S6300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300; S6700 S3300HI with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300; S7700 with software V200R001C00SPC300; S9300 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500; S9300E with software V200R003C00SPC300,V200R003C00SPC500 allow attackers to keep sending malformed packets to cause a denial of service (DoS) attack, aka a heap overflow."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Heap Overflow",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-04-02T19:57:01.000Z",
            "orgId": "25ac1063-e409-4190-8079-24548c77ea2e",
            "shortName": "huawei"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.huawei.com/en/psirt/security-advisories/hw-343218"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "psirt@huawei.com",
              "ID": "CVE-2014-4706",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Campus S3700HI, S5700, S6700 S3300HI, S5300, S6300, S9300, S7700,LSW S9700,Campus S5700, S6700,Campus S7700, S9300E, S2350, S2750,S9300,S9300E, Campus S3700HI with software V200R001C00SPC300,Campus S5700 with software V200R002C00SPC100,Campus S7700 with software V200R003C00SPC300,V200R003C00SPC500,LSW S9700 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500,S2350 with software V200R003C00SPC300,S2750 with software V200R003C00SPC300,S5300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S5700 with software V200R001C00SPC300,V200R003C00SPC300,S6300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S6700 S3300HI with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S7700 with software V200R001C00SPC300,S9300 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500,S9300E with software V200R003C00SPC300,V200R003C00SPC500,",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Campus S3700HI, S5700, S6700 S3300HI, S5300, S6300, S9300, S7700,LSW S9700,Campus S5700, S6700,Campus S7700, S9300E, S2350, S2750,S9300,S9300E, Campus S3700HI with software V200R001C00SPC300,Campus S5700 with software V200R002C00SPC100,Campus S7700 with software V200R003C00SPC300,V200R003C00SPC500,LSW S9700 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500,S2350 with software V200R003C00SPC300,S2750 with software V200R003C00SPC300,S5300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S5700 with software V200R001C00SPC300,V200R003C00SPC300,S6300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S6700 S3300HI with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300,S7700 with software V200R001C00SPC300,S9300 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500,S9300E with software V200R003C00SPC300,V200R003C00SPC500,"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Huawei Campus S3700HI with software V200R001C00SPC300; Campus S5700 with software V200R002C00SPC100; Campus S7700 with software V200R003C00SPC300,V200R003C00SPC500; LSW S9700 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500; S2350 with software V200R003C00SPC300; S2750 with software V200R003C00SPC300; S5300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300; S5700 with software V200R001C00SPC300,V200R003C00SPC300; S6300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300; S6700 S3300HI with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300; S7700 with software V200R001C00SPC300; S9300 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500; S9300E with software V200R003C00SPC300,V200R003C00SPC500 allow attackers to keep sending malformed packets to cause a denial of service (DoS) attack, aka a heap overflow."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Heap Overflow"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://www.huawei.com/en/psirt/security-advisories/hw-343218",
                  "refsource": "CONFIRM",
                  "url": "http://www.huawei.com/en/psirt/security-advisories/hw-343218"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "25ac1063-e409-4190-8079-24548c77ea2e",
        "assignerShortName": "huawei",
        "cveId": "CVE-2014-4706",
        "datePublished": "2017-04-02T20:00:00.000Z",
        "dateReserved": "2014-07-01T00:00:00.000Z",
        "dateUpdated": "2024-08-06T11:27:36.889Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2015-2808 (GCVE-0-2015-2808)

    Vulnerability from cvelistv5 – Published: 2015-04-01 00:00 – Updated: 2026-05-28 12:53
    VLAI
    Summary
    The RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combine state data with key data during the initialization phase, which makes it easier for remote attackers to conduct plaintext-recovery attacks against the initial bytes of a stream by sniffing network traffic that occasionally relies on keys affected by the Invariance Weakness, and then using a brute-force approach involving LSB values, aka the "Bar Mitzvah" issue.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • n/a
    • CWE-327 - Use of a Broken or Risky Cryptographic Algorithm
    Assigner
    References
    URL Tags
    http://marc.info/?l=bugtraq&m=143818140118771&w=2 vendor-advisory
    http://rhn.redhat.com/errata/RHSA-2015-1243.html vendor-advisory
    http://rhn.redhat.com/errata/RHSA-2015-1007.html vendor-advisory
    http://marc.info/?l=bugtraq&m=143817899717054&w=2 vendor-advisory
    http://marc.info/?l=bugtraq&m=144493176821532&w=2 vendor-advisory
    http://www.oracle.com/technetwork/topics/security…
    http://rhn.redhat.com/errata/RHSA-2015-1006.html vendor-advisory
    https://h20564.www2.hpe.com/portal/site/hpsc/publ…
    https://kb.juniper.net/JSA10783
    http://www.securitytracker.com/id/1033737 vdb-entry
    http://lists.opensuse.org/opensuse-security-annou… vendor-advisory
    http://marc.info/?l=bugtraq&m=144060576831314&w=2 vendor-advisory
    http://www.oracle.com/technetwork/security-adviso…
    http://www.securitytracker.com/id/1036222 vdb-entry
    http://h20564.www2.hpe.com/hpsc/doc/public/displa…
    http://www-304.ibm.com/support/docview.wss?uid=sw…
    https://security.gentoo.org/glsa/201512-10 vendor-advisory
    http://rhn.redhat.com/errata/RHSA-2015-1229.html vendor-advisory
    https://h20566.www2.hpe.com/hpsc/doc/public/displ…
    http://www.securitytracker.com/id/1032600 vdb-entry
    http://www.securitytracker.com/id/1032910 vdb-entry
    http://www.ubuntu.com/usn/USN-2706-1 vendor-advisory
    http://rhn.redhat.com/errata/RHSA-2015-1526.html vendor-advisory
    http://marc.info/?l=bugtraq&m=143817021313142&w=2 vendor-advisory
    http://www.oracle.com/technetwork/security-adviso…
    http://www.securitytracker.com/id/1032599 vdb-entry
    http://marc.info/?l=bugtraq&m=144104533800819&w=2 vendor-advisory
    http://www-304.ibm.com/support/docview.wss?uid=sw…
    https://h20564.www2.hpe.com/portal/site/hpsc/publ…
    https://h20566.www2.hpe.com/hpsc/doc/public/displ…
    https://kc.mcafee.com/corporate/index?page=conten…
    http://marc.info/?l=bugtraq&m=144043644216842&w=2 vendor-advisory
    http://www.securitytracker.com/id/1032734 vdb-entry
    http://www-01.ibm.com/support/docview.wss?uid=swg… vendor-advisory
    https://h20566.www2.hpe.com/portal/site/hpsc/publ…
    http://www.securitytracker.com/id/1033769 vdb-entry
    http://www.securitytracker.com/id/1032707 vdb-entry
    http://lists.opensuse.org/opensuse-security-annou… vendor-advisory
    http://rhn.redhat.com/errata/RHSA-2015-1091.html vendor-advisory
    http://marc.info/?l=bugtraq&m=144069189622016&w=2 vendor-advisory
    http://www-01.ibm.com/support/docview.wss?uid=swg… vendor-advisory
    http://rhn.redhat.com/errata/RHSA-2015-1228.html vendor-advisory
    http://marc.info/?l=bugtraq&m=144060606031437&w=2 vendor-advisory
    http://www.securitytracker.com/id/1032708 vdb-entry
    http://www.huawei.com/en/psirt/security-advisorie…
    http://www.debian.org/security/2015/dsa-3316 vendor-advisory
    http://lists.opensuse.org/opensuse-security-annou… vendor-advisory
    http://www.oracle.com/technetwork/security-adviso…
    http://www.securitytracker.com/id/1033415 vdb-entry
    https://h20564.www2.hpe.com/portal/site/hpsc/publ…
    https://www-947.ibm.com/support/entry/portal/docd…
    http://marc.info/?l=bugtraq&m=144104565600964&w=2 vendor-advisory
    http://www-01.ibm.com/support/docview.wss?uid=swg…
    http://marc.info/?l=bugtraq&m=144102017024820&w=2 vendor-advisory
    http://www.securitytracker.com/id/1033432 vdb-entry
    http://marc.info/?l=bugtraq&m=143629696317098&w=2 vendor-advisory
    http://lists.opensuse.org/opensuse-security-annou… vendor-advisory
    http://www.securitytracker.com/id/1032858 vdb-entry
    https://h20564.www2.hp.com/portal/site/hpsc/publi… vendor-advisory
    http://www.securitytracker.com/id/1032788 vdb-entry
    http://www.ubuntu.com/usn/USN-2696-1 vendor-advisory
    https://www.blackhat.com/docs/asia-15/materials/a…
    http://www.debian.org/security/2015/dsa-3339 vendor-advisory
    http://rhn.redhat.com/errata/RHSA-2015-1020.html vendor-advisory
    http://rhn.redhat.com/errata/RHSA-2015-1242.html vendor-advisory
    http://kb.juniper.net/InfoCenter/index?page=conte…
    https://h20564.www2.hpe.com/portal/site/hpsc/publ…
    http://lists.opensuse.org/opensuse-security-annou… vendor-advisory
    http://www.securitytracker.com/id/1033431 vdb-entry
    http://www1.huawei.com/en/security/psirt/security…
    https://h20566.www2.hpe.com/portal/site/hpsc/publ…
    http://www.securitytracker.com/id/1032868 vdb-entry
    http://marc.info/?l=bugtraq&m=144059703728085&w=2 vendor-advisory
    http://www.oracle.com/technetwork/security-adviso…
    http://www.securityfocus.com/bid/91787 vdb-entry
    http://lists.opensuse.org/opensuse-security-annou… vendor-advisory
    http://lists.opensuse.org/opensuse-security-annou… vendor-advisory
    http://lists.opensuse.org/opensuse-security-annou… vendor-advisory
    http://rhn.redhat.com/errata/RHSA-2015-1241.html vendor-advisory
    https://h20564.www2.hpe.com/portal/site/hpsc/publ…
    http://kb.juniper.net/InfoCenter/index?page=conte…
    http://rhn.redhat.com/errata/RHSA-2015-1230.html vendor-advisory
    https://h20566.www2.hpe.com/portal/site/hpsc/publ…
    http://marc.info/?l=bugtraq&m=143456209711959&w=2 vendor-advisory
    http://www.securitytracker.com/id/1033386 vdb-entry
    http://marc.info/?l=bugtraq&m=143741441012338&w=2 vendor-advisory
    http://www.securitytracker.com/id/1033072 vdb-entry
    https://h20564.www2.hpe.com/portal/site/hpsc/publ…
    http://lists.opensuse.org/opensuse-security-annou… vendor-advisory
    https://h20564.www2.hpe.com/portal/site/hpsc/publ…
    http://rhn.redhat.com/errata/RHSA-2015-1021.html vendor-advisory
    http://www-304.ibm.com/support/docview.wss?uid=sw…
    http://lists.opensuse.org/opensuse-security-annou… vendor-advisory
    https://h20566.www2.hpe.com/portal/site/hpsc/publ…
    http://lists.opensuse.org/opensuse-security-annou… vendor-advisory
    http://marc.info/?l=bugtraq&m=144059660127919&w=2 vendor-advisory
    http://www.securityfocus.com/bid/73684 vdb-entry
    http://www.securitytracker.com/id/1032990 vdb-entry
    http://www.securitytracker.com/id/1033071 vdb-entry
    http://lists.opensuse.org/opensuse-security-annou… vendor-advisory
    https://www.secpod.com/blog/cve-2015-2808-bar-mit…
    Date Public
    2015-03-26 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T05:24:38.828Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "SSRT102127",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=143818140118771\u0026w=2"
              },
              {
                "name": "RHSA-2015:1243",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://rhn.redhat.com/errata/RHSA-2015-1243.html"
              },
              {
                "name": "RHSA-2015:1007",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://rhn.redhat.com/errata/RHSA-2015-1007.html"
              },
              {
                "name": "HPSBGN03367",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=143817899717054\u0026w=2"
              },
              {
                "name": "HPSBUX03512",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=144493176821532\u0026w=2"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html"
              },
              {
                "name": "RHSA-2015:1006",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://rhn.redhat.com/errata/RHSA-2015-1006.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773256"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://kb.juniper.net/JSA10783"
              },
              {
                "name": "1033737",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1033737"
              },
              {
                "name": "SUSE-SU-2015:2192",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00004.html"
              },
              {
                "name": "HPSBGN03399",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=144060576831314\u0026w=2"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html"
              },
              {
                "name": "1036222",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1036222"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04779034"
              },
              {
                "name": "SSRT102129",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=143817899717054\u0026w=2"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://www-304.ibm.com/support/docview.wss?uid=swg21960769"
              },
              {
                "name": "GLSA-201512-10",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://security.gentoo.org/glsa/201512-10"
              },
              {
                "name": "RHSA-2015:1229",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://rhn.redhat.com/errata/RHSA-2015-1229.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04708650"
              },
              {
                "name": "1032600",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1032600"
              },
              {
                "name": "1032910",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1032910"
              },
              {
                "name": "USN-2706-1",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www.ubuntu.com/usn/USN-2706-1"
              },
              {
                "name": "RHSA-2015:1526",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://rhn.redhat.com/errata/RHSA-2015-1526.html"
              },
              {
                "name": "SSRT102133",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=143817021313142\u0026w=2"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html"
              },
              {
                "name": "1032599",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1032599"
              },
              {
                "name": "HPSBMU03401",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=144104533800819\u0026w=2"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://www-304.ibm.com/support/docview.wss?uid=swg21903565"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04772190"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04711380"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10163"
              },
              {
                "name": "HPSBMU03345",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=144043644216842\u0026w=2"
              },
              {
                "name": "1032734",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1032734"
              },
              {
                "name": "IV71892",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IV71892"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05193347"
              },
              {
                "name": "1033769",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1033769"
              },
              {
                "name": "1032707",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1032707"
              },
              {
                "name": "openSUSE-SU-2015:1289",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00040.html"
              },
              {
                "name": "HPSBGN03372",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=143817021313142\u0026w=2"
              },
              {
                "name": "RHSA-2015:1091",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://rhn.redhat.com/errata/RHSA-2015-1091.html"
              },
              {
                "name": "HPSBGN03402",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=144069189622016\u0026w=2"
              },
              {
                "name": "IV71888",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IV71888"
              },
              {
                "name": "RHSA-2015:1228",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://rhn.redhat.com/errata/RHSA-2015-1228.html"
              },
              {
                "name": "HPSBGN03405",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=144060606031437\u0026w=2"
              },
              {
                "name": "1032708",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1032708"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://www.huawei.com/en/psirt/security-advisories/hw-454055"
              },
              {
                "name": "DSA-3316",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www.debian.org/security/2015/dsa-3316"
              },
              {
                "name": "SUSE-SU-2015:2166",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00000.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"
              },
              {
                "name": "1033415",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1033415"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04832246"
              },
              {
                "name": "HPSBGN03366",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=143818140118771\u0026w=2"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5098709"
              },
              {
                "name": "HPSBGN03403",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=144104565600964\u0026w=2"
              },
              {
                "name": "SSRT102254",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=144493176821532\u0026w=2"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21883640"
              },
              {
                "name": "HPSBGN03407",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=144102017024820\u0026w=2"
              },
              {
                "name": "1033432",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1033432"
              },
              {
                "name": "HPSBGN03354",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=143629696317098\u0026w=2"
              },
              {
                "name": "SUSE-SU-2015:1138",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00022.html"
              },
              {
                "name": "1032858",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1032858"
              },
              {
                "name": "SSRT102073",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04687922"
              },
              {
                "name": "1032788",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1032788"
              },
              {
                "name": "USN-2696-1",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www.ubuntu.com/usn/USN-2696-1"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.blackhat.com/docs/asia-15/materials/asia-15-Mantin-Bar-Mitzvah-Attack-Breaking-SSL-With-13-Year-Old-RC4-Weakness-wp.pdf"
              },
              {
                "name": "DSA-3339",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www.debian.org/security/2015/dsa-3339"
              },
              {
                "name": "RHSA-2015:1020",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://rhn.redhat.com/errata/RHSA-2015-1020.html"
              },
              {
                "name": "RHSA-2015:1242",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://rhn.redhat.com/errata/RHSA-2015-1242.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10727"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773241"
              },
              {
                "name": "SUSE-SU-2015:1086",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00015.html"
              },
              {
                "name": "1033431",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1033431"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-454055.htm"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05085988"
              },
              {
                "name": "1032868",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1032868"
              },
              {
                "name": "HPSBGN03415",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=144059703728085\u0026w=2"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html"
              },
              {
                "name": "91787",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/91787"
              },
              {
                "name": "SUSE-SU-2015:1319",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00046.html"
              },
              {
                "name": "SUSE-SU-2015:1320",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00047.html"
              },
              {
                "name": "openSUSE-SU-2015:1288",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00039.html"
              },
              {
                "name": "RHSA-2015:1241",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://rhn.redhat.com/errata/RHSA-2015-1241.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04770140"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10705"
              },
              {
                "name": "RHSA-2015:1230",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://rhn.redhat.com/errata/RHSA-2015-1230.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05336888"
              },
              {
                "name": "HPSBGN03338",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=143456209711959\u0026w=2"
              },
              {
                "name": "1033386",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1033386"
              },
              {
                "name": "HPSBMU03377",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=143741441012338\u0026w=2"
              },
              {
                "name": "1033072",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1033072"
              },
              {
                "name": "SSRT102150",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=143741441012338\u0026w=2"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04926789"
              },
              {
                "name": "SUSE-SU-2015:1085",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00014.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773119"
              },
              {
                "name": "RHSA-2015:1021",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://rhn.redhat.com/errata/RHSA-2015-1021.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://www-304.ibm.com/support/docview.wss?uid=swg21960015"
              },
              {
                "name": "SUSE-SU-2015:1073",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00013.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05289935"
              },
              {
                "name": "SUSE-SU-2015:1161",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00031.html"
              },
              {
                "name": "HPSBGN03414",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=144059660127919\u0026w=2"
              },
              {
                "name": "73684",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/73684"
              },
              {
                "name": "1032990",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1032990"
              },
              {
                "name": "1033071",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1033071"
              },
              {
                "name": "SUSE-SU-2016:0113",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00005.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.secpod.com/blog/cve-2015-2808-bar-mitzvah-attack-in-rc4-2/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "HIGH",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "NONE",
                  "baseScore": 3.7,
                  "baseSeverity": "LOW",
                  "confidentialityImpact": "LOW",
                  "integrityImpact": "NONE",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2015-2808",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-27T23:55:11.123525Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-327",
                    "description": "CWE-327 Use of a Broken or Risky Cryptographic Algorithm",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-28T12:53:51.914Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2015-03-26T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "The RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combine state data with key data during the initialization phase, which makes it easier for remote attackers to conduct plaintext-recovery attacks against the initial bytes of a stream by sniffing network traffic that occasionally relies on keys affected by the Invariance Weakness, and then using a brute-force approach involving LSB values, aka the \"Bar Mitzvah\" issue."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-09-07T16:46:59.848Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "SSRT102127",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=143818140118771\u0026w=2"
            },
            {
              "name": "RHSA-2015:1243",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-1243.html"
            },
            {
              "name": "RHSA-2015:1007",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-1007.html"
            },
            {
              "name": "HPSBGN03367",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=143817899717054\u0026w=2"
            },
            {
              "name": "HPSBUX03512",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=144493176821532\u0026w=2"
            },
            {
              "url": "http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html"
            },
            {
              "name": "RHSA-2015:1006",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-1006.html"
            },
            {
              "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773256"
            },
            {
              "url": "https://kb.juniper.net/JSA10783"
            },
            {
              "name": "1033737",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1033737"
            },
            {
              "name": "SUSE-SU-2015:2192",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00004.html"
            },
            {
              "name": "HPSBGN03399",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=144060576831314\u0026w=2"
            },
            {
              "url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html"
            },
            {
              "name": "1036222",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1036222"
            },
            {
              "url": "http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04779034"
            },
            {
              "name": "SSRT102129",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=143817899717054\u0026w=2"
            },
            {
              "url": "http://www-304.ibm.com/support/docview.wss?uid=swg21960769"
            },
            {
              "name": "GLSA-201512-10",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://security.gentoo.org/glsa/201512-10"
            },
            {
              "name": "RHSA-2015:1229",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-1229.html"
            },
            {
              "url": "https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04708650"
            },
            {
              "name": "1032600",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1032600"
            },
            {
              "name": "1032910",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1032910"
            },
            {
              "name": "USN-2706-1",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www.ubuntu.com/usn/USN-2706-1"
            },
            {
              "name": "RHSA-2015:1526",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-1526.html"
            },
            {
              "name": "SSRT102133",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=143817021313142\u0026w=2"
            },
            {
              "url": "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html"
            },
            {
              "name": "1032599",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1032599"
            },
            {
              "name": "HPSBMU03401",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=144104533800819\u0026w=2"
            },
            {
              "url": "http://www-304.ibm.com/support/docview.wss?uid=swg21903565"
            },
            {
              "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04772190"
            },
            {
              "url": "https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04711380"
            },
            {
              "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10163"
            },
            {
              "name": "HPSBMU03345",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=144043644216842\u0026w=2"
            },
            {
              "name": "1032734",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1032734"
            },
            {
              "name": "IV71892",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IV71892"
            },
            {
              "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05193347"
            },
            {
              "name": "1033769",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1033769"
            },
            {
              "name": "1032707",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1032707"
            },
            {
              "name": "openSUSE-SU-2015:1289",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00040.html"
            },
            {
              "name": "HPSBGN03372",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=143817021313142\u0026w=2"
            },
            {
              "name": "RHSA-2015:1091",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-1091.html"
            },
            {
              "name": "HPSBGN03402",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=144069189622016\u0026w=2"
            },
            {
              "name": "IV71888",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IV71888"
            },
            {
              "name": "RHSA-2015:1228",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-1228.html"
            },
            {
              "name": "HPSBGN03405",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=144060606031437\u0026w=2"
            },
            {
              "name": "1032708",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1032708"
            },
            {
              "url": "http://www.huawei.com/en/psirt/security-advisories/hw-454055"
            },
            {
              "name": "DSA-3316",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www.debian.org/security/2015/dsa-3316"
            },
            {
              "name": "SUSE-SU-2015:2166",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00000.html"
            },
            {
              "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"
            },
            {
              "name": "1033415",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1033415"
            },
            {
              "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04832246"
            },
            {
              "name": "HPSBGN03366",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=143818140118771\u0026w=2"
            },
            {
              "url": "https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5098709"
            },
            {
              "name": "HPSBGN03403",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=144104565600964\u0026w=2"
            },
            {
              "name": "SSRT102254",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=144493176821532\u0026w=2"
            },
            {
              "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21883640"
            },
            {
              "name": "HPSBGN03407",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=144102017024820\u0026w=2"
            },
            {
              "name": "1033432",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1033432"
            },
            {
              "name": "HPSBGN03354",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=143629696317098\u0026w=2"
            },
            {
              "name": "SUSE-SU-2015:1138",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00022.html"
            },
            {
              "name": "1032858",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1032858"
            },
            {
              "name": "SSRT102073",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04687922"
            },
            {
              "name": "1032788",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1032788"
            },
            {
              "name": "USN-2696-1",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www.ubuntu.com/usn/USN-2696-1"
            },
            {
              "url": "https://www.blackhat.com/docs/asia-15/materials/asia-15-Mantin-Bar-Mitzvah-Attack-Breaking-SSL-With-13-Year-Old-RC4-Weakness-wp.pdf"
            },
            {
              "name": "DSA-3339",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www.debian.org/security/2015/dsa-3339"
            },
            {
              "name": "RHSA-2015:1020",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-1020.html"
            },
            {
              "name": "RHSA-2015:1242",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-1242.html"
            },
            {
              "url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10727"
            },
            {
              "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773241"
            },
            {
              "name": "SUSE-SU-2015:1086",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00015.html"
            },
            {
              "name": "1033431",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1033431"
            },
            {
              "url": "http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-454055.htm"
            },
            {
              "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05085988"
            },
            {
              "name": "1032868",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1032868"
            },
            {
              "name": "HPSBGN03415",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=144059703728085\u0026w=2"
            },
            {
              "url": "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html"
            },
            {
              "name": "91787",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securityfocus.com/bid/91787"
            },
            {
              "name": "SUSE-SU-2015:1319",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00046.html"
            },
            {
              "name": "SUSE-SU-2015:1320",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00047.html"
            },
            {
              "name": "openSUSE-SU-2015:1288",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00039.html"
            },
            {
              "name": "RHSA-2015:1241",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-1241.html"
            },
            {
              "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04770140"
            },
            {
              "url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10705"
            },
            {
              "name": "RHSA-2015:1230",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-1230.html"
            },
            {
              "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05336888"
            },
            {
              "name": "HPSBGN03338",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=143456209711959\u0026w=2"
            },
            {
              "name": "1033386",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1033386"
            },
            {
              "name": "HPSBMU03377",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=143741441012338\u0026w=2"
            },
            {
              "name": "1033072",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1033072"
            },
            {
              "name": "SSRT102150",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=143741441012338\u0026w=2"
            },
            {
              "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04926789"
            },
            {
              "name": "SUSE-SU-2015:1085",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00014.html"
            },
            {
              "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773119"
            },
            {
              "name": "RHSA-2015:1021",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-1021.html"
            },
            {
              "url": "http://www-304.ibm.com/support/docview.wss?uid=swg21960015"
            },
            {
              "name": "SUSE-SU-2015:1073",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00013.html"
            },
            {
              "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05289935"
            },
            {
              "name": "SUSE-SU-2015:1161",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00031.html"
            },
            {
              "name": "HPSBGN03414",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=144059660127919\u0026w=2"
            },
            {
              "name": "73684",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securityfocus.com/bid/73684"
            },
            {
              "name": "1032990",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1032990"
            },
            {
              "name": "1033071",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securitytracker.com/id/1033071"
            },
            {
              "name": "SUSE-SU-2016:0113",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00005.html"
            },
            {
              "url": "https://www.secpod.com/blog/cve-2015-2808-bar-mitzvah-attack-in-rc4-2/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2015-2808",
        "datePublished": "2015-04-01T00:00:00.000Z",
        "dateReserved": "2015-03-31T00:00:00.000Z",
        "dateUpdated": "2026-05-28T12:53:51.914Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }