CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-3389

The SSL protocol, as used in certain configurations in Microsoft Windows and Microsoft Internet Explorer, Mozilla Firefox, Google Chrome, Opera, and other products, encrypts data by using CBC mode with chained initialization vectors, which allows man-in-the-middle attackers to obtain plaintext HTTP headers via a blockwise chosen-boundary attack (BCBA) on an HTTPS session, in conjunction with JavaScript code that uses (1) the HTML5 WebSocket API, (2) the Java URLConnection API, or (3) the Silverlight WebClient API, aka a "BEAST" attack.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.054

EPSS Ranking 89.6%

CVSS Severity

CVSS v2 Score 4.3

References

Products affected by CVE-2011-3389

Google » Chrome » Version: N/A

cpe:2.3:a:google:chrome:-
Haxx » Curl » Version: 7.10.6

cpe:2.3:a:haxx:curl:7.10.6
Haxx » Curl » Version: 7.10.7

cpe:2.3:a:haxx:curl:7.10.7
Haxx » Curl » Version: 7.10.8

cpe:2.3:a:haxx:curl:7.10.8
Haxx » Curl » Version: 7.11.0

cpe:2.3:a:haxx:curl:7.11.0
Haxx » Curl » Version: 7.11.1

cpe:2.3:a:haxx:curl:7.11.1
Haxx » Curl » Version: 7.11.2

cpe:2.3:a:haxx:curl:7.11.2
Haxx » Curl » Version: 7.12.0

cpe:2.3:a:haxx:curl:7.12.0
Haxx » Curl » Version: 7.12.1

cpe:2.3:a:haxx:curl:7.12.1
Haxx » Curl » Version: 7.12.2

cpe:2.3:a:haxx:curl:7.12.2
Haxx » Curl » Version: 7.12.3

cpe:2.3:a:haxx:curl:7.12.3
Haxx » Curl » Version: 7.13.0

cpe:2.3:a:haxx:curl:7.13.0
Haxx » Curl » Version: 7.13.1

cpe:2.3:a:haxx:curl:7.13.1
Haxx » Curl » Version: 7.13.2

cpe:2.3:a:haxx:curl:7.13.2
Haxx » Curl » Version: 7.14.0

cpe:2.3:a:haxx:curl:7.14.0
Haxx » Curl » Version: 7.14.1

cpe:2.3:a:haxx:curl:7.14.1
Haxx » Curl » Version: 7.15.0

cpe:2.3:a:haxx:curl:7.15.0
Haxx » Curl » Version: 7.15.1

cpe:2.3:a:haxx:curl:7.15.1
Haxx » Curl » Version: 7.15.2

cpe:2.3:a:haxx:curl:7.15.2
Haxx » Curl » Version: 7.15.3

cpe:2.3:a:haxx:curl:7.15.3
Haxx » Curl » Version: 7.15.4

cpe:2.3:a:haxx:curl:7.15.4
Haxx » Curl » Version: 7.15.5

cpe:2.3:a:haxx:curl:7.15.5
Haxx » Curl » Version: 7.16.0

cpe:2.3:a:haxx:curl:7.16.0
Haxx » Curl » Version: 7.16.1

cpe:2.3:a:haxx:curl:7.16.1
Haxx » Curl » Version: 7.16.2

cpe:2.3:a:haxx:curl:7.16.2
Haxx » Curl » Version: 7.16.3

cpe:2.3:a:haxx:curl:7.16.3
Haxx » Curl » Version: 7.16.4

cpe:2.3:a:haxx:curl:7.16.4
Haxx » Curl » Version: 7.17.0

cpe:2.3:a:haxx:curl:7.17.0
Haxx » Curl » Version: 7.17.1

cpe:2.3:a:haxx:curl:7.17.1
Haxx » Curl » Version: 7.18.0

cpe:2.3:a:haxx:curl:7.18.0
Haxx » Curl » Version: 7.18.1

cpe:2.3:a:haxx:curl:7.18.1
Haxx » Curl » Version: 7.18.2

cpe:2.3:a:haxx:curl:7.18.2
Haxx » Curl » Version: 7.19.0

cpe:2.3:a:haxx:curl:7.19.0
Haxx » Curl » Version: 7.19.1

cpe:2.3:a:haxx:curl:7.19.1
Haxx » Curl » Version: 7.19.2

cpe:2.3:a:haxx:curl:7.19.2
Haxx » Curl » Version: 7.19.3

cpe:2.3:a:haxx:curl:7.19.3
Haxx » Curl » Version: 7.19.4

cpe:2.3:a:haxx:curl:7.19.4
Haxx » Curl » Version: 7.19.5

cpe:2.3:a:haxx:curl:7.19.5
Haxx » Curl » Version: 7.19.6

cpe:2.3:a:haxx:curl:7.19.6
Haxx » Curl » Version: 7.19.7

cpe:2.3:a:haxx:curl:7.19.7
Haxx » Curl » Version: 7.19.7-53

cpe:2.3:a:haxx:curl:7.19.7-53
Haxx » Curl » Version: 7.20.0

cpe:2.3:a:haxx:curl:7.20.0
Haxx » Curl » Version: 7.20.1

cpe:2.3:a:haxx:curl:7.20.1
Haxx » Curl » Version: 7.21.0

cpe:2.3:a:haxx:curl:7.21.0
Haxx » Curl » Version: 7.21.1

cpe:2.3:a:haxx:curl:7.21.1
Haxx » Curl » Version: 7.21.2

cpe:2.3:a:haxx:curl:7.21.2
Haxx » Curl » Version: 7.21.3

cpe:2.3:a:haxx:curl:7.21.3
Haxx » Curl » Version: 7.21.4

cpe:2.3:a:haxx:curl:7.21.4
Haxx » Curl » Version: 7.21.5

cpe:2.3:a:haxx:curl:7.21.5
Haxx » Curl » Version: 7.21.6

cpe:2.3:a:haxx:curl:7.21.6
Haxx » Curl » Version: 7.21.7

cpe:2.3:a:haxx:curl:7.21.7
Haxx » Curl » Version: 7.22.0

cpe:2.3:a:haxx:curl:7.22.0
Haxx » Curl » Version: 7.23.0

cpe:2.3:a:haxx:curl:7.23.0
Haxx » Curl » Version: 7.23.1

cpe:2.3:a:haxx:curl:7.23.1
Microsoft » Internet Explorer » Version: N/A

cpe:2.3:a:microsoft:internet_explorer:-
Mozilla » Firefox » Version: N/A

cpe:2.3:a:mozilla:firefox:-
Opera » Opera Browser » Version: N/A

cpe:2.3:a:opera:opera_browser:-
Siemens » Simatic Rf615r » Version: N/A

cpe:2.3:h:siemens:simatic_rf615r:-
Siemens » Simatic Rf68xr » Version: N/A

cpe:2.3:h:siemens:simatic_rf68xr:-
Canonical » Ubuntu Linux » Version: 10.04

cpe:2.3:o:canonical:ubuntu_linux:10.04
Canonical » Ubuntu Linux » Version: 10.10

cpe:2.3:o:canonical:ubuntu_linux:10.10
Canonical » Ubuntu Linux » Version: 11.04

cpe:2.3:o:canonical:ubuntu_linux:11.04
Canonical » Ubuntu Linux » Version: 11.10

cpe:2.3:o:canonical:ubuntu_linux:11.10
Debian » Debian Linux » Version: 5.0

cpe:2.3:o:debian:debian_linux:5.0
Debian » Debian Linux » Version: 6.0

cpe:2.3:o:debian:debian_linux:6.0
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-
Redhat » Enterprise Linux Desktop » Version: 5.0

cpe:2.3:o:redhat:enterprise_linux_desktop:5.0
Redhat » Enterprise Linux Desktop » Version: 6.0

cpe:2.3:o:redhat:enterprise_linux_desktop:6.0
Redhat » Enterprise Linux Eus » Version: 6.2

cpe:2.3:o:redhat:enterprise_linux_eus:6.2
Redhat » Enterprise Linux Server » Version: 5.0

cpe:2.3:o:redhat:enterprise_linux_server:5.0
Redhat » Enterprise Linux Server » Version: 6.0

cpe:2.3:o:redhat:enterprise_linux_server:6.0
Redhat » Enterprise Linux Server Aus » Version: 6.2

cpe:2.3:o:redhat:enterprise_linux_server_aus:6.2
Redhat » Enterprise Linux Workstation » Version: 5.0

cpe:2.3:o:redhat:enterprise_linux_workstation:5.0
Redhat » Enterprise Linux Workstation » Version: 6.0

cpe:2.3:o:redhat:enterprise_linux_workstation:6.0
Siemens » Simatic Rf615r Firmware » Version: N/A

cpe:2.3:o:siemens:simatic_rf615r_firmware:-
Siemens » Simatic Rf68xr Firmware » Version: Any

cpe:2.3:o:siemens:simatic_rf68xr_firmware:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-3389

Products

Pricing

Contact Us