Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2012-2686

crypto/evp/e_aes_cbc_hmac_sha1.c in the AES-NI functionality in the TLS 1.1 and 1.2 implementations in OpenSSL 1.0.1 before 1.0.1d allows remote attackers to cause a denial of service (application crash) via crafted CBC data.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.547
EPSS Ranking 98.0%
CVSS Severity
CVSS v2 Score 5.0
References
Products affected by CVE-2012-2686
  • Openssl » Openssl » Version: 1.0.1
    cpe:2.3:a:openssl:openssl:1.0.1
  • Openssl » Openssl » Version: 1.0.1a
    cpe:2.3:a:openssl:openssl:1.0.1a
  • Openssl » Openssl » Version: 1.0.1b
    cpe:2.3:a:openssl:openssl:1.0.1b
  • Openssl » Openssl » Version: 1.0.1c
    cpe:2.3:a:openssl:openssl:1.0.1c


Products
Pricing
Contact Us

Shodan ® - All rights reserved