Vulnerability Details CVE-2015-3220
The tlslite library before 0.4.9 for Python allows remote attackers to trigger a denial of service (runtime exception and process crash).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 72.7%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
- https://bugzilla.redhat.com/show_bug.cgi?id=1254215
- https://github.com/trevp/tlslite/commit/aca8d4f898b436ff6754e1a9ab96cae976c8a853
- https://groups.google.com/forum/#%21topic/tlslite-dev/MoWE7B0A4iU
- https://bugzilla.redhat.com/show_bug.cgi?id=1254215
- https://github.com/trevp/tlslite/commit/aca8d4f898b436ff6754e1a9ab96cae976c8a853
- https://groups.google.com/forum/#%21topic/tlslite-dev/MoWE7B0A4iU
Products affected by CVE-2015-3220
-
cpe:2.3:a:tlslite_project:tlslite:0.4.1
-
cpe:2.3:a:tlslite_project:tlslite:0.4.2
-
cpe:2.3:a:tlslite_project:tlslite:0.4.3
-
cpe:2.3:a:tlslite_project:tlslite:0.4.8
-
cpe:2.3:a:tlslite_project:tlslite:0.4.9