2018-10-30 13:29:00 2019-06-12 00:29:00

The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.1a (Affected 1.1.1). Fixed in OpenSSL 1.1.0j (Affected 1.1.0-1.1.0i). Fixed in OpenSSL 1.0.2q (Affected 1.0.2-1.0.2p).

Vector

NETWORK

Complexity

MEDIUM

Authentication

NONE

Confidentiality

PARTIAL

Integrity

NONE

Availability

NONE
Oracle Mysql enterprise backup 4.1.0 (not an official CPE) Oracle Mysql enterprise backup 4.0.3 (not an official CPE) Oracle Mysql enterprise backup 4.0.2 (not an official CPE) Oracle Mysql enterprise backup 4.0.1 (not an official CPE) Oracle Mysql enterprise backup 4.0.0 (not an official CPE) Oracle Mysql enterprise backup 3.12.3 (not an official CPE) Oracle Mysql enterprise backup 3.12.2 (not an official CPE) Oracle Mysql enterprise backup 3.12.1 (not an official CPE) Oracle Mysql enterprise backup 3.12.0 (not an official CPE) Oracle Mysql enterprise backup 3.11.1 (not an official CPE) Oracle Mysql enterprise backup 3.11.0 (not an official CPE) Oracle Enterprise manager ops center 12.3.3 (not an official CPE) Oracle Enterprise manager base platform 13.3.0.0.0 (not an official CPE) Oracle Enterprise manager base platform 13.2.0.0.0 (not an official CPE) Oracle Enterprise manager base platform 12.1.0.5.0 (not an official CPE) Oracle E-business suite technology stack 1.0.1 (not an official CPE) Oracle E-business suite technology stack 1.0.0 (not an official CPE) Oracle E-business suite technology stack 0.9.8 (not an official CPE) Oracle Api gateway 11.1.2.4.0 (not an official CPE) Openssl Openssl 1.1.0i (not an official CPE) Openssl Openssl 1.1.1 (not an official CPE) Openssl Openssl 1.1.0h (not an official CPE) Openssl Openssl 1.1.0g (not an official CPE) Openssl Openssl 1.1.0f (not an official CPE) Openssl Openssl 1.1.0e (not an official CPE) Openssl Openssl 1.1.0d (not an official CPE) Openssl Openssl 1.1.0c (not an official CPE) Openssl Openssl 1.1.0b (not an official CPE) Openssl Openssl 1.1.0a (not an official CPE) Openssl Openssl 1.1.0 Pre6 (not an official CPE) Openssl Openssl 1.1.0 Pre5 (not an official CPE) Openssl Openssl 1.1.0 Pre4 (not an official CPE) Openssl Openssl 1.1.0 Pre3 (not an official CPE) Openssl Openssl 1.1.0 Pre2 (not an official CPE) Openssl Openssl 1.1.0 Pre1 (not an official CPE) Openssl Openssl 1.1.0 - (not an official CPE) Openssl Openssl 1.1.0 (not an official CPE) Openssl Openssl 1.0.2p (not an official CPE) Openssl Openssl 1.0.2o (not an official CPE) Openssl Openssl 1.0.2n (not an official CPE) Openssl Openssl 1.0.2m (not an official CPE) Openssl Openssl 1.0.2l (not an official CPE) Openssl Openssl 1.0.2k (not an official CPE) Openssl Openssl 1.0.2j (not an official CPE) Openssl Openssl 1.0.2i (not an official CPE) Openssl Openssl 1.0.2h (not an official CPE) Openssl Openssl 1.0.2g (not an official CPE) Openssl Openssl 1.0.2f (not an official CPE) Openssl Openssl 1.0.2e (not an official CPE) Openssl Openssl 1.0.2d (not an official CPE) OpenSSL Project OpenSSL 1.0.2c OpenSSL Project OpenSSL 1.0.2b Openssl Openssl 1.0.2a (not an official CPE) Openssl Openssl 1.0.2 Beta3 (not an official CPE) Openssl Openssl 1.0.2 Beta2 (not an official CPE) OpenSSL Project OpenSSL 1.0.2-beta1 OpenSSL Project OpenSSL 1.0.2 Nodejs Node.js 11.3.0 (not an official CPE) Nodejs Node.js 11.4.0 (not an official CPE) Nodejs Node.js 11.2.0 (not an official CPE) Nodejs Node.js 11.0.0 (not an official CPE) Nodejs Node.js 11.1.0 (not an official CPE) Nodejs Node.js 10.14.1 ~~lts~~~ (not an official CPE) Nodejs Node.js 10.14.0 ~~lts~~~ (not an official CPE) Nodejs Node.js 10.13.0 ~~lts~~~ (not an official CPE) Nodejs Node.js 8.14.0 ~~lts~~~ (not an official CPE) Nodejs Node.js 8.13.0 ~~lts~~~ (not an official CPE) Nodejs Node.js 8.12.0 ~~lts~~~ (not an official CPE) Nodejs Node.js 8.11.4 ~~lts~~~ (not an official CPE) Nodejs Node.js 8.11.2 ~~lts~~~ (not an official CPE) Nodejs Node.js 8.11.3 ~~lts~~~ (not an official CPE) Nodejs Node.js 8.11.1 ~~lts~~~ (not an official CPE) Nodejs Node.js 8.10.0 ~~lts~~~ (not an official CPE) Nodejs Node.js 8.9.4 ~~lts~~~ (not an official CPE) Nodejs Node.js 8.9.3 ~~lts~~~ (not an official CPE) Nodejs Node.js 8.9.2 ~~lts~~~ (not an official CPE) Nodejs Node.js 8.9.1 ~~lts~~~ (not an official CPE) Nodejs Node.js 8.9.0 ~~lts~~~ (not an official CPE) Nodejs Node.js 6.15.1 ~~lts~~~ (not an official CPE) Nodejs Node.js 6.15.0 ~~lts~~~ (not an official CPE) Nodejs Node.js 6.14.4 ~~lts~~~ (not an official CPE) Nodejs Node.js 6.14.3 ~~lts~~~ (not an official CPE) Nodejs Node.js 6.14.2 ~~lts~~~ (not an official CPE) Nodejs Node.js 6.14.1 ~~lts~~~ (not an official CPE) Nodejs Node.js 6.14.0 ~~lts~~~ (not an official CPE) Nodejs Node.js 6.13.1 ~~lts~~~ (not an official CPE) Nodejs Node.js 6.13.0 ~~lts~~~ (not an official CPE) Nodejs Node.js 6.12.3 ~~lts~~~ (not an official CPE) Nodejs Node.js 6.12.2 ~~lts~~~ (not an official CPE) Nodejs Node.js 6.12.1 ~~lts~~~ (not an official CPE) Nodejs Node.js 6.12.0 ~~lts~~~ (not an official CPE) Nodejs Node.js 6.11.5 ~~lts~~~ (not an official CPE) Nodejs Node.js 6.11.4 ~~lts~~~ (not an official CPE) Nodejs Node.js 6.11.3 ~~lts~~~ (not an official CPE) Nodejs Node.js 6.11.2 ~~lts~~~ (not an official CPE) Nodejs Node.js 6.10.3 ~~lts~~~ (not an official CPE) Nodejs Node.js 6.10.1 ~~lts~~~ (not an official CPE) Nodejs Node.js 6.10.0 ~~lts~~~ (not an official CPE) Nodejs Node.js 6.9.5 ~~lts~~~ (not an official CPE) Nodejs Node.js 6.9.4 ~~lts~~~ (not an official CPE) Nodejs Node.js 6.9.3 ~~lts~~~ (not an official CPE) Nodejs Node.js 6.9.2 ~~lts~~~ (not an official CPE) Nodejs Node.js 6.9.1 ~~lts~~~ (not an official CPE) Nodejs Node.js 6.9.0 ~~lts~~~ (not an official CPE) Netapp Storage automation store - (not an official CPE) Netapp Steelstore - (not an official CPE) Netapp Snapcenter - (not an official CPE) Netapp Santricity smi-s provider - (not an official CPE) Netapp Oncommand unified manager (not an official CPE) Netapp Cloud backup - (not an official CPE) Oracle Mysql enterprise backup 4.1.1 (not an official CPE) Oracle Mysql enterprise backup 4.1.2 (not an official CPE) Oracle Peoplesoft enterprise peopletools 8.55 (not an official CPE) Oracle Peoplesoft enterprise peopletools 8.56 (not an official CPE) Oracle Peoplesoft enterprise peopletools 8.57 (not an official CPE) Oracle Primavera p6 professional project management 8.4 (not an official CPE) Oracle Primavera p6 professional project management 15.1 (not an official CPE) Oracle Primavera p6 professional project management 15.2 (not an official CPE) Oracle Primavera p6 professional project management 16.1 (not an official CPE) Oracle Primavera p6 professional project management 16.2 (not an official CPE) Oracle Primavera p6 professional project management 17.7 (not an official CPE) Oracle Primavera p6 professional project management 17.8 (not an official CPE) Oracle Primavera p6 professional project management 17.10 (not an official CPE) Oracle Primavera p6 professional project management 17.11 (not an official CPE) Oracle Primavera p6 professional project management 17.12 (not an official CPE) Oracle Primavera p6 professional project management 18.8 (not an official CPE) Oracle Tuxedo 12.1.1.0.0 (not an official CPE)