2018-10-29 14:29:00 2019-07-24 01:15:25

The OpenSSL ECDSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.0j (Affected 1.1.0-1.1.0i). Fixed in OpenSSL 1.1.1a (Affected 1.1.1).

Vector

NETWORK

Complexity

MEDIUM

Authentication

NONE

Confidentiality

PARTIAL

Integrity

NONE

Availability

NONE
Oracle VM VirtualBox 2.1 Oracle VM VirtualBox 3.0.6 Oracle VM VirtualBox 3.0.4 Oracle VM VirtualBox 3.0.2 Oracle VM VirtualBox 3.0.0 Oracle VM VirtualBox 3.0 Oracle VM VirtualBox 2.2.4 Oracle VM VirtualBox 2.2.2 Oracle VM VirtualBox 2.2.0 Oracle VM VirtualBox 2.2 Oracle VM VirtualBox 2.1.4 Oracle VM VirtualBox 2.1.2 Oracle VM VirtualBox 2.1.0 Oracle VM VirtualBox 2.0.12 Oracle VM VirtualBox 2.0.10 Oracle VM VirtualBox 2.0.8 Oracle VM VirtualBox 2.0.6 Oracle VM VirtualBox 2.0.4 Oracle VM VirtualBox 2.0.2 Oracle VM VirtualBox 2.0.0 Oracle VM VirtualBox 2.0 Oracle VM VirtualBox 1.6.4 Oracle VM VirtualBox 1.6.6 Oracle VM VirtualBox 1.6.2 Oracle VM VirtualBox 1.6.0 Oracle VM VirtualBox 1.6 Oracle Tuxedo 12.1.1.0.0 (not an official CPE) Oracle Secure global desktop 5.4 (not an official CPE) Oracle Primavera p6 enterprise project portfolio management 18.8 (not an official CPE) Oracle Primavera p6 enterprise project portfolio management 16.2 (not an official CPE) Oracle Primavera p6 enterprise project portfolio management 16.1 (not an official CPE) Oracle Primavera p6 enterprise project portfolio management 15.2 (not an official CPE) Oracle Primavera p6 enterprise project portfolio management 15.1 (not an official CPE) Oracle Primavera p6 enterprise project portfolio management 8.4 (not an official CPE) Oracle Peoplesoft enterprise peopletools 8.57 (not an official CPE) Oracle Peoplesoft enterprise peopletools 8.56 (not an official CPE) Oracle Peoplesoft enterprise peopletools 8.55 (not an official CPE) Oracle Mysql 8.0.13 (not an official CPE) Oracle Mysql 8.0.12 (not an official CPE) Oracle Mysql 8.0.11 (not an official CPE) Oracle Mysql 8.0.10 (not an official CPE) Oracle Mysql 8.0.5 (not an official CPE) Oracle Mysql 8.0.4 (not an official CPE) Oracle Mysql 8.0.3 (not an official CPE) Oracle Mysql 8.0.2 (not an official CPE) Oracle Mysql 8.0.1 (not an official CPE) Oracle Mysql 8.0.0 (not an official CPE) Oracle Mysql 5.7.24 (not an official CPE) Oracle Mysql 5.7.23 (not an official CPE) Oracle Mysql 5.7.22 (not an official CPE) Oracle Mysql 5.7.21 (not an official CPE) Oracle Mysql 5.7.20 (not an official CPE) Oracle Mysql 5.7.19 (not an official CPE) Oracle Mysql 5.7.18 (not an official CPE) Oracle Mysql 5.7.17 (not an official CPE) Oracle Mysql 5.7.16 (not an official CPE) Oracle Mysql 5.7.15 (not an official CPE) Oracle Mysql 5.7.14 (not an official CPE) Oracle Mysql 5.7.12 (not an official CPE) Oracle Mysql 5.7.13 (not an official CPE) Oracle Mysql 5.7.10 (not an official CPE) Oracle Mysql 5.7.11 (not an official CPE) Oracle Mysql 5.7.8 (not an official CPE) Oracle Mysql 5.7.9 (not an official CPE) Oracle Mysql 5.7.6 (not an official CPE) Oracle Mysql 5.7.7 (not an official CPE) Oracle Mysql 5.7.4 (not an official CPE) Oracle Mysql 5.7.5 (not an official CPE) Oracle Mysql 5.7.3 (not an official CPE) Oracle Mysql 5.7.2 (not an official CPE) Oracle Mysql 5.7.1 (not an official CPE) Oracle Mysql 5.7.0 ~~enterprise~~~ (not an official CPE) Oracle Mysql 5.7.0 ~~community~~~ (not an official CPE) Oracle Mysql 5.7.0 (not an official CPE) Oracle Mysql 5.6.42 (not an official CPE) Oracle Enterprise manager ops center 12.3.3 (not an official CPE) Oracle Enterprise manager base platform 13.3.0.0.0 (not an official CPE) Oracle Enterprise manager base platform 13.2.0.0.0 (not an official CPE) Oracle Enterprise manager base platform 12.1.0.5.0 (not an official CPE) Oracle Application server 1.0.1 (not an official CPE) Oracle Application server 1.0.0 (not an official CPE) Oracle Application server 0.9.8 (not an official CPE) Oracle Api gateway 11.1.2.4.0 (not an official CPE) Openssl Openssl 1.1.1 (not an official CPE) Openssl Openssl 1.1.0i (not an official CPE) Openssl Openssl 1.1.0h (not an official CPE) Openssl Openssl 1.1.0g (not an official CPE) Openssl Openssl 1.1.0f (not an official CPE) Openssl Openssl 1.1.0e (not an official CPE) Openssl Openssl 1.1.0d (not an official CPE) Openssl Openssl 1.1.0c (not an official CPE) Openssl Openssl 1.1.0b (not an official CPE) Openssl Openssl 1.1.0a (not an official CPE) Openssl Openssl 1.1.0 Pre6 (not an official CPE) Openssl Openssl 1.1.0 Pre5 (not an official CPE) Openssl Openssl 1.1.0 Pre4 (not an official CPE) Openssl Openssl 1.1.0 Pre3 (not an official CPE) Openssl Openssl 1.1.0 Pre2 (not an official CPE) Openssl Openssl 1.1.0 Pre1 (not an official CPE) Openssl Openssl 1.1.0 - (not an official CPE) Openssl Openssl 1.1.0 (not an official CPE) Nodejs Node.js 11.4.0 (not an official CPE) Nodejs Node.js 11.3.0 (not an official CPE) Nodejs Node.js 11.2.0 (not an official CPE) Nodejs Node.js 11.1.0 (not an official CPE) Nodejs Node.js 11.0.0 (not an official CPE) Nodejs Node.js 10.14.1 ~~lts~~~ (not an official CPE) Nodejs Node.js 10.14.0 ~~lts~~~ (not an official CPE) Nodejs Node.js 10.13.0 ~~lts~~~ (not an official CPE) Netapp Steelstore - (not an official CPE) Netapp Snapdrive - ~~~windows~~ (not an official CPE) Netapp Snapdrive - ~~~unix~~ (not an official CPE) Netapp Smi-s provider - (not an official CPE) Netapp Santricity smi-s provider - (not an official CPE) Netapp Oncommand unified manager (not an official CPE) Netapp Element software - (not an official CPE) Netapp Cloud backup - (not an official CPE) Oracle VM VirtualBox 3.0.8 Oracle VM VirtualBox 3.0.10 Oracle VM VirtualBox 3.0.12 Oracle VM VirtualBox 3.0.14 Oracle VM VirtualBox 3.1 Oracle VM VirtualBox 3.1.0 Oracle VM VirtualBox 3.1.2 Oracle VM VirtualBox 3.1.4 Oracle VM VirtualBox 3.1.6 Oracle VM VirtualBox 3.1.8 Oracle VM VirtualBox 3.2 Oracle VM VirtualBox 3.2.0 Oracle VM VirtualBox 3.2.2 Oracle VM VirtualBox 3.2.4 Oracle VM VirtualBox 3.2.6 Oracle VM VirtualBox 3.2.8 Oracle VM VirtualBox 3.2.10 Oracle VM VirtualBox 3.2.12 Oracle VM VirtualBox 3.2.14 Oracle VM VirtualBox 3.2.16 Oracle VM VirtualBox 3.2.18 Oracle VM VirtualBox 3.2.20 Oracle VM VirtualBox 3.2.22 Oracle VM VirtualBox 3.2.24 Oracle VM VirtualBox 4.0 Oracle VM VirtualBox 4.0.0 Oracle VM VirtualBox 4.0.2 Oracle VM VirtualBox 4.0.4 Oracle VM VirtualBox 4.0.6 Oracle VM VirtualBox 4.0.8 Oracle VM VirtualBox 4.0.10 Oracle VM VirtualBox 4.0.12 Oracle VM VirtualBox 4.0.14 Oracle VM VirtualBox 4.0.16 Oracle VM VirtualBox 4.0.18 Oracle VM VirtualBox 4.0.20 Oracle VM VirtualBox 4.0.22 Oracle VM VirtualBox 4.0.24 Oracle VM VirtualBox 4.0.26 Oracle VM VirtualBox 4.0.31 Oracle Vm virtualbox 4.0.32 (not an official CPE) Oracle Vm virtualbox 4.0.34 (not an official CPE) Oracle Vm virtualbox 4.0.36 (not an official CPE) Oracle VM VirtualBox 4.1.0 Oracle VM VirtualBox 4.1.2 Oracle Vm Virtualbox 4.1.4 Oracle VM VirtualBox 4.1.6 Oracle VM VirtualBox 4.1.8 Oracle VM VirtualBox 4.1.10 Oracle VM VirtualBox 4.1.12 Oracle VM VirtualBox 4.1.14 Oracle VM VirtualBox 4.1.16 Oracle VM VirtualBox 4.1.18 Oracle VM VirtualBox 4.1.20 Oracle VM VirtualBox 4.1.22 Oracle VM VirtualBox 4.1.24 Oracle VM VirtualBox 4.1.26 Oracle VM VirtualBox 4.1.28 Oracle VM VirtualBox 4.1.30 Oracle VM VirtualBox 4.1.32 Oracle VM VirtualBox 4.1.34 Oracle VM VirtualBox 4.1.39 Oracle Vm virtualbox 4.1.40 (not an official CPE) Oracle Vm virtualbox 4.1.42 (not an official CPE) Oracle Vm virtualbox 4.1.44 (not an official CPE) Oracle VM VirtualBox 4.2.0 Oracle VM VirtualBox 4.2.2 Oracle VM VirtualBox 4.2.4 Oracle VM VirtualBox 4.2.6 Oracle VM VirtualBox 4.2.8 Oracle VM VirtualBox 4.2.10 Oracle VM VirtualBox 4.2.12 Oracle VM VirtualBox 4.2.14 Oracle VM VirtualBox 4.2.16 Oracle VM VirtualBox 4.2.18 Oracle VM VirtualBox 4.2.20 Oracle VM VirtualBox 4.2.22 Oracle VM VirtualBox 4.2.24 Oracle VM VirtualBox 4.2.26 Oracle Vm virtualbox 4.2.28 (not an official CPE) Oracle Vm virtualbox 4.2.30 (not an official CPE) Oracle VM VirtualBox 4.2.31 Oracle Vm virtualbox 4.2.32 (not an official CPE) Oracle Vm virtualbox 4.2.34 (not an official CPE) Oracle Vm virtualbox 4.2.36 (not an official CPE) Oracle VM VirtualBox 4.3.0 Oracle VM VirtualBox 4.3.2 Oracle VM VirtualBox 4.3.4 Oracle VM VirtualBox 4.3.6 Oracle VM VirtualBox 4.3.8 Oracle VM VirtualBox 4.3.10 Oracle VM VirtualBox 4.3.12 Oracle VM VirtualBox 4.3.14 Oracle Vm virtualbox 4.3.16 (not an official CPE) Oracle VM VirtualBox 4.3.18 Oracle Vm virtualbox 4.3.22 (not an official CPE) Oracle Vm virtualbox 4.3.24 (not an official CPE) Oracle Vm virtualbox 4.3.26 (not an official CPE) Oracle Vm virtualbox 4.3.28 (not an official CPE) Oracle VM VirtualBox 4.3.29 Oracle Vm virtualbox 4.3.30 (not an official CPE) Oracle Vm virtualbox 4.3.32 (not an official CPE) Oracle Vm virtualbox 4.3.34 (not an official CPE) Oracle Vm virtualbox 4.3.35 (not an official CPE) Oracle Vm virtualbox 4.3.36 (not an official CPE) Oracle Vm virtualbox 4.3.38 (not an official CPE) Oracle Vm virtualbox 5.0.0 (not an official CPE) Oracle Vm virtualbox 5.0.2 (not an official CPE) Oracle Vm virtualbox 5.0.4 (not an official CPE) Oracle Vm virtualbox 5.0.6 (not an official CPE) Oracle Vm virtualbox 5.0.8 (not an official CPE) Oracle Vm virtualbox 5.0.10 (not an official CPE) Oracle Vm virtualbox 5.0.12 (not an official CPE) Oracle Vm virtualbox 5.0.13 (not an official CPE) Oracle Vm virtualbox 5.0.14 (not an official CPE) Oracle Vm virtualbox 5.0.16 (not an official CPE) Oracle Vm virtualbox 5.0.18 (not an official CPE) Oracle Vm virtualbox 5.0.20 (not an official CPE) Oracle Vm virtualbox 5.0.22 (not an official CPE) Oracle Vm virtualbox 5.0.24 (not an official CPE) Oracle Vm virtualbox 5.0.26 (not an official CPE) Oracle Vm virtualbox 5.0.27 (not an official CPE) Oracle Vm virtualbox 5.0.28 (not an official CPE) Oracle Vm virtualbox 5.0.30 (not an official CPE) Oracle Vm virtualbox 5.0.32 (not an official CPE) Oracle Vm virtualbox 5.0.34 (not an official CPE) Oracle Vm virtualbox 5.0.36 (not an official CPE) Oracle Vm virtualbox 5.0.38 (not an official CPE) Oracle Vm virtualbox 5.0.40 (not an official CPE) Oracle Vm virtualbox 5.1.0 (not an official CPE) Oracle Vm virtualbox 5.1.2 (not an official CPE) Oracle Vm virtualbox 5.1.4 (not an official CPE) Oracle Vm virtualbox 5.1.6 (not an official CPE) Oracle Vm virtualbox 5.1.7 (not an official CPE) Oracle Vm virtualbox 5.1.8 (not an official CPE) Oracle Vm virtualbox 5.1.10 (not an official CPE) Oracle Vm virtualbox 5.1.12 (not an official CPE) Oracle Vm virtualbox 5.1.14 (not an official CPE) Oracle Vm virtualbox 5.1.16 (not an official CPE) Oracle Vm virtualbox 5.1.18 (not an official CPE) Oracle Vm virtualbox 5.1.20 (not an official CPE) Oracle Vm virtualbox 5.1.22 (not an official CPE) Oracle Vm virtualbox 5.1.24 (not an official CPE) Oracle Vm virtualbox 5.1.26 (not an official CPE) Oracle Vm virtualbox 5.1.28 (not an official CPE) Oracle Vm virtualbox 5.1.30 (not an official CPE) Oracle Vm virtualbox 5.1.32 (not an official CPE) Oracle Vm virtualbox 5.1.34 (not an official CPE) Oracle Vm virtualbox 5.1.36 (not an official CPE) Oracle Vm virtualbox 5.1.38 (not an official CPE) Oracle Vm virtualbox 5.2.0 (not an official CPE) Oracle Vm virtualbox 5.2.2 (not an official CPE) Oracle Vm virtualbox 5.2.4 (not an official CPE) Oracle Vm virtualbox 5.2.6 (not an official CPE) Oracle Vm virtualbox 5.2.8 (not an official CPE) Oracle Vm virtualbox 5.2.10 (not an official CPE) Oracle Vm virtualbox 5.2.12 (not an official CPE) Oracle Vm virtualbox 5.2.14 (not an official CPE) Oracle Vm virtualbox 5.2.16 (not an official CPE) Oracle Vm virtualbox 5.2.18 (not an official CPE) Oracle Vm virtualbox 5.2.20 (not an official CPE) Oracle Vm virtualbox 5.2.22 (not an official CPE) Oracle Vm virtualbox 5.2.24 (not an official CPE) Oracle Vm virtualbox 5.2.26 (not an official CPE) Oracle Vm virtualbox 5.2.28 (not an official CPE)