CVE-2008-7270 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	4.3 UNKNOWN	NETWORK	MEDIUM		AV:N/AC:M/Au:N/C:N/I:P/A:N
mitre	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 83%

Vendor	Product	Version
openssl	openssl	𝑥 ≤ 0.9.8i
openssl	openssl	0.9.1c:c
openssl	openssl	0.9.2b:b
openssl	openssl	0.9.3
openssl	openssl	0.9.3a:a
openssl	openssl	0.9.4
openssl	openssl	0.9.5
openssl	openssl	0.9.5:beta1
openssl	openssl	0.9.5:beta2
openssl	openssl	0.9.5a:a
openssl	openssl	0.9.5a:a
openssl	openssl	0.9.5a:a
openssl	openssl	0.9.6
openssl	openssl	0.9.6:beta1
openssl	openssl	0.9.6:beta2
openssl	openssl	0.9.6:beta3
openssl	openssl	0.9.6a:a
openssl	openssl	0.9.6a:a
openssl	openssl	0.9.6a:a
openssl	openssl	0.9.6a:a
openssl	openssl	0.9.6b:b
openssl	openssl	0.9.6c:c
openssl	openssl	0.9.6d:d
openssl	openssl	0.9.6e:e
openssl	openssl	0.9.6f:f
openssl	openssl	0.9.6g:g
openssl	openssl	0.9.6h:h
openssl	openssl	0.9.6i:i
openssl	openssl	0.9.6j:j
openssl	openssl	0.9.6k:k
openssl	openssl	0.9.6l:l
openssl	openssl	0.9.6m:m
openssl	openssl	0.9.7
openssl	openssl	0.9.7:beta1
openssl	openssl	0.9.7:beta2
openssl	openssl	0.9.7:beta3
openssl	openssl	0.9.7:beta4
openssl	openssl	0.9.7:beta5
openssl	openssl	0.9.7:beta6
openssl	openssl	0.9.7a:a
openssl	openssl	0.9.7b:b
openssl	openssl	0.9.7c:c
openssl	openssl	0.9.7d:d
openssl	openssl	0.9.7e:e
openssl	openssl	0.9.7f:f
openssl	openssl	0.9.7g:g
openssl	openssl	0.9.7h:h
openssl	openssl	0.9.7i:i
openssl	openssl	0.9.7j:j
openssl	openssl	0.9.7k:k
openssl	openssl	0.9.7l:l
openssl	openssl	0.9.7m:m
openssl	openssl	0.9.8
openssl	openssl	0.9.8a:a
openssl	openssl	0.9.8b:b
openssl	openssl	0.9.8c:c
openssl	openssl	0.9.8d:d
openssl	openssl	0.9.8e:e
openssl	openssl	0.9.8f:f
openssl	openssl	0.9.8g:g
openssl	openssl	0.9.8h:h

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

openssl

bullseye	1.1.1w-0+deb11u1 fixed
bullseye (security)	1.1.1w-0+deb11u2 fixed
bookworm	3.0.14-1~deb12u1 fixed
bookworm (security)	3.0.14-1~deb12u2 fixed
sid	3.3.2-2 fixed
trixie	3.3.2-2 fixed

Ubuntu Releases

Ubuntu Product

Codename

openssl

maverick	not-affected
lucid	not-affected
karmic	Fixed 0.9.8g-16ubuntu3.5 released
hardy	Fixed 0.9.8g-4ubuntu3.13 released
dapper	Fixed 0.9.8a-7ubuntu0.14 released

Common Weakness Enumeration

CWE-310 -

References

http://cvs.openssl.org/chngview?cn=17489

http://marc.info/?l=bugtraq&m=132077688910227&w=2

http://marc.info/?l=bugtraq&m=132077688910227&w=2

http://secunia.com/advisories/42493

http://ubuntu.com/usn/usn-1029-1

http://www.redhat.com/support/errata/RHSA-2010-0977.html

http://www.redhat.com/support/errata/RHSA-2010-0978.html

http://www.redhat.com/support/errata/RHSA-2011-0896.html

http://www.securityfocus.com/archive/1/522176

http://www.securityfocus.com/archive/1/522176

http://www.securityfocus.com/bid/45254

https://bugzilla.redhat.com/show_bug.cgi?id=659462

http://cvs.openssl.org/chngview?cn=17489

http://marc.info/?l=bugtraq&m=132077688910227&w=2

http://marc.info/?l=bugtraq&m=132077688910227&w=2

http://secunia.com/advisories/42493

http://ubuntu.com/usn/usn-1029-1

http://www.redhat.com/support/errata/RHSA-2010-0977.html

http://www.redhat.com/support/errata/RHSA-2010-0978.html

http://www.redhat.com/support/errata/RHSA-2011-0896.html

http://www.securityfocus.com/archive/1/522176

http://www.securityfocus.com/archive/1/522176

http://www.securityfocus.com/bid/45254

https://bugzilla.redhat.com/show_bug.cgi?id=659462