An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a NULL pointer dereference will result, leading to a crash and a denial of service attack. A server is only vulnerable if it has TLSv1.2 and renegotiation enabled (which is the default configuration). OpenSSL TLS clients are not impacted by this issue. All OpenSSL 1.1.1 versions are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1-1.1.1j).

Metrics

No CVSS v4.0

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:N/AC:M/Au:N/C:N/I:N/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Affected Vendors & Products

Vendors Products
Checkpoint
  • Multi-domain Management
  • Multi-domain Management Firmware
  • Quantum Security Gateway
  • Quantum Security Gateway Firmware
  • Quantum Security Management
  • Quantum Security Management Firmware
Debian
  • Debian Linux
Fedoraproject
  • Fedora
Freebsd
  • Freebsd
Mcafee
  • Web Gateway
  • Web Gateway Cloud Service
Netapp
  • Active Iq Unified Manager
  • Cloud Volumes Ontap Mediator
  • E-series Performance Analyzer
  • Oncommand Insight
  • Oncommand Workflow Automation
  • Ontap Select Deploy Administration Utility
  • Santricity Smi-s Provider
  • Snapcenter
  • Storagegrid
Nodejs
  • Node.js
Openssl
  • Openssl
Oracle
  • Communications Communications Policy Management
  • Enterprise Manager For Storage Management
  • Essbase
  • Graalvm
  • Jd Edwards Enterpriseone Tools
  • Jd Edwards World Security
  • Mysql Connectors
  • Mysql Server
  • Mysql Workbench
  • Peoplesoft Enterprise Peopletools
  • Primavera Unifier
  • Secure Backup
  • Secure Global Desktop
  • Zfs Storage Appliance Kit
Redhat
  • Enterprise Linux
  • Jboss Core Services
  • Jboss Enterprise Web Server
  • Rhel Eus
  • Rhev Hypervisor
Siemens
  • Ruggedcom Rcm1224
  • Ruggedcom Rcm1224 Firmware
  • Scalance Lpe9403
  • Scalance Lpe9403 Firmware
  • Scalance M-800
  • Scalance M-800 Firmware
  • Scalance S602
  • Scalance S602 Firmware
  • Scalance S612
  • Scalance S612 Firmware
  • Scalance S615
  • Scalance S615 Firmware
  • Scalance S623
  • Scalance S623 Firmware
  • Scalance S627-2m
  • Scalance S627-2m Firmware
  • Scalance Sc-600
  • Scalance Sc-600 Firmware
  • Scalance W1700
  • Scalance W1700 Firmware
  • Scalance W700
  • Scalance W700 Firmware
  • Scalance Xb-200
  • Scalance Xb-200 Firmware
  • Scalance Xc-200
  • Scalance Xc-200 Firmware
  • Scalance Xf-200ba
  • Scalance Xf-200ba Firmware
  • Scalance Xm-400
  • Scalance Xm-400 Firmware
  • Scalance Xp-200
  • Scalance Xp-200 Firmware
  • Scalance Xr-300wg
  • Scalance Xr-300wg Firmware
  • Scalance Xr524-8c
  • Scalance Xr524-8c Firmware
  • Scalance Xr526-8c
  • Scalance Xr526-8c Firmware
  • Scalance Xr528-6m
  • Scalance Xr528-6m Firmware
  • Scalance Xr552-12
  • Scalance Xr552-12 Firmware
  • Simatic Cloud Connect 7
  • Simatic Cloud Connect 7 Firmware
  • Simatic Cp 1242-7 Gprs V2
  • Simatic Cp 1242-7 Gprs V2 Firmware
  • Simatic Hmi Basic Panels 2nd Generation
  • Simatic Hmi Basic Panels 2nd Generation Firmware
  • Simatic Hmi Comfort Outdoor Panels
  • Simatic Hmi Comfort Outdoor Panels Firmware
  • Simatic Hmi Ktp Mobile Panels
  • Simatic Hmi Ktp Mobile Panels Firmware
  • Simatic Logon
  • Simatic Mv500
  • Simatic Mv500 Firmware
  • Simatic Net Cp1243-7 Lte Eu
  • Simatic Net Cp1243-7 Lte Eu Firmware
  • Simatic Net Cp1243-7 Lte Us
  • Simatic Net Cp1243-7 Lte Us Firmware
  • Simatic Net Cp 1243-1
  • Simatic Net Cp 1243-1 Firmware
  • Simatic Net Cp 1243-8 Irc
  • Simatic Net Cp 1243-8 Irc Firmware
  • Simatic Net Cp 1542sp-1 Irc
  • Simatic Net Cp 1542sp-1 Irc Firmware
  • Simatic Net Cp 1543-1
  • Simatic Net Cp 1543-1 Firmware
  • Simatic Net Cp 1543sp-1
  • Simatic Net Cp 1543sp-1 Firmware
  • Simatic Net Cp 1545-1
  • Simatic Net Cp 1545-1 Firmware
  • Simatic Pcs 7 Telecontrol
  • Simatic Pcs 7 Telecontrol Firmware
  • Simatic Pcs Neo
  • Simatic Pcs Neo Firmware
  • Simatic Pdm
  • Simatic Pdm Firmware
  • Simatic Process Historian Opc Ua Server
  • Simatic Process Historian Opc Ua Server Firmware
  • Simatic Rf166c
  • Simatic Rf166c Firmware
  • Simatic Rf185c
  • Simatic Rf185c Firmware
  • Simatic Rf186c
  • Simatic Rf186c Firmware
  • Simatic Rf186ci
  • Simatic Rf186ci Firmware
  • Simatic Rf188c
  • Simatic Rf188c Firmware
  • Simatic Rf188ci
  • Simatic Rf188ci Firmware
  • Simatic Rf360r
  • Simatic Rf360r Firmware
  • Simatic S7-1200 Cpu 1211c
  • Simatic S7-1200 Cpu 1211c Firmware
  • Simatic S7-1200 Cpu 1212c
  • Simatic S7-1200 Cpu 1212c Firmware
  • Simatic S7-1200 Cpu 1212fc
  • Simatic S7-1200 Cpu 1212fc Firmware
  • Simatic S7-1200 Cpu 1214 Fc
  • Simatic S7-1200 Cpu 1214 Fc Firmware
  • Simatic S7-1200 Cpu 1214c
  • Simatic S7-1200 Cpu 1214c Firmware
  • Simatic S7-1200 Cpu 1215 Fc
  • Simatic S7-1200 Cpu 1215 Fc Firmware
  • Simatic S7-1200 Cpu 1215c
  • Simatic S7-1200 Cpu 1215c Firmware
  • Simatic S7-1200 Cpu 1217c
  • Simatic S7-1200 Cpu 1217c Firmware
  • Simatic S7-1500 Cpu 1518-4 Pn\/dp Mfp
  • Simatic S7-1500 Cpu 1518-4 Pn\/dp Mfp Firmware
  • Simatic Wincc Runtime Advanced
  • Simatic Wincc Telecontrol
  • Sinamics Connect 300
  • Sinamics Connect 300 Firmware
  • Sinec Infrastructure Network Services
  • Sinec Nms
  • Sinec Pni
  • Sinema Server
  • Sinumerik Opc Ua Server
  • Tia Administrator
  • Tim 1531 Irc
  • Tim 1531 Irc Firmware
Sonicwall
  • Capture Client
  • Sma100
  • Sma100 Firmware
  • Sonicos
Tenable
  • Log Correlation Engine
  • Nessus
  • Nessus Network Monitor
  • Tenable.sc

Configuration 1 [-]

cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*

Configuration 2 [-]

OR cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

Configuration 3 [-]

OR cpe:2.3:o:freebsd:freebsd:12.2:-:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:12.2:p1:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:12.2:p2:*:*:*:*:*:*

Configuration 4 [-]

OR cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*
cpe:2.3:a:netapp:cloud_volumes_ontap_mediator:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:e-series_performance_analyzer:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:santricity_smi-s_provider:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:snapcenter:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:storagegrid:-:*:*:*:*:*:*:*

Configuration 5 [-]

OR cpe:2.3:a:tenable:log_correlation_engine:*:*:*:*:*:*:*:*
cpe:2.3:a:tenable:nessus:*:*:*:*:*:*:*:*
cpe:2.3:a:tenable:nessus_network_monitor:5.11.0:*:*:*:*:*:*:*
cpe:2.3:a:tenable:nessus_network_monitor:5.11.1:*:*:*:*:*:*:*
cpe:2.3:a:tenable:nessus_network_monitor:5.12.0:*:*:*:*:*:*:*
cpe:2.3:a:tenable:nessus_network_monitor:5.12.1:*:*:*:*:*:*:*
cpe:2.3:a:tenable:nessus_network_monitor:5.13.0:*:*:*:*:*:*:*
cpe:2.3:a:tenable:tenable.sc:*:*:*:*:*:*:*:*

Configuration 6 [-]

cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*

Configuration 7 [-]

OR cpe:2.3:a:mcafee:web_gateway:8.2.19:*:*:*:*:*:*:*
cpe:2.3:a:mcafee:web_gateway:9.2.10:*:*:*:*:*:*:*
cpe:2.3:a:mcafee:web_gateway:10.1.1:*:*:*:*:*:*:*
cpe:2.3:a:mcafee:web_gateway_cloud_service:8.2.19:*:*:*:*:*:*:*
cpe:2.3:a:mcafee:web_gateway_cloud_service:9.2.10:*:*:*:*:*:*:*
cpe:2.3:a:mcafee:web_gateway_cloud_service:10.1.1:*:*:*:*:*:*:*

Configuration 8 [-]

AND
OR cpe:2.3:o:checkpoint:quantum_security_management_firmware:r80.40:*:*:*:*:*:*:*
cpe:2.3:o:checkpoint:quantum_security_management_firmware:r81:*:*:*:*:*:*:*
cpe:2.3:h:checkpoint:quantum_security_management:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND
OR cpe:2.3:o:checkpoint:multi-domain_management_firmware:r80.40:*:*:*:*:*:*:*
cpe:2.3:o:checkpoint:multi-domain_management_firmware:r81:*:*:*:*:*:*:*
cpe:2.3:h:checkpoint:multi-domain_management:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND
OR cpe:2.3:o:checkpoint:quantum_security_gateway_firmware:r80.40:*:*:*:*:*:*:*
cpe:2.3:o:checkpoint:quantum_security_gateway_firmware:r81:*:*:*:*:*:*:*
cpe:2.3:h:checkpoint:quantum_security_gateway:-:*:*:*:*:*:*:*

Configuration 11 [-]

OR cpe:2.3:a:oracle:communications_communications_policy_management:12.6.0.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:enterprise_manager_for_storage_management:13.4.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:essbase:21.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:graalvm:19.3.5:*:*:*:enterprise:*:*:*
cpe:2.3:a:oracle:graalvm:20.3.1.2:*:*:*:enterprise:*:*:*
cpe:2.3:a:oracle:graalvm:21.0.0.2:*:*:*:enterprise:*:*:*
cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools:*:*:*:*:*:*:*:*
cpe:2.3:a:oracle:jd_edwards_world_security:a9.4:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_connectors:*:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:*:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:*:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_workbench:*:*:*:*:*:*:*:*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.57:*:*:*:*:*:*:*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:*:*:*:*:*:*:*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.59:*:*:*:*:*:*:*
cpe:2.3:a:oracle:primavera_unifier:*:*:*:*:*:*:*:*
cpe:2.3:a:oracle:primavera_unifier:19.12:*:*:*:*:*:*:*
cpe:2.3:a:oracle:primavera_unifier:20.12:*:*:*:*:*:*:*
cpe:2.3:a:oracle:primavera_unifier:21.12:*:*:*:*:*:*:*
cpe:2.3:a:oracle:secure_backup:*:*:*:*:*:*:*:*
cpe:2.3:a:oracle:secure_global_desktop:5.6:*:*:*:*:*:*:*
cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8:*:*:*:*:*:*:*

Configuration 12 [-]

AND
cpe:2.3:o:sonicwall:sma100_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:sonicwall:sma100:-:*:*:*:*:*:*:*

Configuration 13 [-]

OR cpe:2.3:a:sonicwall:capture_client:3.5:*:*:*:*:*:*:*
cpe:2.3:o:sonicwall:sonicos:7.0.1.0:*:*:*:*:*:*:*

Configuration 14 [-]

AND
cpe:2.3:o:siemens:ruggedcom_rcm1224_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:ruggedcom_rcm1224:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND
cpe:2.3:o:siemens:scalance_lpe9403_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:scalance_lpe9403:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND
cpe:2.3:o:siemens:scalance_m-800_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:scalance_m-800:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND
cpe:2.3:o:siemens:scalance_s602_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:scalance_s602:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND
cpe:2.3:o:siemens:scalance_s612_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:scalance_s612:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND
cpe:2.3:o:siemens:scalance_s615_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:scalance_s615:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND
cpe:2.3:o:siemens:scalance_s623_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:scalance_s623:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND
cpe:2.3:o:siemens:scalance_s627-2m_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:scalance_s627-2m:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND
cpe:2.3:o:siemens:scalance_sc-600_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:scalance_sc-600:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND
cpe:2.3:o:siemens:scalance_w700_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:scalance_w700:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND
cpe:2.3:o:siemens:scalance_w1700_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:scalance_w1700:-:*:*:*:*:*:*:*

Configuration 25 [-]

AND
cpe:2.3:o:siemens:scalance_xb-200_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:scalance_xb-200:-:*:*:*:*:*:*:*

Configuration 26 [-]

AND
cpe:2.3:h:siemens:scalance_xc-200:-:*:*:*:*:*:*:*
cpe:2.3:o:siemens:scalance_xc-200_firmware:*:*:*:*:*:*:*:*

Configuration 27 [-]

AND
cpe:2.3:h:siemens:scalance_xf-200ba:-:*:*:*:*:*:*:*
cpe:2.3:o:siemens:scalance_xf-200ba_firmware:*:*:*:*:*:*:*:*

Configuration 28 [-]

AND
cpe:2.3:h:siemens:scalance_xm-400:-:*:*:*:*:*:*:*
cpe:2.3:o:siemens:scalance_xm-400_firmware:*:*:*:*:*:*:*:*

Configuration 29 [-]

AND
cpe:2.3:h:siemens:scalance_xp-200:-:*:*:*:*:*:*:*
cpe:2.3:o:siemens:scalance_xp-200_firmware:*:*:*:*:*:*:*:*

Configuration 30 [-]

AND
cpe:2.3:h:siemens:scalance_xr-300wg:-:*:*:*:*:*:*:*
cpe:2.3:o:siemens:scalance_xr-300wg_firmware:*:*:*:*:*:*:*:*

Configuration 31 [-]

AND
cpe:2.3:h:siemens:scalance_xr524-8c:-:*:*:*:*:*:*:*
cpe:2.3:o:siemens:scalance_xr524-8c_firmware:*:*:*:*:*:*:*:*

Configuration 32 [-]

AND
cpe:2.3:h:siemens:scalance_xr526-8c:-:*:*:*:*:*:*:*
cpe:2.3:o:siemens:scalance_xr526-8c_firmware:*:*:*:*:*:*:*:*

Configuration 33 [-]

AND
cpe:2.3:h:siemens:scalance_xr528-6m:-:*:*:*:*:*:*:*
cpe:2.3:o:siemens:scalance_xr528-6m_firmware:*:*:*:*:*:*:*:*

Configuration 34 [-]

AND
cpe:2.3:o:siemens:scalance_xr552-12_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:scalance_xr552-12:-:*:*:*:*:*:*:*

Configuration 35 [-]

AND
OR cpe:2.3:o:siemens:simatic_cloud_connect_7_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:siemens:simatic_cloud_connect_7_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_cloud_connect_7:-:*:*:*:*:*:*:*

Configuration 36 [-]

AND
OR cpe:2.3:o:siemens:simatic_cp_1242-7_gprs_v2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:siemens:simatic_cp_1242-7_gprs_v2_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_cp_1242-7_gprs_v2:-:*:*:*:*:*:*:*

Configuration 37 [-]

AND
cpe:2.3:o:siemens:simatic_hmi_basic_panels_2nd_generation_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_hmi_basic_panels_2nd_generation:-:*:*:*:*:*:*:*

Configuration 38 [-]

AND
cpe:2.3:o:siemens:simatic_hmi_comfort_outdoor_panels_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_hmi_comfort_outdoor_panels:-:*:*:*:*:*:*:*

Configuration 39 [-]

AND
cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_hmi_ktp_mobile_panels:-:*:*:*:*:*:*:*

Configuration 40 [-]

AND
cpe:2.3:o:siemens:simatic_mv500_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_mv500:-:*:*:*:*:*:*:*

Configuration 41 [-]

AND
cpe:2.3:o:siemens:simatic_net_cp_1243-1_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_net_cp_1243-1:-:*:*:*:*:*:*:*

Configuration 42 [-]

AND
cpe:2.3:o:siemens:simatic_net_cp1243-7_lte_eu_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_net_cp1243-7_lte_eu:-:*:*:*:*:*:*:*

Configuration 43 [-]

AND
cpe:2.3:o:siemens:simatic_net_cp1243-7_lte_us_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_net_cp1243-7_lte_us:-:*:*:*:*:*:*:*

Configuration 44 [-]

AND
cpe:2.3:o:siemens:simatic_net_cp_1243-8_irc_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_net_cp_1243-8_irc:-:*:*:*:*:*:*:*

Configuration 45 [-]

AND
cpe:2.3:o:siemens:simatic_net_cp_1542sp-1_irc_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_net_cp_1542sp-1_irc:-:*:*:*:*:*:*:*

Configuration 46 [-]

AND
cpe:2.3:o:siemens:simatic_net_cp_1543-1_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_net_cp_1543-1:-:*:*:*:*:*:*:*

Configuration 47 [-]

AND
cpe:2.3:o:siemens:simatic_net_cp_1543sp-1_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_net_cp_1543sp-1:-:*:*:*:*:*:*:*

Configuration 48 [-]

AND
cpe:2.3:o:siemens:simatic_net_cp_1545-1_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_net_cp_1545-1:-:*:*:*:*:*:*:*

Configuration 49 [-]

AND
cpe:2.3:o:siemens:simatic_pcs_7_telecontrol_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_pcs_7_telecontrol:-:*:*:*:*:*:*:*

Configuration 50 [-]

AND
cpe:2.3:o:siemens:simatic_pcs_neo_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_pcs_neo:-:*:*:*:*:*:*:*

Configuration 51 [-]

AND
cpe:2.3:o:siemens:simatic_pdm_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_pdm:-:*:*:*:*:*:*:*

Configuration 52 [-]

AND
cpe:2.3:o:siemens:simatic_process_historian_opc_ua_server_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_process_historian_opc_ua_server:-:*:*:*:*:*:*:*

Configuration 53 [-]

AND
cpe:2.3:o:siemens:simatic_rf166c_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_rf166c:-:*:*:*:*:*:*:*

Configuration 54 [-]

AND
cpe:2.3:o:siemens:simatic_rf185c_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_rf185c:-:*:*:*:*:*:*:*

Configuration 55 [-]

AND
cpe:2.3:o:siemens:simatic_rf186c_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_rf186c:-:*:*:*:*:*:*:*

Configuration 56 [-]

AND
cpe:2.3:o:siemens:simatic_rf186ci_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_rf186ci:-:*:*:*:*:*:*:*

Configuration 57 [-]

AND
cpe:2.3:o:siemens:simatic_rf188c_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_rf188c:-:*:*:*:*:*:*:*

Configuration 58 [-]

AND
cpe:2.3:o:siemens:simatic_rf188ci_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_rf188ci:-:*:*:*:*:*:*:*

Configuration 59 [-]

AND
cpe:2.3:o:siemens:simatic_rf360r_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_rf360r:-:*:*:*:*:*:*:*

Configuration 60 [-]

AND
cpe:2.3:o:siemens:simatic_s7-1200_cpu_1211c_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_s7-1200_cpu_1211c:-:*:*:*:*:*:*:*

Configuration 61 [-]

AND
cpe:2.3:o:siemens:simatic_s7-1200_cpu_1212c_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_s7-1200_cpu_1212c:-:*:*:*:*:*:*:*

Configuration 62 [-]

AND
cpe:2.3:o:siemens:simatic_s7-1200_cpu_1212fc_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_s7-1200_cpu_1212fc:-:*:*:*:*:*:*:*

Configuration 63 [-]

AND
cpe:2.3:o:siemens:simatic_s7-1200_cpu_1214_fc_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_s7-1200_cpu_1214_fc:-:*:*:*:*:*:*:*

Configuration 64 [-]

AND
cpe:2.3:o:siemens:simatic_s7-1200_cpu_1214c_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_s7-1200_cpu_1214c:-:*:*:*:*:*:*:*

Configuration 65 [-]

AND
cpe:2.3:o:siemens:simatic_s7-1200_cpu_1214_fc_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_s7-1200_cpu_1214_fc:-:*:*:*:*:*:*:*

Configuration 66 [-]

AND
cpe:2.3:o:siemens:simatic_s7-1200_cpu_1215_fc_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_s7-1200_cpu_1215_fc:-:*:*:*:*:*:*:*

Configuration 67 [-]

AND
cpe:2.3:o:siemens:simatic_s7-1200_cpu_1215c_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_s7-1200_cpu_1215c:-:*:*:*:*:*:*:*

Configuration 68 [-]

AND
cpe:2.3:o:siemens:simatic_s7-1200_cpu_1217c_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_s7-1200_cpu_1217c:-:*:*:*:*:*:*:*

Configuration 69 [-]

AND
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1518-4_pn\/dp_mfp_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1518-4_pn\/dp_mfp:-:*:*:*:*:*:*:*

Configuration 70 [-]

AND
cpe:2.3:o:siemens:sinamics_connect_300_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:sinamics_connect_300:-:*:*:*:*:*:*:*

Configuration 71 [-]

AND
cpe:2.3:o:siemens:tim_1531_irc_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:tim_1531_irc:-:*:*:*:*:*:*:*

Configuration 72 [-]

OR cpe:2.3:a:siemens:simatic_logon:*:*:*:*:*:*:*:*
cpe:2.3:a:siemens:simatic_logon:1.5:sp3_update_1:*:*:*:*:*:*
cpe:2.3:a:siemens:simatic_wincc_runtime_advanced:*:*:*:*:*:*:*:*
cpe:2.3:a:siemens:simatic_wincc_telecontrol:-:*:*:*:*:*:*:*
cpe:2.3:a:siemens:sinec_nms:1.0:-:*:*:*:*:*:*
cpe:2.3:a:siemens:sinec_nms:1.0:sp1:*:*:*:*:*:*
cpe:2.3:a:siemens:sinec_pni:-:*:*:*:*:*:*:*
cpe:2.3:a:siemens:sinema_server:14.0:-:*:*:*:*:*:*
cpe:2.3:a:siemens:sinema_server:14.0:sp1:*:*:*:*:*:*
cpe:2.3:a:siemens:sinema_server:14.0:sp2:*:*:*:*:*:*
cpe:2.3:a:siemens:sinema_server:14.0:sp2_update1:*:*:*:*:*:*
cpe:2.3:a:siemens:sinema_server:14.0:sp2_update2:*:*:*:*:*:*
cpe:2.3:a:siemens:sinumerik_opc_ua_server:*:*:*:*:*:*:*:*
cpe:2.3:a:siemens:tia_administrator:*:*:*:*:*:*:*:*

Configuration 73 [-]

cpe:2.3:a:siemens:sinec_infrastructure_network_services:*:*:*:*:*:*:*:*

Configuration 74 [-]

OR cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*
cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*
cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*
cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*
cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*
cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*
cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*
Package CPE Advisory Released Date
JBCS 2.4.37 SP7
openssl cpe:/a:redhat:jboss_core_services:1 RHSA-2021:1200 2021-04-14T00:00:00Z
JBoss Core Services on RHEL 7
jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7 cpe:/a:redhat:jboss_core_services:1::el7 RHSA-2021:1199 2021-04-14T00:00:00Z
jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7 cpe:/a:redhat:jboss_core_services:1::el7 RHSA-2021:1199 2021-04-14T00:00:00Z
jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7 cpe:/a:redhat:jboss_core_services:1::el7 RHSA-2021:1199 2021-04-14T00:00:00Z
jbcs-httpd24-mod_jk-0:1.2.48-13.redhat_1.jbcs.el7 cpe:/a:redhat:jboss_core_services:1::el7 RHSA-2021:1199 2021-04-14T00:00:00Z
jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7 cpe:/a:redhat:jboss_core_services:1::el7 RHSA-2021:1199 2021-04-14T00:00:00Z
jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7 cpe:/a:redhat:jboss_core_services:1::el7 RHSA-2021:1199 2021-04-14T00:00:00Z
jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7 cpe:/a:redhat:jboss_core_services:1::el7 RHSA-2021:1199 2021-04-14T00:00:00Z
jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7 cpe:/a:redhat:jboss_core_services:1::el7 RHSA-2021:1199 2021-04-14T00:00:00Z
jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7 cpe:/a:redhat:jboss_core_services:1::el7 RHSA-2021:1199 2021-04-14T00:00:00Z
jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7 cpe:/a:redhat:jboss_core_services:1::el7 RHSA-2021:1199 2021-04-14T00:00:00Z
Red Hat Enterprise Linux 8
openssl-1:1.1.1g-15.el8_3 cpe:/o:redhat:enterprise_linux:8 RHSA-2021:1024 2021-03-30T00:00:00Z
Red Hat Enterprise Linux 8.1 Extended Update Support
openssl-1:1.1.1c-5.el8_1 cpe:/o:redhat:rhel_eus:8.1 RHSA-2021:1131 2021-04-07T00:00:00Z
Red Hat Enterprise Linux 8.2 Extended Update Support
openssl-1:1.1.1c-18.el8_2 cpe:/o:redhat:rhel_eus:8.2 RHSA-2021:1063 2021-04-05T00:00:00Z
Red Hat JBoss Web Server 3.1
cpe:/a:redhat:jboss_enterprise_web_server:3.1 RHSA-2021:1203 2021-04-14T00:00:00Z
Red Hat JBoss Web Server 3 for RHEL 7
tomcat-native-0:1.2.23-24.redhat_24.ep7.el7 cpe:/a:redhat:jboss_enterprise_web_server:3.1::el7 RHSA-2021:1202 2021-04-14T00:00:00Z
Red Hat JBoss Web Server 5
cpe:/a:redhat:jboss_enterprise_web_server:5.4 RHSA-2021:1196 2021-04-14T00:00:00Z
Red Hat JBoss Web Server 5.4 on RHEL 7
jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws cpe:/a:redhat:jboss_enterprise_web_server:5.4::el7 RHSA-2021:1195 2021-04-14T00:00:00Z
Red Hat JBoss Web Server 5.4 on RHEL 8
jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws cpe:/a:redhat:jboss_enterprise_web_server:5.4::el8 RHSA-2021:1195 2021-04-14T00:00:00Z
Red Hat Virtualization 4 for Red Hat Enterprise Linux 8
redhat-virtualization-host-0:4.4.5-20210330.0.el8_3 cpe:/o:redhat:rhev_hypervisor:4.4::el8 RHSA-2021:1189 2021-04-14T00:00:00Z
References
Link Providers
http://www.openwall.com/lists/oss-security/2021/03/27/1 cve-icon cve-icon
http://www.openwall.com/lists/oss-security/2021/03/27/2 cve-icon cve-icon
http://www.openwall.com/lists/oss-security/2021/03/28/3 cve-icon cve-icon
http://www.openwall.com/lists/oss-security/2021/03/28/4 cve-icon cve-icon
https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf cve-icon cve-icon
https://cert-portal.siemens.com/productcert/pdf/ssa-772220.pdf cve-icon cve-icon
https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=fb9fa6b51defd48157eeb207f52181f735d96148 cve-icon cve-icon
https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44845 cve-icon cve-icon
https://kc.mcafee.com/corporate/index?page=content&id=SB10356 cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2021/08/msg00029.html cve-icon cve-icon
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CCBFLLVQVILIVGZMBJL3IXZGKWQISYNP/ cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2021-3449 cve-icon
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0013 cve-icon cve-icon
https://security.FreeBSD.org/advisories/FreeBSD-SA-21:07.openssl.asc cve-icon cve-icon
https://security.gentoo.org/glsa/202103-03 cve-icon cve-icon
https://security.netapp.com/advisory/ntap-20210326-0006/ cve-icon cve-icon
https://security.netapp.com/advisory/ntap-20210513-0002/ cve-icon cve-icon
https://security.netapp.com/advisory/ntap-20240621-0006/ cve-icon cve-icon
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-openssl-2021-GHY28dJd cve-icon cve-icon
https://www.cve.org/CVERecord?id=CVE-2021-3449 cve-icon
https://www.debian.org/security/2021/dsa-4875 cve-icon cve-icon
https://www.openssl.org/news/secadv/20210325.txt cve-icon cve-icon cve-icon
https://www.oracle.com//security-alerts/cpujul2021.html cve-icon cve-icon
https://www.oracle.com/security-alerts/cpuApr2021.html cve-icon cve-icon
https://www.oracle.com/security-alerts/cpuapr2022.html cve-icon cve-icon
https://www.oracle.com/security-alerts/cpujul2022.html cve-icon cve-icon
https://www.oracle.com/security-alerts/cpuoct2021.html cve-icon cve-icon
https://www.tenable.com/security/tns-2021-05 cve-icon cve-icon
https://www.tenable.com/security/tns-2021-06 cve-icon cve-icon
https://www.tenable.com/security/tns-2021-09 cve-icon cve-icon
https://www.tenable.com/security/tns-2021-10 cve-icon cve-icon
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: openssl

Published: 2021-03-25T14:25:13.659307Z

Updated: 2024-09-17T03:43:55.497Z

Reserved: 2021-03-17T00:00:00

Link: CVE-2021-3449

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-03-25T15:15:13.450

Modified: 2024-06-21T19:15:19.710

Link: CVE-2021-3449

cve-icon Redhat

Severity : Important

Publid Date: 2021-03-25T00:00:00Z

Links: CVE-2021-3449 - Bugzilla