Unknown
CVE-2018-15769
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
Add References:
CVE-2018-15769
MITRE ATT&CK
Collection
Command and Control
Credential Access
Defense Evasion
Discovery
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation
Topic Tags
Description
RSA BSAFE Micro Edition Suite versions prior to 4.0.11 (in 4.0.x series) and versions prior to 4.1.6.2 (in 4.1.x series) contain a key management error issue. A malicious TLS server could potentially cause a Denial Of Service (DoS) on TLS clients during the handshake when a very large prime value is sent to the TLS client, and an Ephemeral or Anonymous Diffie-Hellman cipher suite (DHE or ADH) is used.
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
General Information
Products
- application testing suite 13.3.0.1
- bsafe
- communications analytics 12.1.1
- communications ip service activator 7.3.0
- communications ip service activator 7.4.0
- core rdbms 11.2.0.4
- core rdbms 12.1.0.2
- core rdbms 12.2.0.1
- core rdbms 18c
- core rdbms 19c
- enterprise manager ops center 12.3.3
- enterprise manager ops center 12.4.0
- goldengate application adapters 12.3.2.1.0
- jd edwards enterpriseone tools 9.2
- real user experience insight 13.1.2.1
- real user experience insight 13.2.3.1
- real user experience insight 13.3.1.0
- retail predictive application server 15.0.3
- retail predictive application server 16.0.3.0
- security service 11.1.1.9.0
- security service 12.1.3.0.0
- security service 12.2.1.3.0
- timesten in memory database
References
Miscellaneous
Additional Info
Technical Analysis
Report as Emergent Threat Response
Report as Zero-day Exploit
Report as Exploited in the Wild
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
