Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
None
Privileges Required
None
Attack Vector
Network
0

CVE-2015-4000

Disclosure Date: May 21, 2015
CVE-2015-4000 CVSS v3 Base Score: 3.7
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHE_EXPORT and then rewriting a ServerHello with DHE_EXPORT replaced by DHE, aka the “Logjam” issue.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics
Base Score:
3.7 Low
Impact Score:
1.4
Exploitability Score:
2.2
Vector:
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
Attack Vector (AV):
Network
Attack Complexity (AC):
High
Privileges Required (PR):
None
User Interaction (UI):
None
Scope (S):
Unchanged
Confidentiality (C):
None
Integrity (I):
Low
Availability (A):
None

General Information

Offensive Application
Unknown
Utility Class
Unknown
Ports
Unknown
OS
Unknown
Vulnerable Versions
n/a
Prerequisites
Unknown
Discovered By
Unknown
PoC Author
Unknown
Metasploit Module
Unknown
Reporter
Unknown

Vendors

  • apple,
  • canonical,
  • debian,
  • google,
  • hp,
  • ibm,
  • microsoft,
  • mozilla,
  • openssl,
  • opera,
  • oracle,
  • suse

Products

  • chrome -,
  • content manager 8.5,
  • debian linux 7.0,
  • debian linux 8.0,
  • firefox -,
  • firefox 39.0,
  • firefox esr 31.8,
  • firefox esr 38.1.0,
  • firefox os 2.2,
  • hp-ux b.11.31,
  • internet explorer -,
  • iphone os,
  • jdk 1.6.0,
  • jdk 1.7.0,
  • jdk 1.8.0,
  • jre 1.6.0,
  • jre 1.7.0,
  • jre 1.8.0,
  • jrockit r28.3.6,
  • linux enterprise desktop 12,
  • linux enterprise server 11.0,
  • linux enterprise software development kit 12,
  • mac os x,
  • network security services 3.19,
  • openssl,
  • opera browser -,
  • safari -,
  • seamonkey 2.35,
  • sparc-opl service processor,
  • suse linux enterprise server 12,
  • thunderbird 31.8,
  • thunderbird 38.1,
  • ubuntu linux 12.04,
  • ubuntu linux 14.04,
  • ubuntu linux 14.10,
  • ubuntu linux 15.04

References

Canonical
CVE-2015-4000 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4000)
BID-91787 (http://www.securityfocus.com/bid/91787)
BID-74733 (http://www.securityfocus.com/bid/74733)
Advisory
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10681
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00006.html
http://www-01.ibm.com/support/docview.wss?uid=swg21962739
https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5098403
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00001.html
SSRT102180 (http://marc.info?l=bugtraq&m=143880121627664&w=2)
http://rhn.redhat.com/errata/RHSA-2015-1243.html
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00025.html
SECTRACK-1033208 (http://www.securitytracker.com/id/1033208)
SECTRACK-1032637 (http://www.securitytracker.com/id/1032637)
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04923929
HPSBGN03404 (http://marc.info?l=bugtraq&m=144050121701297&w=2)
DSA-3688 (http://www.debian.org/security/2016/dsa-3688)
DSA-3287 (http://www.debian.org/security/2015/dsa-3287)
HPSBUX03512 (http://marc.info?l=bugtraq&m=144493176821532&w=2)
SECTRACK-1032865 (http://www.securitytracker.com/id/1032865)
HPSBGN03351 (http://marc.info?l=bugtraq&m=143557934009303&w=2)
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00033.html
http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00026.html
http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
https://kc.mcafee.com/corporate/index?page=content&id=SB10122
http://support.apple.com/kb/HT204941
SECTRACK-1034728 (http://www.securitytracker.com/id/1034728)
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00005.html
http://www-304.ibm.com/support/docview.wss?uid=swg21962816
SECTRACK-1032656 (http://www.securitytracker.com/id/1032656)
http://rhn.redhat.com/errata/RHSA-2016-2056.html
http://www-01.ibm.com/support/docview.wss?uid=swg21959812
[oss-security] 20150520 CVE-2015-4000 - TLS does not properly convey server's ciphersuite choice (http://openwall.com/lists/oss-security/2015/05/20/8)
https://www-304.ibm.com/support/docview.wss?uid=swg21959745
http://lists.opensuse.org/opensuse-updates/2015-10/msg00011.html
HPSBGN03361 (http://marc.info?l=bugtraq&m=143628304012255&w=2)
HPSBGN03399 (http://marc.info?l=bugtraq&m=144060576831314&w=2)
SECTRACK-1032475 (http://www.securitytracker.com/id/1032475)
http://www-304.ibm.com/support/docview.wss?uid=swg21959132
SECTRACK-1032960 (http://www.securitytracker.com/id/1032960)
http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00037.html
SECTRACK-1032653 (http://www.securitytracker.com/id/1032653)
http://www-01.ibm.com/support/docview.wss?uid=swg21959539
http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00031.html
SECTRACK-1033385 (http://www.securitytracker.com/id/1033385)
https://www.openssl.org/blog/blog/2015/05/20/logjam-freak-upcoming-changes
http://www-01.ibm.com/support/docview.wss?uid=swg21959325
https://openssl.org/news/secadv/20150611.txt
GLSA-201512-10 (https://security.gentoo.org/glsa/201512-10)
http://rhn.redhat.com/errata/RHSA-2015-1229.html
http://lists.opensuse.org/opensuse-updates/2016-02/msg00097.html
SECTRACK-1032864 (http://www.securitytracker.com/id/1032864)
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04740527
SECTRACK-1032910 (http://www.securitytracker.com/id/1032910)
SECTRACK-1032645 (http://www.securitytracker.com/id/1032645)
USN-2706-1 (http://www.ubuntu.com/usn/USN-2706-1)
GLSA-201701-46 (https://security.gentoo.org/glsa/201701-46)
http://rhn.redhat.com/errata/RHSA-2015-1526.html
http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
SECTRACK-1033760 (http://www.securitytracker.com/id/1033760)
http://rhn.redhat.com/errata/RHSA-2015-1485.html
http://rhn.redhat.com/errata/RHSA-2015-1197.html
HPSBMU03401 (http://marc.info?l=bugtraq&m=144104533800819&w=2)
SECTRACK-1032699 (http://www.securitytracker.com/id/1032699)
http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html
SECTRACK-1032476 (http://www.securitytracker.com/id/1032476)
http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04949778
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03831en_us
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04772190
SECTRACK-1032649 (http://www.securitytracker.com/id/1032649)
HPSBMU03345 (http://marc.info?l=bugtraq&m=144043644216842&w=2)
HPSBUX03363 (http://marc.info?l=bugtraq&m=143637549705650&w=2)
http://www-304.ibm.com/support/docview.wss?uid=swg21967893
http://www-304.ibm.com/support/docview.wss?uid=swg21958984
http://rhn.redhat.com/errata/RHSA-2015-1544.html
http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html
http://www-01.ibm.com/support/docview.wss?uid=swg21959517
FEDORA-2015-9130 (http://lists.fedoraproject.org/pipermail/package-announce/2015-June/159314.html)
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00004.html
SSRT102112 (https://h20564.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c04718196)
SECTRACK-1032688 (http://www.securitytracker.com/id/1032688)
http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00024.html
SECTRACK-1032652 (http://www.securitytracker.com/id/1032652)
FEDORA-2015-9048 (http://lists.fedoraproject.org/pipermail/package-announce/2015-June/159351.html)
http://rhn.redhat.com/errata/RHSA-2015-1185.html
http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html
HPSBGN03362 (http://marc.info?l=bugtraq&m=143558092609708&w=2)
http://www-01.ibm.com/support/docview.wss?uid=swg21959195
APPLE-SA-2015-06-30-2 (http://lists.apple.com/archives/security-announce/2015/Jun/msg00002.html)
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00040.html
http://www-01.ibm.com/support/docview.wss?uid=swg21961717
FEDORA-2015-9161 (http://lists.fedoraproject.org/pipermail/package-announce/2015-June/160117.html)
http://www-304.ibm.com/support/docview.wss?uid=swg21960041
http://www-304.ibm.com/support/docview.wss?uid=swg21960194
HPSBGN03402 (http://marc.info?l=bugtraq&m=144069189622016&w=2)
SECTRACK-1032648 (http://www.securitytracker.com/id/1032648)
SECTRACK-1032759 (http://www.securitytracker.com/id/1032759)
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.19.1_release_notes
http://www-01.ibm.com/support/docview.wss?uid=swg21959453
http://rhn.redhat.com/errata/RHSA-2015-1228.html
HPSBGN03405 (http://marc.info?l=bugtraq&m=144060606031437&w=2)
DSA-3316 (http://www.debian.org/security/2015/dsa-3316)
https://security.netapp.com/advisory/ntap-20150619-0001
SECTRACK-1033209 (http://www.securitytracker.com/id/1033209)
SECTRACK-1032871 (http://www.securitytracker.com/id/1032871)
http://www-01.ibm.com/support/docview.wss?uid=swg21959111
http://www-304.ibm.com/support/docview.wss?uid=swg21960418
DSA-3324 (http://www.debian.org/security/2015/dsa-3324)
SECTRACK-1032655 (http://www.securitytracker.com/id/1032655)
SECTRACK-1033210 (http://www.securitytracker.com/id/1033210)
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04832246
https://www.suse.com/security/cve/CVE-2015-4000.html
HPSBGN03411 (http://marc.info?l=bugtraq&m=144061542602287&w=2)
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00037.html
HPSBGN03533 (http://marc.info?l=bugtraq&m=145409266329539&w=2)
USN-2673-1 (http://www.ubuntu.com/usn/USN-2673-1)
https://help.ecostruxureit.com/display/public/UADCO8x/StruxureWare+Data+Center+Operation+Software+Vulnerability+Fixes
SECTRACK-1034884 (http://www.securitytracker.com/id/1034884)
HPSBMU03356 (http://marc.info?l=bugtraq&m=143506486712441&w=2)
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04953655
GLSA-201603-11 (https://security.gentoo.org/glsa/201603-11)
SECTRACK-1033064 (http://www.securitytracker.com/id/1033064)
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00003.html
SECTRACK-1032778 (http://www.securitytracker.com/id/1032778)
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05128722
SECTRACK-1032474 (http://www.securitytracker.com/id/1032474)
HPSBGN03407 (http://marc.info?l=bugtraq&m=144102017024820&w=2)
http://support.citrix.com/article/CTX201114
http://lists.opensuse.org/opensuse-updates/2015-07/msg00016.html
http://fortiguard.com/advisory/2015-07-09-cve-2015-1793-openssl-alternative-chains-certificate-forgery
SECTRACK-1032784 (http://www.securitytracker.com/id/1032784)
SECTRACK-1032777 (http://www.securitytracker.com/id/1032777)
SECTRACK-1033416 (http://www.securitytracker.com/id/1033416)
SECTRACK-1033991 (http://www.securitytracker.com/id/1033991)
http://www-304.ibm.com/support/docview.wss?uid=swg21960380
SECTRACK-1032647 (http://www.securitytracker.com/id/1032647)
SECTRACK-1032654 (http://www.securitytracker.com/id/1032654)
http://support.apple.com/kb/HT204942
SECTRACK-1033341 (http://www.securitytracker.com/id/1033341)
http://rhn.redhat.com/errata/RHSA-2015-1486.html
http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04876402
http://lists.opensuse.org/opensuse-security-announce/2015-10/msg00001.html
SECTRACK-1033433 (http://www.securitytracker.com/id/1033433)
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05193083
USN-2696-1 (http://www.ubuntu.com/usn/USN-2696-1)
http://aix.software.ibm.com/aix/efixes/security/sendmail_advisory2.asc
APPLE-SA-2015-06-30-1 (http://lists.apple.com/archives/security-announce/2015/Jun/msg00001.html)
SECTRACK-1032702 (http://www.securitytracker.com/id/1032702)
DSA-3339 (http://www.debian.org/security/2015/dsa-3339)
SECTRACK-1032727 (http://www.securitytracker.com/id/1032727)
http://rhn.redhat.com/errata/RHSA-2015-1242.html
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00034.html
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10727
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773241
GLSA-201506-02 (https://security.gentoo.org/glsa/201506-02)
http://www-01.ibm.com/support/docview.wss?uid=swg21959530
http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html
http://rhn.redhat.com/errata/RHSA-2016-1624.html
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html
http://www-01.ibm.com/support/docview.wss?uid=swg21960191
http://www-01.ibm.com/support/docview.wss?uid=swg21959636
http://rhn.redhat.com/errata/RHSA-2015-1488.html
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00046.html
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00047.html
SECTRACK-1033430 (http://www.securitytracker.com/id/1033430)
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00039.html
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04918839
http://rhn.redhat.com/errata/RHSA-2015-1241.html
http://lists.opensuse.org/opensuse-updates/2016-02/msg00094.html
http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html
http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00017.html
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04770140
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05045763
https://puppet.com/security/cve/CVE-2015-4000
http://rhn.redhat.com/errata/RHSA-2015-1230.html
http://www.mozilla.org/security/announce/2015/mfsa2015-70.html
http://www.solarwinds.com/documentation/storage/storagemanager/docs/ReleaseNotes/releaseNotes.htm
http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00039.html
SECTRACK-1032651 (http://www.securitytracker.com/id/1032651)
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04926789
SECTRACK-1033065 (http://www.securitytracker.com/id/1033065)
https://support.citrix.com/article/CTX216642
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773119
USN-2656-1 (http://www.ubuntu.com/usn/USN-2656-1)
http://www-01.ibm.com/support/docview.wss?uid=swg21959481
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00007.html
SECTRACK-1033222 (http://www.securitytracker.com/id/1033222)
SECTRACK-1036218 (http://www.securitytracker.com/id/1036218)
http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00021.html
HPSBGN03373 (http://marc.info?l=bugtraq&m=143655800220052&w=2)
SECTRACK-1040630 (http://www.securitytracker.com/id/1040630)
http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00023.html
SECTRACK-1034087 (http://www.securitytracker.com/id/1034087)
SECTRACK-1033513 (http://www.securitytracker.com/id/1033513)
https://bto.bluecoat.com/security-advisory/sa98
SECTRACK-1032884 (http://www.securitytracker.com/id/1032884)
http://rhn.redhat.com/errata/RHSA-2015-1604.html
http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00040.html
https://bugzilla.mozilla.org/show_bug.cgi?id=1138554
SECTRACK-1032932 (http://www.securitytracker.com/id/1032932)
SECTRACK-1033891 (http://www.securitytracker.com/id/1033891)
http://www-01.ibm.com/support/docview.wss?uid=swg21962455
http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00032.html
SECTRACK-1032783 (http://www.securitytracker.com/id/1032783)
SECTRACK-1032856 (http://www.securitytracker.com/id/1032856)
https://www.openssl.org/news/secadv_20150611.txt
http://www.fortiguard.com/advisory/2015-05-20-logjam-attack
DSA-3300 (http://www.debian.org/security/2015/dsa-3300)
USN-2656-2 (http://www.ubuntu.com/usn/USN-2656-2)
SECTRACK-1033067 (http://www.securitytracker.com/id/1033067)
SECTRACK-1033019 (http://www.securitytracker.com/id/1033019)
http://rhn.redhat.com/errata/RHSA-2015-1072.html
SECTRACK-1032650 (http://www.securitytracker.com/id/1032650)
SSRT102180 (http://marc.info/?l=bugtraq&m=143880121627664&w=2)
HPSBGN03404 (http://marc.info/?l=bugtraq&m=144050121701297&w=2)
HPSBUX03512 (http://marc.info/?l=bugtraq&m=144493176821532&w=2)
HPSBGN03351 (http://marc.info/?l=bugtraq&m=143557934009303&w=2)
HPSBGN03361 (http://marc.info/?l=bugtraq&m=143628304012255&w=2)
HPSBGN03399 (http://marc.info/?l=bugtraq&m=144060576831314&w=2)
HPSBMU03401 (http://marc.info/?l=bugtraq&m=144104533800819&w=2)
HPSBMU03345 (http://marc.info/?l=bugtraq&m=144043644216842&w=2)
HPSBUX03363 (http://marc.info/?l=bugtraq&m=143637549705650&w=2)
HPSBGN03362 (http://marc.info/?l=bugtraq&m=143558092609708&w=2)
HPSBGN03402 (http://marc.info/?l=bugtraq&m=144069189622016&w=2)
HPSBGN03405 (http://marc.info/?l=bugtraq&m=144060606031437&w=2)
HPSBGN03411 (http://marc.info/?l=bugtraq&m=144061542602287&w=2)
HPSBGN03533 (http://marc.info/?l=bugtraq&m=145409266329539&w=2)
HPSBMU03356 (http://marc.info/?l=bugtraq&m=143506486712441&w=2)
HPSBGN03407 (http://marc.info/?l=bugtraq&m=144102017024820&w=2)
HPSBGN03373 (http://marc.info/?l=bugtraq&m=143655800220052&w=2)
https://www.openssl.org/blog/blog/2015/05/20/logjam-freak-upcoming-changes/
https://security.netapp.com/advisory/ntap-20150619-0001/
Miscellaneous
https://weakdh.org/imperfect-forward-secrecy.pdf
https://blog.cloudflare.com/logjam-the-latest-tls-vulnerability-explained
https://weakdh.org
NetBSD-SA2015-008 (http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2015-008.txt.asc)
https://www.oracle.com/security-alerts/cpujan2021.html
https://blog.cloudflare.com/logjam-the-latest-tls-vulnerability-explained/
https://weakdh.org/

Additional Info

Authenticated
Unknown
Exploitable
Unknown
Reliability
Unknown
Stability
Unknown
Available Mitigations
Unknown
Shelf Life
Unknown
Userbase/Installbase
Unknown
Patch Effectiveness
Unknown
Technical Analysis