CVE-2015-5211

Vulnerability Profile Updated a month ago
Download STIX
Preview STIX
CVE-2015-5211 is a vulnerability that affected multiple versions of the OpenSSL cryptographic software library. This flaw allowed an attacker to initiate a denial-of-service attack on a server, resulting in a complete shutdown of the targeted system. Such an attack was achieved by exploiting a weakness in the Diffie-Hellman key exchange protocol used in the OpenSSL library. The vulnerability was discovered in May 2015 and assigned the CVE identifier shortly thereafter. The exploit was discovered by security researchers who identified that the OpenSSL implementation of the Diffie-Hellman key exchange protocol was flawed, allowing an attacker to force a downgrade of the encryption protocol to a weaker level. Attackers could exploit this vulnerability by sending specially crafted network packets to the server, causing it to crash or become unresponsive. Due to its severity and widespread use of OpenSSL at the time, this vulnerability was considered critical. To address the issue, the OpenSSL project released a security advisory recommending users to upgrade their software to a patched version immediately. In addition, various organizations and vendors provided patches for their products to mitigate the vulnerability. Fortunately, even though the vulnerability was widely publicized, there were no known successful attacks in the wild before a fix was made available.
Possible Aliases / Cluster overlaps
It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at.
IDVotesProfile Description
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Associated Malware
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Threat Actors
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Vulnerabilities
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Source Document References
Information about the CVE-2015-5211 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
SourceCreatedAtTitle
CERT-EU
a year ago
Multiple vulnerabilities in IBM Tivoli Netcool Configuration Manager