CVE-2008-0166
Description
OpenSSL 0.9.8c-1 up to versions before 0.9.8g-9 on Debian-based operating systems uses a random number generator that generates predictable numbers, which makes it easier for remote attackers to conduct brute force guessing attacks against cryptographic keys.
Risk Information
Base Score
7.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
3.1
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple vulnerabilities affected in OpenSSL 0.9.8g | Windows |
| Multiple Vulnerabilities are affected in OpenSSL 0.9.8d | Windows |
| Multiple Vulnerabilities are affected in OpenSSL 0.9.8e | Windows |
| Multiple Vulnerabilities are affected in OpenSSL 0.9.8f | Windows |
| Multiple Vulnerabilities are affected in OpenSSL 0.9.8g | Windows |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-352259 | OpenSSL (3.6.0) |
| PATCH-352259 | OpenSSL (3.6.0) |
| PATCH-352259 | OpenSSL (3.6.0) |
| PATCH-352259 | OpenSSL (3.6.0) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234