CVE-2015-1793
published 2015-07-09CVE-2015-1793: The X509_verify_cert function in crypto/x509/x509_vfy.c in OpenSSL 1.0.1n, 1.0.1o, 1.0.2b, and 1.0.2c does not properly process X.509 Basic Constraints cA…
PriorityP263medium6.5CVSS 3.0
AVNACLPRNUINSUCLILAN
EXPLOIT
EPSS
61.80%
99.1th percentile
The X509_verify_cert function in crypto/x509/x509_vfy.c in OpenSSL 1.0.1n, 1.0.1o, 1.0.2b, and 1.0.2c does not properly process X.509 Basic Constraints cA values during identification of alternative certificate chains, which allows remote attackers to spoof a Certification Authority role and trigger unintended certificate verifications via a valid leaf certificate.
Affected
17 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | products | — | — |
| debian | openssl | < openssl 1.0.2d-1 (bookworm) | openssl 1.0.2d-1 (bookworm) |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | >= 0 < 1.0.2d-1 | 1.0.2d-1 |
| openssl | openssl | >= 0 < 1.0.2d-1 | 1.0.2d-1 |
| openssl | openssl | >= 0 < 1.0.2d-1 | 1.0.2d-1 |
| openssl | openssl | >= 0 < 1.0.2d-1 | 1.0.2d-1 |
| oracle | jd_edwards_enterpriseone_tools | — | — |
| oracle | jd_edwards_enterpriseone_tools | — | — |
| oracle | opus_10g_ethernet_switch_family | <= 2.0.0.6 | — |
| oracle | supply_chain_products_suite | — | — |
| oracle | supply_chain_products_suite | — | — |
| oracle | supply_chain_products_suite | — | — |
| paloalto | cortex_xdr | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Detect exploitation by monitoring for TLS/SSL certificate chains where a leaf certificate (CA:FALSE or no basicConstraints) is presented as an issuer/CA for another certificate in the chain. ↗
- →Flag TLS connections where the presented certificate chain contains a certificate with basicConstraints CA:FALSE acting as an issuer for a subordinate certificate — the exploit specifically sets CA:FALSE on the fake leaf cert used as a CA. ↗
- →Monitor for MITM proxy behavior where a server presents a chain including a re-signed sub-intermediate CA certificate (original cacert re-issued under an attacker-controlled intermediate) alongside a valid leaf cert, consistent with the exploit's chain construction. ↗
- →Check for X509_V_ERR_UNABLE_TO_GET_ISSUER_CERT_LOCALLY errors in OpenSSL logs as an indicator that exploitation was attempted but failed due to keyUsage constraints on the leaf certificate. ↗
- →Vulnerable OpenSSL versions to flag in asset inventory or network traffic fingerprinting: 1.0.1n, 1.0.1o, 1.0.2b, 1.0.2c. ↗
- →Use Qualys QID 38104 as a scanner check to identify hosts running vulnerable OpenSSL versions. ↗
- →On FreeBSD, only 10.1-STABLE systems built after 2015-06-11 and before the correction date (2015-07-09) are affected; use svn revision r285330 as a patch-level indicator. ↗
- ·The X509_V_FLAG_NO_ALT_CHAINS flag can be set by applications to explicitly disable alternative chain building and prevent exploitation; absence of this flag is a prerequisite for vulnerability. ↗
- ·Exploitation requires the attacker-controlled leaf certificate to either lack the keyUsage extension entirely, or have at least the keyCertSign bit set; defenders should audit issued certificates for unnecessary keyCertSign grants. ↗
- ·The exploit module requires an active man-in-the-middle network position to function; passive network monitoring alone is insufficient for the attacker. ↗
CVSS provenance
nvdv3.06.5MEDIUMCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
nvdv2.06.4MEDIUMAV:N/AC:L/Au:N/C:P/I:P/A:N
osv6.5MEDIUM
vendor_debian6.5MEDIUM
vendor_redhat6.5MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Palo Alto
PAN-SA-2024-0014 Informational Bulletin: Impact of OSS CVEs in Cortex XDR Agent
vendor_paloalto·2024-11-07·CVSS 6.8
CVE-2014-0195 [MEDIUM] PAN-SA-2024-0014 Informational Bulletin: Impact of OSS CVEs in Cortex XDR Agent
PAN-SA-2024-0014 Informational Bulletin: Impact of OSS CVEs in Cortex XDR Agent
The Palo Alto Networks Product Security Assurance team has evaluated the following open source software (OSS) CVEs as they relate to Cortex XDR Agent. While Cortex XDR Agent may include the
CVEs: CVE-2014-0195, CVE-2014-0224, CVE-2014-3509, CVE-2014-3512, CVE-2014-3513, CVE-2014-3567, CVE-2015-0209, CVE-2015-0292, CVE-2015-1789, CVE-2015-1791, CVE-2015-1793, CVE-2015-3194, CVE-2016-0705, CVE-2016-0797, CVE-2016-0798, CVE-2016-0799, CVE-2016-2105, CVE-2016-2106, CVE-2016-2108, CVE-2016-2109, CVE-2016-2176, CVE-2016-2177, CVE-2016-2179, CVE-2016-2180, CVE-2016-2181, CVE-2016-2182, CVE-2016-2183, CVE-2016-6302, CVE-2016-6303, CVE-2016-6304, CVE-2019-1551, CVE-2019-1552, CVE-2019-1559, CVE-2019-1563, CVE-2020-196
Cisco
OpenSSL Alternative Chains Certificate Forgery Vulnerability (July 2015) Affecting Cisco Products
vendor_cisco·2015-07-10
CVE-2015-1793 [MEDIUM] OpenSSL Alternative Chains Certificate Forgery Vulnerability (July 2015) Affecting Cisco Products
OpenSSL Alternative Chains Certificate Forgery Vulnerability (July 2015) Affecting Cisco Products
On July 9, 2015, the OpenSSL Project released a security advisory detailing a vulnerability affecting applications that verify certificates, including SSL/Transport Layer Security (TLS)/Datagram Transport Layer Security (DTLS) clients and SSL/TLS/DTLS servers using client authentication.
Multiple Cisco products incorporate a version of the OpenSSL package affected by this vulnerability that could allow an unauthenticated, remote attacker to cause certain checks on untrusted certificates to be bypassed, enabling the attacker to forge "trusted" certificates that could be used to conduct man-in-the-middle attacks.
This advisory will be updated as additional information becomes available.
Cisc
Red Hat
openssl: alternative chains certificate forgery
vendor_redhat·2015-07-09·CVSS 6.5
CVE-2015-1793 [MEDIUM] openssl: alternative chains certificate forgery
openssl: alternative chains certificate forgery
The X509_verify_cert function in crypto/x509/x509_vfy.c in OpenSSL 1.0.1n, 1.0.1o, 1.0.2b, and 1.0.2c does not properly process X.509 Basic Constraints cA values during identification of alternative certificate chains, which allows remote attackers to spoof a Certification Authority role and trigger unintended certificate verifications via a valid leaf certificate.
A flaw was found in the way OpenSSL verified alternative certificate chains. An attacker able to supply a certificate chain to an SSL/TLS or DTLS client or an SSL/TLS or DTLS server using client authentication could use this flaw to bypass certain checks in the verification process, possibly allowing them to use one of the certificates in the supplied certificate chain as a CA ce
BSD
FreeBSD-SA-15:12.openssl: OpenSSL alternate chains certificate forgery vulnerability
bsd_advisories·2015-07-09·CVSS 6.5
CVE-2015-1793 [MEDIUM] FreeBSD-SA-15:12.openssl: OpenSSL alternate chains certificate forgery vulnerability
FreeBSD-SA-15:12.openssl Security Advisory
The FreeBSD Project
Topic: OpenSSL alternate chains certificate forgery vulnerability
Category: contrib
Module: openssl
Announced: 2015-07-09
Credits: Adam Langley/David Benjamin (Google/BoringSSL), OpenSSL
Affects: FreeBSD 10.1-STABLE after 2015-06-11 and prior to the
correction date.
Corrected: 2015-07-09 17:17:22 UTC (stable/10, 10.2-PRERELEASE,
10.2-BETA1)
CVE Name: CVE-2015-1793
For general information regarding FreeBSD Security Advisories,
including descriptions of the fields above, security branches, and the
following sections, please visit .
I. Background
FreeBSD includes software from the OpenSSL Project. The OpenSSL Project is
a collaborative effort to develop a robust, commercial-grade, full-featured
Open Source toolkit implementin
Debian
CVE-2015-1793: openssl - The X509_verify_cert function in crypto/x509/x509_vfy.c in OpenSSL 1.0.1n, 1.0.1...
vendor_debian·2015·CVSS 6.5
CVE-2015-1793 [MEDIUM] CVE-2015-1793: openssl - The X509_verify_cert function in crypto/x509/x509_vfy.c in OpenSSL 1.0.1n, 1.0.1...
The X509_verify_cert function in crypto/x509/x509_vfy.c in OpenSSL 1.0.1n, 1.0.1o, 1.0.2b, and 1.0.2c does not properly process X.509 Basic Constraints cA values during identification of alternative certificate chains, which allows remote attackers to spoof a Certification Authority role and trigger unintended certificate verifications via a valid leaf certificate.
Scope: local
bookworm: resolved (fixed in 1.0.2d-1)
bullseye: resolved (fixed in 1.0.2d-1)
forky: resolved (fixed in 1.0.2d-1)
sid: resolved (fixed in 1.0.2d-1)
trixie: resolved (fixed in 1.0.2d-1)
Cisco
OpenSSL Alternative Chains Certificate Forgery Vulnerability (July 2015) Affecting Cisco Products
vendor_cisco
CVE-2015-1793 OpenSSL Alternative Chains Certificate Forgery Vulnerability (July 2015) Affecting Cisco Products
CVE-2015-1793: OpenSSL Alternative Chains Certificate Forgery Vulnerability (July 2015) Affecting Cisco Products
On July 9, 2015, the OpenSSL Project released a security advisory detailing a vulnerability affecting applications that verify certificates, including SSL/Transport Layer Security (TLS)/Datagram Transport Layer Security (DTLS) clients and SSL/TLS/DTLS servers using client authentication. Multiple Cisco products incorporate a version of the OpenSSL package affected by this vulnerability that could allow an unauthenticated, remote attacker to cause certain checks on untrusted certificates to be bypassed, enabling the attacker to forge "trusted" certificates that could be used to conduct man-in-the-middle attacks. This advisory will be updated as additional information becomes avai
GHSA
Forge has a basicConstraints bypass in its certificate chain verification (RFC 5280 violation)
ghsa·2026-03-26
CVE-2026-33896 [HIGH] CWE-295 Forge has a basicConstraints bypass in its certificate chain verification (RFC 5280 violation)
Forge has a basicConstraints bypass in its certificate chain verification (RFC 5280 violation)
## Summary
`pki.verifyCertificateChain()` does not enforce RFC 5280 basicConstraints requirements when an intermediate certificate lacks both the `basicConstraints` and `keyUsage` extensions. This allows any leaf certificate (without these extensions) to act as a CA and sign other certificates, which node-forge will accept as valid.
## Technical Details
In `lib/x509.js`, the `verifyCertificateChain()` function (around lines 3147-3199) has two conditional checks for CA authorization:
1. The `keyUsage` check (which includes a sub-check requiring `basicConstraints` to be present) is gated on `keyUsageExt !== null`
2. The `basicConstraints.cA` check is gated on `bcExt !== null`
When a certifica
OSV
Forge has a basicConstraints bypass in its certificate chain verification (RFC 5280 violation)
osv·2026-03-26
CVE-2026-33896 [HIGH] Forge has a basicConstraints bypass in its certificate chain verification (RFC 5280 violation)
Forge has a basicConstraints bypass in its certificate chain verification (RFC 5280 violation)
## Summary
`pki.verifyCertificateChain()` does not enforce RFC 5280 basicConstraints requirements when an intermediate certificate lacks both the `basicConstraints` and `keyUsage` extensions. This allows any leaf certificate (without these extensions) to act as a CA and sign other certificates, which node-forge will accept as valid.
## Technical Details
In `lib/x509.js`, the `verifyCertificateChain()` function (around lines 3147-3199) has two conditional checks for CA authorization:
1. The `keyUsage` check (which includes a sub-check requiring `basicConstraints` to be present) is gated on `keyUsageExt !== null`
2. The `basicConstraints.cA` check is gated on `bcExt !== null`
When a certifica
GHSA
GHSA-4j29-v246-6w5w: The X509_verify_cert function in crypto/x509/x509_vfy
ghsa_unreviewed·2022-05-14
CVE-2015-1793 [MEDIUM] GHSA-4j29-v246-6w5w: The X509_verify_cert function in crypto/x509/x509_vfy
The X509_verify_cert function in crypto/x509/x509_vfy.c in OpenSSL 1.0.1n, 1.0.1o, 1.0.2b, and 1.0.2c does not properly process X.509 Basic Constraints cA values during identification of alternative certificate chains, which allows remote attackers to spoof a Certification Authority role and trigger unintended certificate verifications via a valid leaf certificate.
OSV
CVE-2015-1793: The X509_verify_cert function in crypto/x509/x509_vfy
osv·2015-07-09·CVSS 6.5
CVE-2015-1793 [MEDIUM] CVE-2015-1793: The X509_verify_cert function in crypto/x509/x509_vfy
The X509_verify_cert function in crypto/x509/x509_vfy.c in OpenSSL 1.0.1n, 1.0.1o, 1.0.2b, and 1.0.2c does not properly process X.509 Basic Constraints cA values during identification of alternative certificate chains, which allows remote attackers to spoof a Certification Authority role and trigger unintended certificate verifications via a valid leaf certificate.
No detection rules found.
Exploit-DB
OpenSSL - Alternative Chains Certificate Forgery
exploitdb·2015-11-05
CVE-2015-1793 OpenSSL - Alternative Chains Certificate Forgery
OpenSSL - Alternative Chains Certificate Forgery
---
#!/usr/bin/env ruby
# encoding: ASCII-8BIT
# By Ramon de C Valle. This work is dedicated to the public domain.
require 'openssl'
require 'optparse'
require 'socket'
Version = [0, 0, 1]
Release = nil
class String
def hexdump(stream=$stdout)
0.step(bytesize - 1, 16) do |i|
stream.printf('%08x ', i)
0.upto(15) do |j|
stream.printf(' ') if j == 8
if i + j >= bytesize
stream.printf(' ')
else
stream.printf('%02x ', getbyte(i + j))
end
end
stream.printf(' ')
0.upto(15) do |j|
if i + j >= bytesize
stream.printf(' ')
else
if /[[:print:]]/ === getbyte(i + j).chr && /[^[:space:]]/ === getbyte(i + j).chr
stream.printf('%c', getbyte(i + j))
else
stream.printf('.')
end
end
end
stream.printf("\n")
end
end
end
options = {}
OptionParser.new d
Metasploit
OpenSSL Alternative Chains Certificate Forgery MITM Proxy
metasploit
OpenSSL Alternative Chains Certificate Forgery MITM Proxy
OpenSSL Alternative Chains Certificate Forgery MITM Proxy
This module exploits a logic error in OpenSSL by impersonating the server and sending a specially-crafted chain of certificates, resulting in certain checks on untrusted certificates to be bypassed on the client, allowing it to use a valid leaf certificate as a CA certificate to sign a fake certificate. The SSL/TLS session is then proxied to the server allowing the session to continue normally and application data transmitted between the peers to be saved. The valid leaf certificate must not contain the keyUsage extension or it must have at least the keyCertSign bit set (see X509_check_issued function in crypto/x509v3/v3_purp.c); otherwise; X509_verify_cert fails with X509_V_ERR_UNABLE_TO_GET_ISSUER_CERT_LOCALLY. This module requir
Bugzilla
CVE-2015-1793 openssl: alternative chains certificate forgery [fedora-all]
bugzilla·2015-07-09·CVSS 6.5
CVE-2015-1793 [MEDIUM] CVE-2015-1793 openssl: alternative chains certificate forgery [fedora-all]
CVE-2015-1793 openssl: alternative chains certificate forgery [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versions of Fed
Bugzilla
CVE-2015-1793 openssl: alternative chains certificate forgery
bugzilla·2015-07-02·CVSS 6.5
CVE-2015-1793 [MEDIUM] CVE-2015-1793 openssl: alternative chains certificate forgery
CVE-2015-1793 openssl: alternative chains certificate forgery
The following was reported by OpenSSL upstream:
During certificate verification, OpenSSL (starting from version 1.0.1n and 1.0.2b) will attempt to find an alternative certificate chain if the first
attempt to build such a chain fails. An error in the implementation of this logic can mean that an attacker could cause certain checks on untrusted certificates to be bypassed, such as the CA flag, enabling them to use a valid leaf certificate to act as a CA and "issue" an invalid certificate.
This issue will impact any application that verifies certificates including SSL/TLS/DTLS clients and SSL/TLS/DTLS servers using client authentication.
This issue affects OpenSSL versions 1.0.2c, 1.0.2b, 1.0.1n and 1.0.1o.
OpenSSL 1.0.2b/1.0
Qualys
OpenSSL Vulnerability | Qualys
blogs_qualys·2015-07-08·CVSS 6.5
CVE-2015-1793 [MEDIUM] OpenSSL Vulnerability | Qualys
The OpenSSL team has announced a fix to resolve a high severity vulnerability (CVE-2015-1793) which allows certificate forgery. During certificate verification, OpenSSL (starting from version 1.0.1n and 1.0.2b) will attempt to find an alternative certificate chain if the first attempt to build such a chain fails. An error in the implementation of this logic can mean that an attacker could cause certain checks on untrusted certificates to be bypassed, such as the CA flag, enabling them to use a valid leaf certificate to act as a CA and "issue" an invalid certificate. This issue will impact any application that verifies certificates including SSL/TLS/DTLS clients and SSL/TLS/DTLS servers using client authentication. It affects OpenSSL versions 1.0.2c, 1.0.2b, 1.0.1n and 1.0.1o
OpenSSL 1.0.2
Qualys
OpenSSL Vulnerability | Qualys
blogs_qualys·2015-07-08·CVSS 6.5
CVE-2015-1793 [MEDIUM] OpenSSL Vulnerability | Qualys
The OpenSSL team has announced a fix to resolve a high severity vulnerability (CVE-2015-1793) which allows certificate forgery. During certificate verification, OpenSSL (starting from version 1.0.1n and 1.0.2b) will attempt to find an alternative certificate chain if the first attempt to build such a chain fails. An error in the implementation of this logic can mean that an attacker could cause certain checks on untrusted certificates to be bypassed, such as the CA flag, enabling them to use a valid leaf certificate to act as a CA and "issue" an invalid certificate. This issue will impact any application that verifies certificates including SSL/TLS/DTLS clients and SSL/TLS/DTLS servers using client authentication. It affects OpenSSL versions 1.0.2c, 1.0.2b, 1.0.1n and 1.0.1o
OpenSSL 1.0.2
http://fortiguard.com/advisory/2015-07-09-cve-2015-1793-openssl-alternative-chains-certificate-forgeryhttp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2015-008.txt.aschttp://kb.juniper.net/InfoCenter/index?page=content&id=JSA10694http://lists.fedoraproject.org/pipermail/package-announce/2015-July/161747.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2015-July/161782.htmlhttp://marc.info/?l=bugtraq&m=143880121627664&w=2http://marc.info/?l=bugtraq&m=144370846326989&w=2http://openssl.org/news/secadv_20150709.txthttp://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150710-opensslhttp://www.fortiguard.com/advisory/2015-07-09-cve-2015-1793-openssl-alternative-chains-certificate-forgeryhttp://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.htmlhttp://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.htmlhttp://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.htmlhttp://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.htmlhttp://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.htmlhttp://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.htmlhttp://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.htmlhttp://www.securityfocus.com/bid/75652http://www.securityfocus.com/bid/91787http://www.securitytracker.com/id/1032817http://www.slackware.com/security/viewer.php?l=slackware-security&y=2015&m=slackware-security.561427http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-454058.htmhttps://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=9a0db453ba017ebcaccbee933ee6511a9ae4d1c8https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04822825https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05045763https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05184351https://help.ecostruxureit.com/display/public/UADCO8x/StruxureWare+Data+Center+Operation+Software+Vulnerability+Fixeshttps://kc.mcafee.com/corporate/index?page=content&id=SB10125https://security.gentoo.org/glsa/201507-15https://www.exploit-db.com/exploits/38640/https://www.freebsd.org/security/advisories/FreeBSD-SA-15:12.openssl.aschttp://fortiguard.com/advisory/2015-07-09-cve-2015-1793-openssl-alternative-chains-certificate-forgeryhttp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2015-008.txt.aschttp://kb.juniper.net/InfoCenter/index?page=content&id=JSA10694http://lists.fedoraproject.org/pipermail/package-announce/2015-July/161747.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2015-July/161782.htmlhttp://marc.info/?l=bugtraq&m=143880121627664&w=2http://marc.info/?l=bugtraq&m=144370846326989&w=2http://openssl.org/news/secadv_20150709.txthttp://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150710-opensslhttp://www.fortiguard.com/advisory/2015-07-09-cve-2015-1793-openssl-alternative-chains-certificate-forgeryhttp://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.htmlhttp://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.htmlhttp://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.htmlhttp://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.htmlhttp://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.htmlhttp://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.htmlhttp://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.htmlhttp://www.securityfocus.com/bid/75652http://www.securityfocus.com/bid/91787http://www.securitytracker.com/id/1032817http://www.slackware.com/security/viewer.php?l=slackware-security&y=2015&m=slackware-security.561427http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-454058.htmhttps://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=9a0db453ba017ebcaccbee933ee6511a9ae4d1c8https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04822825https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05045763https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05184351https://help.ecostruxureit.com/display/public/UADCO8x/StruxureWare+Data+Center+Operation+Software+Vulnerability+Fixeshttps://kc.mcafee.com/corporate/index?page=content&id=SB10125https://security.gentoo.org/glsa/201507-15https://www.exploit-db.com/exploits/38640/https://www.freebsd.org/security/advisories/FreeBSD-SA-15:12.openssl.asc
2015-07-09
Published