Podatność CVE-2014-8730

Podatność CVE-2014-8730

Publikacja: 2014-12-09 Modyfikacja: 2014-12-10

Opis:

	Tytuł	Autor	Data
High	TLS 1.x CBC cipher connections Padding issue	imperialviolet	09.12.2014

Ogólna skala CVSS	Znaczenie	Łatwość wykorzystania
4.3/10	2.9/10	8.6/10

Affected software
F5 -> Big-iq device
F5 -> ARX
F5 -> Big-iq security
F5 -> Big-ip access policy manager
F5 -> Enterprise manager
F5 -> Big-ip advanced firewall manager
F5 -> Firepass
F5 -> Big-ip analytics
F5 -> Linerate
F5 -> Big-ip application acceleration manager
F5 -> Big-ip application security manager
F5 -> Big-ip edge gateway
F5 -> Big-ip global traffic manager
F5 -> Big-ip link controller
F5 -> Big-ip local traffic manager
F5 -> Big-ip policy enforcement manager
F5 -> Big-ip protocol security module
F5 -> Big-ip wan optimization manager
F5 -> Big-ip webaccelerator
F5 -> Big-iq cloud

http://marc.info/?l=bugtraq&m=144372772101168&w=2

http://secunia.com/advisories/62167

http://secunia.com/advisories/62224

http://secunia.com/advisories/62388

http://www-01.ibm.com/support/docview.wss?uid=swg21693271

http://www-01.ibm.com/support/docview.wss?uid=swg21693337

http://www-01.ibm.com/support/docview.wss?uid=swg21693495

http://www.openwall.com/lists/oss-security/2014/12/09/27

https://devcentral.f5.com/articles/cve-2014-8730-padding-issue-8151

https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04819635

https://support.f5.com/kb/en-us/solutions/public/15000/800/sol15882.html

https://support.lenovo.com/product_security/poodle

https://support.lenovo.com/us/en/product_security/poodle

https://www.imperialviolet.org/2014/12/08/poodleagain.html