CVE-2017-15533
Published: May 17, 2018
Modified: Sep 16, 2024
Description
Symantec SSL Visibility (SSLV) 3.8.4FC, 3.10 prior to 3.10.4.1, 3.11, and 3.12 prior to 3.12.2.1 are vulnerable to the Return of the Bleichenbacher Oracle Threat (ROBOT) attack. All affected SSLV versions act as weak oracles according the oracle classification used in the ROBOT research paper. A remote attacker, who has captured a pre-recorded SSL session inspected by SSLV, can establish multiple millions of crafted SSL connections to the target and obtain the session keys required to decrypt the pre-recorded SSL session.
| Vendor | Product | Versions |
|---|---|---|
Symantec Corporation | SSL Visibility (SSLV) | affected 3.8.4FCaffected 3.10 prior to 3.10.4.1affected 3.11affected 3.12 prior to 3.12.2.1 |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now