JVN/CVE Demo: Nvdinfos

NVD

Id: 22769
Name: CVE-2015-0288
Description: The X509_to_X509_REQ function in crypto/x509/x509_req.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow attackers to cause a denial of service (NULL pointer dereference and application crash) via an invalid certificate key.
Reject
CVSS Version: 2
CVSS Score: 5
Severity: Medium
CVSS Base Score: 5
CVSS Impact Subscore: 2.9
CVSS Exploit Subscore: 10
CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Pub Date: 2017-01-19
Published: 2015-03-19
Modified Date: 2017-01-02
Seq: 2015-0288

Actions

Related NVD References

Id	NVD Id	NVD No.	Reference	Actions
120755	22769	CVE-2015-0288	http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10680	View
120756	22769	CVE-2015-0288	APPLE-SA-2015-06-30-2	View
120757	22769	CVE-2015-0288	FEDORA-2015-4303	View
120758	22769	CVE-2015-0288	FEDORA-2015-4320	View
120759	22769	CVE-2015-0288	FEDORA-2015-4300	View
120760	22769	CVE-2015-0288	FEDORA-2015-6951	View
120761	22769	CVE-2015-0288	FEDORA-2015-6855	View
120762	22769	CVE-2015-0288	SUSE-SU-2015:0541	View
120763	22769	CVE-2015-0288	SUSE-SU-2015:0578	View
120764	22769	CVE-2015-0288	openSUSE-SU-2015:1277	View
120765	22769	CVE-2015-0288	openSUSE-SU-2016:0640	View
120766	22769	CVE-2015-0288	openSUSE-SU-2015:0554	View
120767	22769	CVE-2015-0288	HPSBGN03306	View
120768	22769	CVE-2015-0288	SSRT102000	View
120769	22769	CVE-2015-0288	HPSBMU03380	View
120770	22769	CVE-2015-0288	HPSBMU03409	View
120771	22769	CVE-2015-0288	HPSBMU03413	View
120772	22769	CVE-2015-0288	HPSBMU03397	View
120773	22769	CVE-2015-0288	RHSA-2015:0715	View
120774	22769	CVE-2015-0288	RHSA-2015:0716	View
120775	22769	CVE-2015-0288	RHSA-2015:0752	View
120776	22769	CVE-2015-0288	RHSA-2015:0800	View
120777	22769	CVE-2015-0288	http://support.apple.com/kb/HT204942	View
120778	22769	CVE-2015-0288	DSA-3197	View
120779	22769	CVE-2015-0288	MDVSA-2015:062	View
120780	22769	CVE-2015-0288	MDVSA-2015:063	View
120781	22769	CVE-2015-0288	http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html	View
120782	22769	CVE-2015-0288	http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html	View
120783	22769	CVE-2015-0288	http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html	View
120784	22769	CVE-2015-0288	http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html	View
120785	22769	CVE-2015-0288	http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html	View
120786	22769	CVE-2015-0288	73237	View
120787	22769	CVE-2015-0288	1031929	View
120788	22769	CVE-2015-0288	USN-2537-1	View
120789	22769	CVE-2015-0288	https://access.redhat.com/articles/1384453	View
120790	22769	CVE-2015-0288	https://bto.bluecoat.com/security-advisory/sa92	View
120791	22769	CVE-2015-0288	https://bugzilla.redhat.com/show_bug.cgi?id=1202418	View
120792	22769	CVE-2015-0288	https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=28a00bcd8e318da18031b2ac8778c64147cd54f9	View
120793	22769	CVE-2015-0288	https://kc.mcafee.com/corporate/index?page=content&id=SB10110	View
120794	22769	CVE-2015-0288	https://rt.openssl.org/Ticket/Display.html?id=3708&user=guest&pass=guest	View
120795	22769	CVE-2015-0288	GLSA-201503-11	View
120796	22769	CVE-2015-0288	FreeBSD-SA-15:06	View
120797	22769	CVE-2015-0288	https://www.openssl.org/news/secadv_20150319.txt	View

Related JVN

Id	Name	Title	Summary	Cveinfo Name	Cveinfo Id	Nvdinfo Name	Nvdinfo Id	Cvssv2	Cvssv3	Jvnurl	Published Date	Last Updated Date	Actions
6563	JVNDB-2015-001883	OpenSSL の crypto/x509/x509_req.c 内の X509_to_X509_REQ 関数におけるサービス運用妨害 (DoS) の脆弱性	OpenSSL の crypto/x509/x509_req.c 内の X509_to_X509_REQ 関数には、サービス運用妨害 (NULL ポインタデリファレンスおよびアプリケーションクラッシュ) 状態にされる脆弱性が存在します。	CVE-2015-0288	77499	CVE-2015-0288	22769	5		http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-001883.html	2015-03-19	2016-11-09	View

Message	Memory use
Component initialization	1.39 MB
Controller action start	1.49 MB
Controller render start	2.35 MB
View render complete	29.96 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	3.10
Event: Controller.initialize	0.02
Event: Controller.startup	0.09
Controller action	262.87
Event: Controller.beforeRender	5.03
» Processing toolbar data	4.93
Rendering View	1223.01
» Event: View.beforeRender	0.02
» Rendering APP/View/Nvdinfos/view.ctp	1180.70
» Event: View.afterRender	0.05
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	26.44
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	8.38
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/rvm/gems/ruby-3.0.2/bin:/usr/local/rvm/gems/ruby-3.0.2@global/bin:/usr/local/rvm/rubies/ruby-3.0.2/bin:/usr/share/Modules/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/usr/local/rvm/bin:/var/lib/snapd/snap/bin:/root/bin:/sbin:/usr/local/bin
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/nvdinfos/view/22769
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/nvdinfos/view/22769
Remote Port	6188
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	216.73.216.0
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Ld Library Path	/usr/local/apache24/lib
Http Connection	close
Http Cache Control	max-age=259200
Http X Forwarded For	10.1.121.64
Http Via	1.1 squid-proxy-75b5465b89-zznv6 (squid/6.10)
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http Cookie	advanced-frontend=2f6qvmqndpvol5pobq776jp8r7
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
X Dostranslated Ip	216.73.216.0
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	216.73.216.0
Unique Id	aC9JKGnia6q-jc0VmmtKBQAAAUQ
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect X Dostranslated Ip	216.73.216.0
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	216.73.216.0
Redirect Unique Id	aC9JKGnia6q-jc0VmmtKBQAAAUQ
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect X Dostranslated Ip	216.73.216.0
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	216.73.216.0
Redirect Redirect Unique Id	aC9JKGnia6q-jc0VmmtKBQAAAUQ
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1747929384.7438
Request Time	1747929384

NVD

Actions

Related NVD References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files