SSL/TLS: RSA Temporary Key Handling RSA_EXPORT Downgrade Issue (FREAK) CVE-2015-0204
- Severity
- Not available
- Vulnerability description
- Not available
- Risk description
- Not available
- Recommendation
- Not available
- References
- https://freakattack.comhttps://openssl-library.org/news/secadv/20150108.txthttps://web.archive.org/web/20210122095002/http://www.securityfocus.com/bid/71936https://www.secpod.com/blog/freak-attackhttps://blog.cryptographyengineering.com/2015/03/03/attack-of-week-freak-or-factoring-nsahttps://ssl-config.mozilla.orghttps://www.bsi.bund.de/SharedDocs/Downloads/EN/BSI/Publications/TechGuidelines/TG02102/BSI-TR-02102-1.htmlhttps://www.bsi.bund.de/EN/Themen/Oeffentliche-Verwaltung/Mindeststandards/TLS-Protokoll/TLS-Protokoll_node.htmlhttps://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Publikationen/TechnischeRichtlinien/TR03116/BSI-TR-03116-4.htmlhttps://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Mindeststandards/Mindeststandard_BSI_TLS_Version_2_4.htmlhttps://web.archive.org/web/20240113175943/https://www.bettercrypto.orghttps://www.enisa.europa.eu/publications/algorithms-key-size-and-parameters-report-2014
- Codename
- Not available
- Detectable with
- Network Scanner
- Scan engine
- OpenVAS
- Exploitable with Sniper
- No
- CVE Published
- Not available
- Detection added at
- Software Type
- Not available
- Vendor
- Not available
- Product
- Not available
Detect & validate this vulnerability
Go beyond surface scans. Get real validation with proprietary tools designed to prove what’s exploitable in your environment.