Skip to main content
CVE-2015-8288 MEDIUM This Month

NETGEAR D3600 devices with firmware 1.0.0.49 and D6000 devices with firmware 1.0.0.49 and earlier use the same hardcoded private key across different customers' installations, which allows remote. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Netgear Information Disclosure D3600 Firmware D6000 Firmware
NVD
CVSS 3.0
5.9
EPSS
0.6%
CVE-2016-2178 MEDIUM PATCH This Month

The dsa_sign_setup function in crypto/dsa/dsa_ossl.c in OpenSSL through 1.0.2h does not properly ensure the use of constant-time operations, which makes it easier for local users to discover a DSA. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Information Disclosure OpenSSL Linux Solaris Linux Enterprise +3
NVD
CVSS 3.1
5.5
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy