- Home
- CVEs with nessus.description==This update for nagios-nrpe fixes one issue. This security issue was
fixed :
- CVE-2015-4000: Prevent Logjam. The TLS protocol 1.2 and
earlier, when a DHE_EXPORT ciphersuite is enabled on a
server but not on a client, did not properly convey a
DHE_EXPORT choice, which allowed man-in-the-middle
attackers to conduct cipher-downgrade attacks by
rewriting a ClientHello with DHE replaced by DHE_EXPORT
and then rewriting a ServerHello with DHE_EXPORT
replaced by DHE (bsc#938906).
Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top