1. Home
  2. Vulnerabilities
  3. CVE-2015-4000

CVE-2015-4000

CVSS v3.0 3.7 (Low)
37% Progress
CVSS v2.0 4.3 (Medium)
43% Progress
EPSS 97.36 % (100th)
97.36% Progress
Affected Products 25
Advisories 95
Info CVSS EPSS Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHE_EXPORT and then rewriting a ServerHello with DHE_EXPORT replaced by DHE, aka the "Logjam" issue.

Weaknesses
CWE-310
Cryptographic Issues
Related CVEs
CVE Status
PUBLISHED
CNA
MITRE
Published Date
2015-05-21 00:59:00
(9 years ago)
Updated Date
2023-02-09 16:15:28
(19 months ago)

Affected Products

Apple

Canonical

Debian

Google

Hp

Ibm

Microsoft

Mozilla

Openssl

Opera

Oracle

Suse

Configuration #1

AND
    CPE23 From Up To
OR  
  Openssl from 1.0.1 version and 1.0.1m and prior versions cpe:2.3:a:openssl:openssl >= 1.0.1 <= 1.0.1m
OR  
  Running on/with
  Openssl from 1.0.2 version and 1.0.2a and prior versions cpe:2.3:a:openssl:openssl >= 1.0.2 <= 1.0.2a

Configuration #2

AND
    CPE23 From Up To
OR  
  Canonical Ubuntu Linux 12.04 cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts
OR  
  Running on/with
  Canonical Ubuntu Linux 14.04 cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts
OR  
  Running on/with
  Canonical Ubuntu Linux 14.10 cpe:2.3:o:canonical:ubuntu_linux:14.10
OR  
  Running on/with
  Canonical Ubuntu Linux 15.04 cpe:2.3:o:canonical:ubuntu_linux:15.04

Configuration #3

AND
    CPE23 From Up To
OR  
  Openssl 1.0.1m and prior versions cpe:2.3:a:openssl:openssl <= 1.0.1m
OR  
  Running on/with
  Hp-ux B.11.31 cpe:2.3:o:hp:hp-ux:b.11.31

Configuration #4

AND
    CPE23 From Up To
OR  
  Ibm Content Manager 8.5 for Enterprise cpe:2.3:a:ibm:content_manager:8.5:*:*:*:*:enterprise

Configuration #5

AND
    CPE23 From Up To
OR  
  Oracle Jrockit R28.3.6 cpe:2.3:a:oracle:jrockit:r28.3.6

Configuration #6

AND
    CPE23 From Up To
OR  
  Debian Linux 7.0 cpe:2.3:o:debian:debian_linux:7.0
OR  
  Running on/with
  Debian Linux 8.0 cpe:2.3:o:debian:debian_linux:8.0

Configuration #7

AND
    CPE23 From Up To
OR  
  Oracle Jdk 1.6.0 Update95 cpe:2.3:a:oracle:jdk:1.6.0:update95
OR  
  Running on/with
  Oracle Jdk 1.7.0 Update75 cpe:2.3:a:oracle:jdk:1.7.0:update75
OR  
  Running on/with
  Oracle Jdk 1.7.0 Update80 cpe:2.3:a:oracle:jdk:1.7.0:update80
OR  
  Running on/with
  Oracle Jdk 1.8.0 Update 33 cpe:2.3:a:oracle:jdk:1.8.0:update_33
OR  
  Running on/with
  Oracle Jdk 1.8.0 Update45 cpe:2.3:a:oracle:jdk:1.8.0:update45
OR  
  Running on/with
  Oracle Jre 1.6.0 Update 95 cpe:2.3:a:oracle:jre:1.6.0:update_95
OR  
  Running on/with
  Oracle Jre 1.7.0 Update 75 cpe:2.3:a:oracle:jre:1.7.0:update_75
OR  
  Running on/with
  Oracle Jre 1.7.0 Update 80 cpe:2.3:a:oracle:jre:1.7.0:update_80
OR  
  Running on/with
  Oracle Jre 1.8.0 Update 33 cpe:2.3:a:oracle:jre:1.8.0:update_33
OR  
  Running on/with
  Oracle Jre 1.8.0 Update 45 cpe:2.3:a:oracle:jre:1.8.0:update_45

Configuration #8

AND
    CPE23 From Up To
OR  
  Suse Linux Enterprise Desktop 12 cpe:2.3:o:suse:linux_enterprise_desktop:12
OR  
  Running on/with
  Suse Linux Enterprise Server 11.0 SP4 cpe:2.3:o:suse:linux_enterprise_server:11.0:sp4
OR  
  Running on/with
  Suse Linux Enterprise Software Development Kit 12 cpe:2.3:o:suse:linux_enterprise_software_development_kit:12
OR  
  Running on/with
  Suse Linux Enterprise Server 12 cpe:2.3:o:suse:suse_linux_enterprise_server:12

Configuration #9

AND
    CPE23 From Up To
OR  
  Apple Iphone Os 8.3 and prior versions cpe:2.3:o:apple:iphone_os <= 8.3
OR  
  Running on/with
  Apple Mac Os X 10.10.3 and prior versions cpe:2.3:o:apple:mac_os_x <= 10.10.3

Configuration #10

AND
    CPE23 From Up To
OR  
  Mozilla Network Security Services 3.19 cpe:2.3:a:mozilla:network_security_services:3.19

Configuration #11

AND
    CPE23 From Up To
OR  
  Oracle Sparc-opl Service Processor 1121 and prior versions cpe:2.3:a:oracle:sparc-opl_service_processor <= 1121

Configuration #12

AND
    CPE23 From Up To
OR  
  Apple Safari cpe:2.3:a:apple:safari:-
OR  
  Running on/with
  Google Chrome cpe:2.3:a:google:chrome:-
OR  
  Running on/with
  Microsoft Internet Explorer cpe:2.3:a:microsoft:internet_explorer:-
OR  
  Running on/with
  Mozilla Firefox cpe:2.3:a:mozilla:firefox:-
OR  
  Running on/with
  Opera Browser cpe:2.3:a:opera:opera_browser:-

Configuration #13

AND
    CPE23 From Up To
OR  
  Mozilla Firefox 39.0 cpe:2.3:a:mozilla:firefox:39.0
OR  
  Running on/with
  Mozilla Firefox Esr 31.8 cpe:2.3:a:mozilla:firefox_esr:31.8
OR  
  Running on/with
  Mozilla Firefox Esr 38.1.0 cpe:2.3:a:mozilla:firefox_esr:38.1.0
OR  
  Running on/with
  Mozilla Seamonkey 2.35 cpe:2.3:a:mozilla:seamonkey:2.35
OR  
  Running on/with
  Mozilla Thunderbird 31.8 cpe:2.3:a:mozilla:thunderbird:31.8
OR  
  Running on/with
  Mozilla Thunderbird 38.1 cpe:2.3:a:mozilla:thunderbird:38.1
OR  
  Running on/with
  Mozilla Firefox Os 2.2 cpe:2.3:o:mozilla:firefox_os:2.2