virus logo FortiClient Vulnerability

OpenSSL CVE-2016-7054 Privilege Escalation Vulnerability

description-logoDescription

Severity: HighTLS connections using *-CHACHA20-POLY1305 ciphersuites are susceptible to a DoSattack by corrupting larger payloads. This can result in an OpenSSL crash. Thisissue is not considered to be exploitable beyond a DoS.OpenSSL 1.1.0 users should upgrade to 1.1.0cThis issue does not affect OpenSSL versions prior to 1.1.0This issue was reported to OpenSSL on 25th September 2016 by Robertwas developed by Richard Levitte of the OpenSSL development team.

affected-products-logoAffected Applications

OpenSSL

CVE References

CVE-2016-7054

Other References

https://www.openssl.org/news/vulnerabilities.html
ID 39877
Created Jan 17, 2020
Description
Updated		 Dec 19, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Linux
Vendor OpenSSL
Patch manual
Application OpenSSL