virus logo FortiClient Vulnerability

Nodejs CVE-2015-3193 Information Disclosure Vulnerability

description-logoDescription

The Montgomery squaring implementation in crypto/bn/asm/x86_64-mont5.pl in OpenSSL 1.0.2 before 1.0.2e on the x86_64 platform, as used by the BN_mod_exp function, mishandles carry propagation and produces incorrect output, which makes it easier for remote attackers to obtain sensitive private-key information via an attack against use of a (1) Diffie-Hellman (DH) or (2) Diffie-Hellman Ephemeral (DHE) ciphersuite.

affected-products-logoAffected Applications

Nodejs

CVE References

CVE-2015-3193

Other References

https://nodejs.org/en/blog/vulnerability/
ID 73089
Created Aug 21, 2022
Description
Updated		 Dec 15, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor Node.js Foundation
Patch manual
Application Nodejs