CVE-2016-2181

Low

Low Medium High Critical

CVSS Score

Published: Sep 16, 2016

Last Modified: Apr 12, 2025

Vulnerability Description

The Anti-Replay feature in the DTLS implementation in OpenSSL before 1.1.0 mishandles early use of a new epoch number in conjunction with a large sequence number, which allows remote attackers to cause a denial of service (false-positive packet drops) via spoofed DTLS records, related to rec_layer_d1.c and ssl3_record.c.

Known Affected Software

32 configuration(s) from 2 vendor(s)

openssl

Version:

1.0.1d

CPE:

cpe:2.3:a:openssl:openssl:1.0.1d:*:*:*:*:*:*:*

openssl

Version:

1.0.2c

CPE:

cpe:2.3:a:openssl:openssl:1.0.2c:*:*:*:*:*:*:*

openssl

Version:

1.0.1b

CPE:

cpe:2.3:a:openssl:openssl:1.0.1b:*:*:*:*:*:*:*

openssl

Version:

1.0.1a

CPE:

cpe:2.3:a:openssl:openssl:1.0.1a:*:*:*:*:*:*:*

openssl

Version:

1.0.2g

CPE:

cpe:2.3:a:openssl:openssl:1.0.2g:*:*:*:*:*:*:*

openssl

Version:

1.0.1k

CPE:

cpe:2.3:a:openssl:openssl:1.0.1k:*:*:*:*:*:*:*

openssl

Version:

1.0.1n

CPE:

cpe:2.3:a:openssl:openssl:1.0.1n:*:*:*:*:*:*:*

openssl

Version:

1.0.1s

CPE:

cpe:2.3:a:openssl:openssl:1.0.1s:*:*:*:*:*:*:*

openssl

Version:

1.0.1q

CPE:

cpe:2.3:a:openssl:openssl:1.0.1q:*:*:*:*:*:*:*

openssl

Version:

1.0.2e

CPE:

cpe:2.3:a:openssl:openssl:1.0.2e:*:*:*:*:*:*:*

openssl

Version:

1.0.2

CPE:

cpe:2.3:a:openssl:openssl:1.0.2:-:*:*:*:*:*:*

openssl

Version:

1.0.1r

CPE:

cpe:2.3:a:openssl:openssl:1.0.1r:*:*:*:*:*:*:*

openssl

Version:

1.0.2d

CPE:

cpe:2.3:a:openssl:openssl:1.0.2d:*:*:*:*:*:*:*

openssl

Version:

1.0.2h

CPE:

cpe:2.3:a:openssl:openssl:1.0.2h:*:*:*:*:*:*:*

openssl

Version:

1.0.1i

CPE:

cpe:2.3:a:openssl:openssl:1.0.1i:*:*:*:*:*:*:*

openssl

Version:

1.0.2a

CPE:

cpe:2.3:a:openssl:openssl:1.0.2a:*:*:*:*:*:*:*

openssl

Version:

1.0.1f

CPE:

cpe:2.3:a:openssl:openssl:1.0.1f:*:*:*:*:*:*:*

openssl

Version:

1.0.1h

CPE:

cpe:2.3:a:openssl:openssl:1.0.1h:*:*:*:*:*:*:*

openssl

Version:

1.0.1j

CPE:

cpe:2.3:a:openssl:openssl:1.0.1j:*:*:*:*:*:*:*

openssl

Version:

1.0.1p

CPE:

cpe:2.3:a:openssl:openssl:1.0.1p:*:*:*:*:*:*:*

openssl

Version:

1.0.1g

CPE:

cpe:2.3:a:openssl:openssl:1.0.1g:*:*:*:*:*:*:*

openssl

Version:

1.0.1e

CPE:

cpe:2.3:a:openssl:openssl:1.0.1e:*:*:*:*:*:*:*

openssl

Version:

1.0.2f

CPE:

cpe:2.3:a:openssl:openssl:1.0.2f:*:*:*:*:*:*:*

openssl

Version:

1.0.1

CPE:

cpe:2.3:a:openssl:openssl:1.0.1:-:*:*:*:*:*:*

openssl

Version:

1.0.1m

CPE:

cpe:2.3:a:openssl:openssl:1.0.1m:*:*:*:*:*:*:*

openssl

Version:

1.0.1l

CPE:

cpe:2.3:a:openssl:openssl:1.0.1l:*:*:*:*:*:*:*

openssl

Version:

1.0.1c

CPE:

cpe:2.3:a:openssl:openssl:1.0.1c:*:*:*:*:*:*:*

openssl

Version:

1.0.1t

CPE:

cpe:2.3:a:openssl:openssl:1.0.1t:*:*:*:*:*:*:*

openssl

Version:

1.0.1o

CPE:

cpe:2.3:a:openssl:openssl:1.0.1o:*:*:*:*:*:*:*

openssl

Version:

1.0.2b

CPE:

cpe:2.3:a:openssl:openssl:1.0.2b:*:*:*:*:*:*:*

linux

Version:

CPE:

cpe:2.3:o:oracle:linux:7:8:*:*:*:*:*:*

linux

Version:

CPE:

cpe:2.3:o:oracle:linux:6:10:*:*:*:*:*:*

This vulnerability affects 32 software configuration(s). Ensure you patch all affected systems.

References & Resources

Severity Details

out of 10.0

Low

Weakness Type (CWE)

CWE-189

View CWE Details on MITRE

Key Information

Published Date: September 16, 2016

External Resources

NIST NVD

National Vulnerability Database

MITRE CVE

Official CVE record

CVE Vulnerabilities

Posts & Pages

CVE-2016-2181

Vulnerability Description

Known Affected Software

openssl

oracle

References & Resources

Severity Details

Weakness Type (CWE)

Key Information

External Resources