Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-rkj9-zbcz-qkec
Vulnerability ID VCID-rkj9-zbcz-qkec
Aliases CVE-2009-1387
Summary Multiple vulnerabilities in OpenSSL might allow remote attackers to conduct multiple attacks, including the injection of arbitrary data into encrypted byte streams.
Status Published
Exploitability 0.5
Weighted Severity 0.1
Risk 0.1
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-476 NULL Pointer Dereference
System Score Found at
epss 0.13464 https://api.first.org/data/v1/epss?cve=CVE-2009-1387
epss 0.13464 https://api.first.org/data/v1/epss?cve=CVE-2009-1387
epss 0.13464 https://api.first.org/data/v1/epss?cve=CVE-2009-1387
epss 0.13464 https://api.first.org/data/v1/epss?cve=CVE-2009-1387
epss 0.13464 https://api.first.org/data/v1/epss?cve=CVE-2009-1387
epss 0.13464 https://api.first.org/data/v1/epss?cve=CVE-2009-1387
epss 0.13464 https://api.first.org/data/v1/epss?cve=CVE-2009-1387
epss 0.13464 https://api.first.org/data/v1/epss?cve=CVE-2009-1387
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1387.json
https://api.first.org/data/v1/epss?cve=CVE-2009-1387
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1387
503688 https://bugzilla.redhat.com/show_bug.cgi?id=503688
532037 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=532037
GLSA-200912-01 https://security.gentoo.org/glsa/200912-01
RHSA-2009:1335 https://access.redhat.com/errata/RHSA-2009:1335
USN-792-1 https://usn.ubuntu.com/792-1/
No exploits are available.
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.94165
EPSS Score 0.13464
Published At April 1, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T13:14:32.983089+00:00 Gentoo Importer Import https://security.gentoo.org/glsa/200912-01 38.0.0