Search for vulnerabilities
Vulnerability details: VCID-vm2m-bf4p-aaaf
Vulnerability ID VCID-vm2m-bf4p-aaaf
Aliases CVE-2019-1559
VC-OPENSSL-20190226-CVE-2019-1559
Summary
Status Published
Exploitability 0.5
Weighted Severity 8.0
Risk 4.0
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-325 Missing Cryptographic Step
System Score Found at
generic_textual Medium http://people.canonical.com/~ubuntu-security/cve/2019/CVE-2019-1559.html
rhas Moderate https://access.redhat.com/errata/RHSA-2019:2304
rhas Important https://access.redhat.com/errata/RHSA-2019:2437
rhas Moderate https://access.redhat.com/errata/RHSA-2019:2439
rhas Moderate https://access.redhat.com/errata/RHSA-2019:2471
rhas Important https://access.redhat.com/errata/RHSA-2019:3929
rhas Important https://access.redhat.com/errata/RHSA-2019:3931
cvssv3 5.9 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-1559.json
epss 0.01307 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.01307 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.01307 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.01307 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.01307 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.01307 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.01307 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.01307 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.01307 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.01307 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.01307 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.01307 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.01396 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.01396 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.01396 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.01396 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.03173 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.03173 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.03173 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.03173 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.03173 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.03173 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04426 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.04543 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.05715 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.05715 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.05715 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.05715 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.05715 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.05715 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.05715 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.05715 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.05715 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.05715 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.05715 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.05715 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.05715 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.0599 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.0599 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.0599 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
epss 0.20346 https://api.first.org/data/v1/epss?cve=CVE-2019-1559
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1559
cvssv3 4 https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
generic_textual Medium https://github.com/RUB-NDS/TLS-Padding-Oracles
generic_textual Medium https://ubuntu.com/security/notices/USN-3899-1
generic_textual Low https://ubuntu.com/security/notices/USN-4376-2
generic_textual Medium https://usn.ubuntu.com/usn/usn-3899-1
generic_textual Low https://usn.ubuntu.com/usn/usn-4376-2
generic_textual Moderate https://www.openssl.org/news/secadv/20190226.txt
Reference id Reference type URL
http://people.canonical.com/~ubuntu-security/cve/2019/CVE-2019-1559.html
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-1559.json
https://api.first.org/data/v1/epss?cve=CVE-2019-1559
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1559
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
https://github.com/openssl/openssl/commit/e9bbefbf0f24c57645e7ad6a5a71ae649d18ac8e
https://github.com/RUB-NDS/TLS-Padding-Oracles
https://ubuntu.com/security/notices/USN-3899-1
https://ubuntu.com/security/notices/USN-4376-2
https://usn.ubuntu.com/usn/usn-3899-1
https://usn.ubuntu.com/usn/usn-4376-2
https://www.openssl.org/news/secadv/20190226.txt
CVE-2019-1559 https://nvd.nist.gov/vuln/detail/CVE-2019-1559
RHBA-2020:0547 https://bugzilla.redhat.com/show_bug.cgi?id=1683804
RHSA-2019:2304 https://access.redhat.com/errata/RHSA-2019:2304
RHSA-2019:2437 https://access.redhat.com/errata/RHSA-2019:2437
RHSA-2019:2439 https://access.redhat.com/errata/RHSA-2019:2439
RHSA-2019:2471 https://access.redhat.com/errata/RHSA-2019:2471
RHSA-2019:3929 https://access.redhat.com/errata/RHSA-2019:3929
RHSA-2019:3931 https://access.redhat.com/errata/RHSA-2019:3931
USN-3899-1 https://usn.ubuntu.com/3899-1/
No exploits are available.
Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-1559.json
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.86315
EPSS Score 0.01307
Published At Nov. 1, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.