Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2016-0797

Multiple integer overflows in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allow remote attackers to cause a denial of service (heap memory corruption or NULL pointer dereference) or possibly have unspecified other impact via a long digit string that is mishandled by the (1) BN_dec2bn or (2) BN_hex2bn function, related to crypto/bn/bn.h and crypto/bn/bn_print.c.

  • Published: Mar 3, 2016
  • Updated: Apr 13, 2023
  • CVE: CVE-2016-0797
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:N/I:N/A:P

No CWE or OWASP classifications available.

Software From Fixed in
openssl / openssl 1.0.1m 1.0.1m.x
openssl / openssl 1.0.2a 1.0.2a.x
openssl / openssl 1.0.1j 1.0.1j.x
openssl / openssl 1.0.1-beta2 1.0.1-beta2.x
openssl / openssl 1.0.1h 1.0.1h.x
openssl / openssl 1.0.2e 1.0.2e.x
openssl / openssl 1.0.1r 1.0.1r.x
openssl / openssl 1.0.2b 1.0.2b.x
openssl / openssl 1.0.1c 1.0.1c.x
openssl / openssl 1.0.1g 1.0.1g.x
openssl / openssl 1.0.1-beta3 1.0.1-beta3.x
openssl / openssl 1.0.1a 1.0.1a.x
openssl / openssl 1.0.1-beta1 1.0.1-beta1.x
openssl / openssl 1.0.1d 1.0.1d.x
openssl / openssl 1.0.2c 1.0.2c.x
openssl / openssl 1.0.2-beta3 1.0.2-beta3.x
openssl / openssl 1.0.1p 1.0.1p.x
openssl / openssl 1.0.2-beta1 1.0.2-beta1.x
openssl / openssl 1.0.1k 1.0.1k.x
openssl / openssl 1.0.1b 1.0.1b.x
openssl / openssl 1.0.1n 1.0.1n.x
openssl / openssl 1.0.1q 1.0.1q.x
openssl / openssl 1.0.1e 1.0.1e.x
openssl / openssl 1.0.1l 1.0.1l.x
openssl / openssl 1.0.1f 1.0.1f.x
openssl / openssl 1.0.1o 1.0.1o.x
openssl / openssl 1.0.2 1.0.2.x
openssl / openssl 1.0.2f 1.0.2f.x
openssl / openssl 1.0.1i 1.0.1i.x
openssl / openssl 1.0.2-beta2 1.0.2-beta2.x
openssl / openssl 1.0.1 1.0.1.x
openssl / openssl 1.0.2d 1.0.2d.x
nodejs / node.js 4.2.0 4.3.2
nodejs / node.js 4.0.0 4.1.2
nodejs / node.js 5.0.0 5.7.1
canonical / ubuntu_linux 15.10 15.10.x
canonical / ubuntu_linux 14.04 14.04.x
canonical / ubuntu_linux 12.04 12.04.x
debian / debian_linux 8.0 8.0.x
debian / debian_linux 7.0 7.0.x