Erlang - Otp CVE

Filtered by vendor Erlang Subscribe

Filtered by product Otp

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2015-2774	3 Erlang, Opensuse, Oracle	3 Otp, Opensuse, Solaris	2018-10-30	4.3 MEDIUM	5.9 MEDIUM
Erlang/OTP before 18.0-rc1 does not properly check CBC padding bytes when terminating connections, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, a variant of CVE-2014-3566 (aka POODLE).

Vulnerabilities (CVE)