{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-04T23:48:12.166","vulnerabilities":[{"cve":{"id":"CVE-2018-0735","sourceIdentifier":"openssl-security@openssl.org","published":"2018-10-29T13:29:00.263","lastModified":"2024-11-21T03:38:50.413","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The OpenSSL ECDSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.0j (Affected 1.1.0-1.1.0i). Fixed in OpenSSL 1.1.1a (Affected 1.1.1)."},{"lang":"es","value":"Se ha demostrado que el algoritmo de firmas ECDSA en OpenSSL es vulnerable a un ataque de sincronización de canal lateral. Un atacante podría emplear variaciones en el algoritmo de firma para recuperar la clave privada. Se ha solucionado en OpenSSL 1.1.0j (afecta a 1.1.0-1.1.0i). Se ha solucionado en OpenSSL 1.1.1a (afecta a 1.1.1)."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":5.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:P/I:N/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-327"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*","versionStartIncluding":"1.1.0","versionEndIncluding":"1.1.0i","matchCriteriaId":"5953EAB1-D0E8-48EA-B07D-3B828E6BB326"},{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:1.1.1:*:*:*:*:*:*:*","matchCriteriaId":"F69F3542-173D-4E0D-99BB-42FDD206D996"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*","matchCriteriaId":"B5A6F2F3-4894-4392-8296-3B8DD2679084"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*","matchCriteriaId":"F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*","matchCriteriaId":"23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*","matchCriteriaId":"07C312A0-CD2C-4B9C-B064-6409B25C278F"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*","matchCriteriaId":"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"DEECE5FC-CACF-4496-A3E7-164736409252"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*","versionStartIncluding":"10.0.0","versionEndExcluding":"10.12.0","matchCriteriaId":"5725F854-27B7-4BC1-8DCA-FAC0B4E41139"},{"vulnerable":true,"criteria":"cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*","versionStartIncluding":"11.0.0","versionEndExcluding":"11.3.0","matchCriteriaId":"4E62EA78-C705-4AC9-9C0B-3C9114087C37"},{"vulnerable":true,"criteria":"cpe:2.3:a:nodejs:node.js:10.13.0:*:*:*:lts:*:*:*","matchCriteriaId":"541EAE2B-5446-46CE-BC91-13188EAD6092"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:netapp:cn1610_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"EB30733E-68FC-49C4-86C0-7FEE75C366BF"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:netapp:cn1610:-:*:*:*:*:*:*:*","matchCriteriaId":"6361DAC6-600F-4B15-8797-D67F298F46FB"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*","matchCriteriaId":"5C2089EE-5D7F-47EC-8EA5-0F69790564C4"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:element_software:-:*:*:*:*:*:*:*","matchCriteriaId":"85DF4B3F-4BBC-42B7-B729-096934523D63"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_unified_manager:*:*:*:*:*:*:*:*","matchCriteriaId":"CBF1DFDA-FB66-4CEA-A658-B167326D1D96"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_unified_manager:*:*:*:*:*:vsphere:*:*","versionStartIncluding":"9.4","matchCriteriaId":"7E49ACFC-FD48-4ED7-86E8-68B5B753852C"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_smi-s_provider:-:*:*:*:*:*:*:*","matchCriteriaId":"361B791A-D336-4431-8F68-8135BEFFAEA2"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:smi-s_provider:-:*:*:*:*:*:*:*","matchCriteriaId":"4BB0FDCF-3750-44C6-AC5C-0CC2AAD14093"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapdrive:-:*:*:*:*:unix:*:*","matchCriteriaId":"61D7EF01-F618-497F-9375-8003CEA3D380"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapdrive:-:*:*:*:*:windows:*:*","matchCriteriaId":"BEDE62C6-D571-4AF8-B85E-CBBCE4AF98B5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:steelstore:-:*:*:*:*:*:*:*","matchCriteriaId":"0DF5449D-22D2-48B4-8F50-57B43DCB15B9"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:api_gateway:11.1.2.4.0:*:*:*:*:*:*:*","matchCriteriaId":"A5553591-073B-45E3-999F-21B8BA2EEE22"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:application_server:0.9.8:*:*:*:*:*:*:*","matchCriteriaId":"BD941CDF-8486-43F7-9D98-2B8785B1B139"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:application_server:1.0.0:*:*:*:*:*:*:*","matchCriteriaId":"EDE18990-1FC9-4624-971B-2E87BF0871AF"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:application_server:1.0.1:*:*:*:*:*:*:*","matchCriteriaId":"17C29F2D-CBE6-4E22-98AE-787E939ED161"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:enterprise_manager_base_platform:12.1.0.5.0:*:*:*:*:*:*:*","matchCriteriaId":"98F3E643-4B65-4668-BB11-C61ED54D5A53"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:enterprise_manager_base_platform:13.2.0.0.0:*:*:*:*:*:*:*","matchCriteriaId":"459B4A5F-A6BD-4A1C-B6B7-C979F005EB70"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:enterprise_manager_base_platform:13.3.0.0.0:*:*:*:*:*:*:*","matchCriteriaId":"CDCE0E90-495E-4437-8529-3C36441FB69D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:enterprise_manager_ops_center:12.3.3:*:*:*:*:*:*:*","matchCriteriaId":"AB654DFA-FEF9-4D00-ADB0-F3F2B6ACF13E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*","versionEndIncluding":"5.6.42","matchCriteriaId":"65B4E766-8D75-48A9-8267-6EE1407B949D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*","versionStartIncluding":"5.7.0","versionEndIncluding":"5.7.24","matchCriteriaId":"F17AD8D0-6D79-4E7D-9CD6-9B130A529C5D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*","versionStartIncluding":"8.0.0","versionEndIncluding":"8.0.13","matchCriteriaId":"C743C44C-2E97-4E5E-8C76-FC0E666BA115"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.55:*:*:*:*:*:*:*","matchCriteriaId":"45CB30A1-B2C9-4BF5-B510-1F2F18B60C64"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.56:*:*:*:*:*:*:*","matchCriteriaId":"D0A735B4-4F3C-416B-8C08-9CB21BAD2889"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.57:*:*:*:*:*:*:*","matchCriteriaId":"7E1E416B-920B-49A0-9523-382898C2979D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:*:*:*:*:*:*:*:*","versionStartIncluding":"17.7","versionEndIncluding":"17.12","matchCriteriaId":"7A1E1023-2EB9-4334-9B74-CA71480F71C2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:8.4:*:*:*:*:*:*:*","matchCriteriaId":"84BF6794-2CE6-407F-B8E0-81871AB7B40B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:15.1:*:*:*:*:*:*:*","matchCriteriaId":"93A4E178-0082-45C5-BBC0-0A4E51C8B1DE"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:15.2:*:*:*:*:*:*:*","matchCriteriaId":"3F021C23-AB9B-4877-833F-D01359A98762"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:16.1:*:*:*:*:*:*:*","matchCriteriaId":"2F8ED016-32A1-42EE-844E-3E6B2C116B74"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:16.2:*:*:*:*:*:*:*","matchCriteriaId":"A046CC2C-445F-4336-8810-930570B4FEC6"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:18.8:*:*:*:*:*:*:*","matchCriteriaId":"0745445C-EC43-4091-BA7C-5105AFCC6F1F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:secure_global_desktop:5.4:*:*:*:*:*:*:*","matchCriteriaId":"B5265C91-FF5C-4451-A7C2-D388A65ACFA2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:tuxedo:12.1.1.0.0:*:*:*:*:*:*:*","matchCriteriaId":"92A6A7BA-CCE6-426F-8434-7A578A245180"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:vm_virtualbox:*:*:*:*:*:*:*:*","versionEndExcluding":"6.0.0","matchCriteriaId":"B52550D1-38F6-4AAC-BE68-487F7D6DB2D8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:vm_virtualbox:*:*:*:*:*:*:*:*","versionStartIncluding":"5.0.0","versionEndExcluding":"5.2.24","matchCriteriaId":"F3F69D90-6F4D-4D09-8F60-E36072303E32"}]}]}],"references":[{"url":"http://www.securityfocus.com/bid/105750","source":"openssl-security@openssl.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1041986","source":"openssl-security@openssl.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://access.redhat.com/errata/RHSA-2019:3700","source":"openssl-security@openssl.org","tags":["Third Party Advisory"]},{"url":"https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=56fb454d281a023b3f950d969693553d3f3ceea1","source":"openssl-security@openssl.org"},{"url":"https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=b1d6d55ece1c26fa2829e2b819b038d7b6d692b4","source":"openssl-security@openssl.org"},{"url":"https://lists.debian.org/debian-lts-announce/2018/11/msg00024.html","source":"openssl-security@openssl.org","tags":["Mailing List","Third Party Advisory"]},{"url":"https://nodejs.org/en/blog/vulnerability/november-2018-security-releases/","source":"openssl-security@openssl.org","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20181105-0002/","source":"openssl-security@openssl.org","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3840-1/","source":"openssl-security@openssl.org","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2018/dsa-4348","source":"openssl-security@openssl.org","tags":["Third Party Advisory"]},{"url":"https://www.openssl.org/news/secadv/20181029.txt","source":"openssl-security@openssl.org","tags":["Vendor Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2020.html","source":"openssl-security@openssl.org","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html","source":"openssl-security@openssl.org","tags":["Patch","Third Party Advisory"]},{"url":"https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html","source":"openssl-security@openssl.org","tags":["Patch","Third Party Advisory"]},{"url":"https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html","source":"openssl-security@openssl.org","tags":["Patch","Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/105750","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1041986","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://access.redhat.com/errata/RHSA-2019:3700","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=56fb454d281a023b3f950d969693553d3f3ceea1","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=b1d6d55ece1c26fa2829e2b819b038d7b6d692b4","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.debian.org/debian-lts-announce/2018/11/msg00024.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://nodejs.org/en/blog/vulnerability/november-2018-security-releases/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20181105-0002/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3840-1/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2018/dsa-4348","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.openssl.org/news/secadv/20181029.txt","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2020.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]}]}}]}