Medium severity5.3NVD Advisory· Published Jan 30, 2017· Updated Jun 17, 2026
CVE-2016-2217
CVE-2016-2217
Description
The OpenSSL address implementation in Socat 1.7.3.0 and 2.0.0-b8 does not use a prime number for the DH, which makes it easier for remote attackers to obtain the shared secret.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:dest-unreach:socat:1.7.3.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:dest-unreach:socat:1.7.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:dest-unreach:socat:2.0.0:b8:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
4- www.dest-unreach.org/socat/contrib/socat-secadv7.htmlnvdPatchThird Party Advisory
- www.openwall.com/lists/oss-security/2016/02/01/4nvdMailing ListPatchThird Party Advisory
- www.openwall.com/lists/oss-security/2016/02/04/1nvdThird Party Advisory
- security.gentoo.org/glsa/201612-23nvd
News mentions
0No linked articles in our index yet.