VYPR
High severity7.5NVD Advisory· Published May 4, 2017· Updated Jun 17, 2026

CVE-2016-7054

CVE-2016-7054

Description

In OpenSSL 1.1.0 before 1.1.0c, TLS connections using *-CHACHA20-POLY1305 ciphersuites are susceptible to a DoS attack by corrupting larger payloads. This can result in an OpenSSL crash. This issue is not considered to be exploitable beyond a DoS.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5
  • cpe:2.3:a:openssl:openssl:1.1.0:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:openssl:openssl:1.1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:openssl:openssl:1.1.0a:*:*:*:*:*:*:*
    • cpe:2.3:a:openssl:openssl:1.1.0b:*:*:*:*:*:*:*
    • (no CPE)range: <1.1.0c
    • (no CPE)range: openssl-1.1.0

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.