VYPR
Medium severity5.9NVD Advisory· Published May 17, 2018· Updated Jun 17, 2026

CVE-2017-15533

CVE-2017-15533

Description

Symantec SSL Visibility (SSLV) 3.8.4FC, 3.10 prior to 3.10.4.1, 3.11, and 3.12 prior to 3.12.2.1 are vulnerable to the Return of the Bleichenbacher Oracle Threat (ROBOT) attack. All affected SSLV versions act as weak oracles according the oracle classification used in the ROBOT research paper. A remote attacker, who has captured a pre-recorded SSL session inspected by SSLV, can establish multiple millions of crafted SSL connections to the target and obtain the session keys required to decrypt the pre-recorded SSL session.

Affected products

2
  • Range: 3.8.4FC, 3.10 prior to 3.10.4.1, 3.11, and 3.12 prior to 3.12.2.1
  • Symantec Corporation/SSL Visibility (SSLV)v5
    Range: 3.8.4FC

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.