Medium severity5.9NVD Advisory· Published May 17, 2018· Updated Jun 17, 2026
CVE-2017-15533
CVE-2017-15533
Description
Symantec SSL Visibility (SSLV) 3.8.4FC, 3.10 prior to 3.10.4.1, 3.11, and 3.12 prior to 3.12.2.1 are vulnerable to the Return of the Bleichenbacher Oracle Threat (ROBOT) attack. All affected SSLV versions act as weak oracles according the oracle classification used in the ROBOT research paper. A remote attacker, who has captured a pre-recorded SSL session inspected by SSLV, can establish multiple millions of crafted SSL connections to the target and obtain the session keys required to decrypt the pre-recorded SSL session.
Affected products
2- Range: 3.8.4FC, 3.10 prior to 3.10.4.1, 3.11, and 3.12 prior to 3.12.2.1
- Symantec Corporation/SSL Visibility (SSLV)v5Range: 3.8.4FC
Patches
Vulnerability mechanics
References
2- www.securityfocus.com/bid/104163nvdThird Party AdvisoryVDB Entry
- www.symantec.com/security-center/network-protection-security-advisories/SA160nvdVendor Advisory
News mentions
0No linked articles in our index yet.