The DES and Triple DES ciphers, as used in the TLS, SSH, and IPSec protocols and other protocols and products, have a birthday bound of approximately four billion blocks, which makes it easier for remote attackers to obtain cleartext data via a birthday attack against a long-duration encrypted session, as demonstrated by an HTTPS session using Triple DES in CBC mode, aka a "Sweet32" attack.
2016-09-01T00:59:00.137
2025-04-12T10:46:40.837
Deferred
CVSSv3.1: 7.5 (HIGH)
AV:N/AC:L/Au:N/C:P/I:N/A:N
10.0
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | redhat | jboss_enterprise_application_platform | 6.0.0 | Yes |
| Application | redhat | jboss_enterprise_web_server | 1.0.0 | Yes |
| Application | redhat | jboss_enterprise_web_server | 2.0.0 | Yes |
| Application | redhat | jboss_web_server | 3.0 | Yes |
| Operating System | redhat | enterprise_linux | 5.0 | Yes |
| Operating System | redhat | enterprise_linux | 6.0 | Yes |
| Operating System | redhat | enterprise_linux | 7.0 | Yes |
| Application | python | python | < 2.7.13 | Yes |
| Application | python | python | < 3.4.7 | Yes |
| Application | python | python | < 3.5.3 | Yes |
| Application | cisco | content_security_management_appliance | 9.6.6-068 | Yes |
| Application | cisco | content_security_management_appliance | 9.7.0-006 | Yes |
| Application | openssl | openssl | 1.0.1a | Yes |
| Application | openssl | openssl | 1.0.1b | Yes |
| Application | openssl | openssl | 1.0.1c | Yes |
| Application | openssl | openssl | 1.0.1d | Yes |
| Application | openssl | openssl | 1.0.1e | Yes |
| Application | openssl | openssl | 1.0.1f | Yes |
| Application | openssl | openssl | 1.0.1g | Yes |
| Application | openssl | openssl | 1.0.1h | Yes |
| Application | openssl | openssl | 1.0.1i | Yes |
| Application | openssl | openssl | 1.0.1j | Yes |
| Application | openssl | openssl | 1.0.1k | Yes |
| Application | openssl | openssl | 1.0.1l | Yes |
| Application | openssl | openssl | 1.0.1m | Yes |
| Application | openssl | openssl | 1.0.1n | Yes |
| Application | openssl | openssl | 1.0.1o | Yes |
| Application | openssl | openssl | 1.0.1p | Yes |
| Application | openssl | openssl | 1.0.1q | Yes |
| Application | openssl | openssl | 1.0.1r | Yes |
| Application | openssl | openssl | 1.0.1t | Yes |
| Application | openssl | openssl | 1.0.2a | Yes |
| Application | openssl | openssl | 1.0.2b | Yes |
| Application | openssl | openssl | 1.0.2c | Yes |
| Application | openssl | openssl | 1.0.2d | Yes |
| Application | openssl | openssl | 1.0.2e | Yes |
| Application | openssl | openssl | 1.0.2f | Yes |
| Application | openssl | openssl | 1.0.2h | Yes |
| Application | oracle | database | 11.2.0.4 | Yes |
| Application | oracle | database | 12.1.0.2 | Yes |
| Application | nodejs | node.js | < 0.10.47 | Yes |
| Application | nodejs | node.js | < 0.12.16 | Yes |
| Application | nodejs | node.js | < 4.1.2 | Yes |
| Application | nodejs | node.js | < 4.6.0 | Yes |
| Application | nodejs | node.js | < 6.7.0 | Yes |