CVE-2015-2808
3.7 LOWThe RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combine state data with key data during the initializa...
Published: 2015-04-01 · Last updated: 2026-05-28
Severity and scoring
- CVSS
- 3.7 LOW
- Vector
- CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
- CWE
- CWE-327
Affected products
| Vendor | Product |
|---|---|
| canonical | 9700_firmware, cognos_metrics_manager, communications_application_session_controller |
| debian | 9700_firmware, cognos_metrics_manager, communications_application_session_controller |
| fujitsu | 9700_firmware, cognos_metrics_manager, communications_application_session_controller |
| huawei | 9700_firmware, cognos_metrics_manager, communications_application_session_controller |
| ibm | 9700_firmware, cognos_metrics_manager, communications_application_session_controller |
| opensuse | 9700_firmware, cognos_metrics_manager, communications_application_session_controller |
| oracle | 9700_firmware, cognos_metrics_manager, communications_application_session_controller |
| redhat | 9700_firmware, cognos_metrics_manager, communications_application_session_controller |
| suse | 9700_firmware, cognos_metrics_manager, communications_application_session_controller |
Description
The RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combine state data with key data during the initialization phase, which makes it easier for remote attackers to conduct plaintext-recovery attacks against the initial bytes of a stream by sniffing network traffic that occasionally relies on keys affected by the Invariance Weakness, and then using a brute-force approach involving LSB values, aka the "Bar Mitzvah" issue.
Source: NVD
References
- [NVD]https://nvd.nist.gov/vuln/detail/CVE-2015-2808
- [Other]http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04779034
- [Other]http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
- [Other]http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10727
- [Other]http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00013.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00014.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00015.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00022.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00031.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00039.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00040.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00046.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00047.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00000.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00004.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00005.html
- [Other]http://marc.info/?l=bugtraq&m=143456209711959&w=2
- [Other]http://marc.info/?l=bugtraq&m=143629696317098&w=2
- [Other]http://marc.info/?l=bugtraq&m=143741441012338&w=2
- [Other]http://marc.info/?l=bugtraq&m=143817021313142&w=2
- [Other]http://marc.info/?l=bugtraq&m=143817899717054&w=2
- [Other]http://marc.info/?l=bugtraq&m=143818140118771&w=2
- [Other]http://marc.info/?l=bugtraq&m=144043644216842&w=2
- [Other]http://marc.info/?l=bugtraq&m=144059660127919&w=2
- [Other]http://marc.info/?l=bugtraq&m=144059703728085&w=2
- [Other]http://marc.info/?l=bugtraq&m=144060576831314&w=2
- [Other]http://marc.info/?l=bugtraq&m=144060606031437&w=2
- [Other]http://marc.info/?l=bugtraq&m=144069189622016&w=2
- [Other]http://marc.info/?l=bugtraq&m=144102017024820&w=2
- [Other]http://marc.info/?l=bugtraq&m=144104533800819&w=2
- [Other]http://marc.info/?l=bugtraq&m=144104565600964&w=2
- [Other]http://marc.info/?l=bugtraq&m=144493176821532&w=2
- [Other]http://rhn.redhat.com/errata/RHSA-2015-1006.html
- [Other]http://rhn.redhat.com/errata/RHSA-2015-1007.html
- [Other]http://rhn.redhat.com/errata/RHSA-2015-1020.html
- [Other]http://rhn.redhat.com/errata/RHSA-2015-1021.html
- [Other]http://rhn.redhat.com/errata/RHSA-2015-1091.html
- [Other]http://rhn.redhat.com/errata/RHSA-2015-1228.html
- [Other]http://rhn.redhat.com/errata/RHSA-2015-1229.html
- [Other]http://rhn.redhat.com/errata/RHSA-2015-1230.html
- [Other]http://rhn.redhat.com/errata/RHSA-2015-1241.html
- [Other]http://rhn.redhat.com/errata/RHSA-2015-1242.html
- [Other]http://rhn.redhat.com/errata/RHSA-2015-1243.html
- [Other]http://rhn.redhat.com/errata/RHSA-2015-1526.html
- [Other]http://www-01.ibm.com/support/docview.wss?uid=swg1IV71888
- [Other]http://www-01.ibm.com/support/docview.wss?uid=swg1IV71892
- [Other]http://www-01.ibm.com/support/docview.wss?uid=swg21883640
- [Other]http://www-304.ibm.com/support/docview.wss?uid=swg21903565
- [Other]http://www-304.ibm.com/support/docview.wss?uid=swg21960015
- [Other]http://www-304.ibm.com/support/docview.wss?uid=swg21960769
- [Other]http://www.debian.org/security/2015/dsa-3316
- [Other]http://www.debian.org/security/2015/dsa-3339
- [Other]http://www.huawei.com/en/psirt/security-advisories/hw-454055
- [Other]http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html
- [Patch]http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html
- [Other]http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
- [Other]http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
- [Other]http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
- [Other]http://www.securityfocus.com/bid/73684
- [Other]http://www.securityfocus.com/bid/91787
- [Other]http://www.securitytracker.com/id/1032599
- [Other]http://www.securitytracker.com/id/1032600
- [Other]http://www.securitytracker.com/id/1032707
- [Other]http://www.securitytracker.com/id/1032708
- [Other]http://www.securitytracker.com/id/1032734
- [Other]http://www.securitytracker.com/id/1032788
- [Other]http://www.securitytracker.com/id/1032858
- [Other]http://www.securitytracker.com/id/1032868
- [Other]http://www.securitytracker.com/id/1032910
- [Other]http://www.securitytracker.com/id/1032990
- [Other]http://www.securitytracker.com/id/1033071
- [Other]http://www.securitytracker.com/id/1033072
- [Other]http://www.securitytracker.com/id/1033386
- [Other]http://www.securitytracker.com/id/1033415
- [Other]http://www.securitytracker.com/id/1033431
- [Other]http://www.securitytracker.com/id/1033432
- [Other]http://www.securitytracker.com/id/1033737
- [Other]http://www.securitytracker.com/id/1033769
- [Other]http://www.securitytracker.com/id/1036222
- [Other]http://www.ubuntu.com/usn/USN-2696-1
- [Other]http://www.ubuntu.com/usn/USN-2706-1
- [Other]http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-454055.htm
- [Other]https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04687922
- [Other]https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04770140
- [Other]https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04772190
- [Other]https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773119
- [Other]https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773241
- [Other]https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773256
- [Other]https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04832246
- [Other]https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04926789
- [Other]https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04708650
- [Other]https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04711380
- [Other]https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05085988
- [Other]https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05193347
- [Other]https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05289935
- [Other]https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05336888
- [Other]https://kb.juniper.net/JSA10783
- [Other]https://kc.mcafee.com/corporate/index?page=content&id=SB10163
- [Other]https://security.gentoo.org/glsa/201512-10
- [Other]https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5098709
- [Other]https://www.blackhat.com/docs/asia-15/materials/asia-15-Mantin-Bar-Mitzvah-Attack-Breaking-SSL-With-13-Year-Old-RC4-Weakness-wp.pdf
- [Other]https://www.secpod.com/blog/cve-2015-2808-bar-mitzvah-attack-in-rc4-2/
- [Other]http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04779034
- [Other]http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
- [Other]http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10727
- [Other]http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00013.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00014.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00015.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00022.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00031.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00039.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00040.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00046.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00047.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00000.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00004.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00005.html
- [Other]http://marc.info/?l=bugtraq&m=143456209711959&w=2
- [Other]http://marc.info/?l=bugtraq&m=143629696317098&w=2
- [Other]http://marc.info/?l=bugtraq&m=143741441012338&w=2
- [Other]http://marc.info/?l=bugtraq&m=143817021313142&w=2
- [Other]http://marc.info/?l=bugtraq&m=143817899717054&w=2
- [Other]http://marc.info/?l=bugtraq&m=143818140118771&w=2
- [Other]http://marc.info/?l=bugtraq&m=144043644216842&w=2
- [Other]http://marc.info/?l=bugtraq&m=144059660127919&w=2
- [Other]http://marc.info/?l=bugtraq&m=144059703728085&w=2
- [Other]http://marc.info/?l=bugtraq&m=144060576831314&w=2
- [Other]http://marc.info/?l=bugtraq&m=144060606031437&w=2
- [Other]http://marc.info/?l=bugtraq&m=144069189622016&w=2
- [Other]http://marc.info/?l=bugtraq&m=144102017024820&w=2
- [Other]http://marc.info/?l=bugtraq&m=144104533800819&w=2
- [Other]http://marc.info/?l=bugtraq&m=144104565600964&w=2
- [Other]http://marc.info/?l=bugtraq&m=144493176821532&w=2
- [Other]http://rhn.redhat.com/errata/RHSA-2015-1006.html
- [Other]http://rhn.redhat.com/errata/RHSA-2015-1007.html
- [Other]http://rhn.redhat.com/errata/RHSA-2015-1020.html
- [Other]http://rhn.redhat.com/errata/RHSA-2015-1021.html
- [Other]http://rhn.redhat.com/errata/RHSA-2015-1091.html
- [Other]http://rhn.redhat.com/errata/RHSA-2015-1228.html
- [Other]http://rhn.redhat.com/errata/RHSA-2015-1229.html
- [Other]http://rhn.redhat.com/errata/RHSA-2015-1230.html
- [Other]http://rhn.redhat.com/errata/RHSA-2015-1241.html
- [Other]http://rhn.redhat.com/errata/RHSA-2015-1242.html
- [Other]http://rhn.redhat.com/errata/RHSA-2015-1243.html
- [Other]http://rhn.redhat.com/errata/RHSA-2015-1526.html
- [Other]http://www-01.ibm.com/support/docview.wss?uid=swg1IV71888
- [Other]http://www-01.ibm.com/support/docview.wss?uid=swg1IV71892
- [Other]http://www-01.ibm.com/support/docview.wss?uid=swg21883640
- [Other]http://www-304.ibm.com/support/docview.wss?uid=swg21903565
- [Other]http://www-304.ibm.com/support/docview.wss?uid=swg21960015
- [Other]http://www-304.ibm.com/support/docview.wss?uid=swg21960769
- [Other]http://www.debian.org/security/2015/dsa-3316
- [Other]http://www.debian.org/security/2015/dsa-3339
- [Other]http://www.huawei.com/en/psirt/security-advisories/hw-454055
- [Other]http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html
- [Patch]http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html
- [Other]http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
- [Other]http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
- [Other]http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
- [Other]http://www.securityfocus.com/bid/73684
- [Other]http://www.securityfocus.com/bid/91787
- [Other]http://www.securitytracker.com/id/1032599
- [Other]http://www.securitytracker.com/id/1032600
- [Other]http://www.securitytracker.com/id/1032707
- [Other]http://www.securitytracker.com/id/1032708
- [Other]http://www.securitytracker.com/id/1032734
- [Other]http://www.securitytracker.com/id/1032788
- [Other]http://www.securitytracker.com/id/1032858
- [Other]http://www.securitytracker.com/id/1032868
- [Other]http://www.securitytracker.com/id/1032910
- [Other]http://www.securitytracker.com/id/1032990
- [Other]http://www.securitytracker.com/id/1033071
- [Other]http://www.securitytracker.com/id/1033072
- [Other]http://www.securitytracker.com/id/1033386
- [Other]http://www.securitytracker.com/id/1033415
- [Other]http://www.securitytracker.com/id/1033431
- [Other]http://www.securitytracker.com/id/1033432
- [Other]http://www.securitytracker.com/id/1033737
- [Other]http://www.securitytracker.com/id/1033769
- [Other]http://www.securitytracker.com/id/1036222
- [Other]http://www.ubuntu.com/usn/USN-2696-1
- [Other]http://www.ubuntu.com/usn/USN-2706-1
- [Other]http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-454055.htm
- [Other]https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04687922
- [Other]https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04770140
- [Other]https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04772190
- [Other]https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773119
- [Other]https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773241
- [Other]https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773256
- [Other]https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04832246
- [Other]https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04926789
- [Other]https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04708650
- [Other]https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04711380
- [Other]https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05085988
- [Other]https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05193347
- [Other]https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05289935
- [Other]https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05336888
- [Other]https://kb.juniper.net/JSA10783
- [Other]https://kc.mcafee.com/corporate/index?page=content&id=SB10163
- [Other]https://security.gentoo.org/glsa/201512-10
- [Other]https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5098709
- [Other]https://www.blackhat.com/docs/asia-15/materials/asia-15-Mantin-Bar-Mitzvah-Attack-Breaking-SSL-With-13-Year-Old-RC4-Weakness-wp.pdf
- [Other]https://www.secpod.com/blog/cve-2015-2808-bar-mitzvah-attack-in-rc4-2/
Related CVEs
Same vendor
- CVE-2026-49975 — Memory Allocation with Excessive Size Value vulnerability in Apache HTTP Server's mod_http leads to denial of service via malicious HTTP ... (7.5 HIGH)
- CVE-2026-50259 — A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland (7.8 HIGH)
- CVE-2026-50258 — A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland (7.8 HIGH)
- CVE-2026-50257 — A use-after-free flaw was found in the X.Org X server and Xwayland in miSyncDestroyFence() (7.8 HIGH)
- CVE-2026-50256 — A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland (7.8 HIGH)
Same CWE
- CVE-2025-10237 — During an internal security assessment, a potential vulnerability was discovered in some ThinkPad embedded controller firmware that could... (6.7 MEDIUM)
- CVE-2026-11481 — A vulnerability was determined in yoanbernabeu grepai up to 0.35.0 (2.5 LOW)
- CVE-2026-11479 — A vulnerability has been found in yoanbernabeu grepai 0.35.0 (4.2 MEDIUM)
- CVE-2026-46395 — HAX CMS helps manage microsite universe with PHP or NodeJs backends
- CVE-2026-11330 — A weakness has been identified in thedotmack claude-mem up to 11.0.1 (3.6 LOW)