https://cert-portal.siemens.com/productcert/pdf/ssa-506569.pdf

https://dheatattack.com

https://dheatattack.gitlab.io/

https://github.com/Balasys/dheater

https://github.com/mozilla/ssl-config-generator/issues/162

https://gitlab.com/dheatattack/dheater

https://ieeexplore.ieee.org/document/10374117

https://support.f5.com/csp/article/K83120834

https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-004.txt

https://www.openssl.org/blog/blog/2022/10/21/tls-groups-configuration/

https://www.reddit.com/r/netsec/comments/qdoosy/server_overload_by_enforcing_dhe_key_exchange/

https://www.researchgate.net/profile/Anton-Stiglic-2/publication/2401745_Security_Issues_in_the_Diffie-Hellman_Key_Agreement_Protocol

https://www.suse.com/support/kb/doc/?id=000020510

MITRE https://ieeexplore.ieee.org/document/10374117 [No types assigned]

MITRE https://dheatattack.gitlab.io/ [No types assigned]

The Diffie-Hellman Key Agreement Protocol allows remote attackers (from the client side) to send arbitrary numbers that are actually not public keys, and trigger expensive server-side DHE modular-exponentiation calculations, aka a D(HE)ater attack. The client needs very little CPU resources and network bandwidth. The attack may be more disruptive in cases where a client can require a server to select its largest supported key size. The basic attack scenario is that the client must claim that it 

The Diffie-Hellman Key Agreement Protocol allows remote attackers (from the client side) to send arbitrary numbers that are actually not public keys, and trigger expensive server-side DHE modular-exponentiation calculations, aka a D(HE)at or D(HE)ater attack. The client needs very little CPU resources and network bandwidth. The attack may be more disruptive in cases where a client can require a server to select its largest supported key size. The basic attack scenario is that the client must cla

https://gitlab.com/dheatattack/dheater [No Types Assigned]

OR
     *cpe:2.3:a:f5:traffix_sdc:5.2.0:*:*:*:*:*:*:*

OR
     *cpe:2.3:a:f5:traffix_signaling_delivery_controller:5.2.0:*:*:*:*:*:*:*

OR
     *cpe:2.3:a:f5:traffix_sdc:5.1.0:*:*:*:*:*:*:*

OR
     *cpe:2.3:a:f5:traffix_signaling_delivery_controller:5.1.0:*:*:*:*:*:*:*

OR
     *cpe:2.3:a:stormshield:stormshield_management_center:*:*:*:*:*:*:*:* versions up to (excluding) 3.3.3
     *cpe:2.3:a:stormshield:stormshield_network_security:*:*:*:*:*:*:*:* versions from (including) 2.7.0 up to (excluding) 4.3.16
     *cpe:2.3:a:stormshield:stormshield_network_security:*:*:*:*:*:*:*:* versions from (including) 4.4.0 up to (excluding) 4.6.3

AND
     OR
          *cpe:2.3:o:hpe:arubaos-cx:*:*:*:*:*:*:*:* versions from (including) 10.06.0000 up to (excluding) 10.06.0180
          *cpe:2.3:o:hpe:arubaos-cx:*:*:*:*:*:*:*:* versions from (including) 10.07.0000 up to (excluding) 10.07.0030
          *cpe:2.3:o:hpe:arubaos-cx:*:*:*:*:*:*:*:* versions from (including) 10.08.0000 up to (excluding) 10.08.0010
          *cpe:2.3:o:hpe:arubaos-cx:*:*:*:*:*:*:*:* versions from (including) 10.09.0000 up to (excluding) 10.09.0002
     OR
        

AND
     OR
          *cpe:2.3:o:siemens:scalance_w1750d_firmware:*:*:*:*:*:*:*:*
     OR
          cpe:2.3:h:siemens:scalance_w1750d:-:*:*:*:*:*:*:*

OR
     *cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:* versions from (including) 13.1.0 up to (including) 17.1.0
     *cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:* versions from (including) 13.1.0 up to (including) 17.1.0
     *cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:*:*:*:*:*:*:*:* versions from (including) 13.1.0 up to (including) 17.1.0
     *cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:* versions from (including) 13.1.0 up to (including) 17.1.0
     

OR
     *cpe:2.3:o:suse:linux_enterprise_server:11:-:*:*:*:*:*:*
     *cpe:2.3:o:suse:linux_enterprise_server:12:-:*:*:*:*:*:*
     *cpe:2.3:o:suse:linux_enterprise_server:15:*:*:*:*:*:*:*

https://cert-portal.siemens.com/productcert/pdf/ssa-506569.pdf No Types Assigned

https://cert-portal.siemens.com/productcert/pdf/ssa-506569.pdf Third Party Advisory

https://dheatattack.com No Types Assigned

https://dheatattack.com Third Party Advisory

https://github.com/Balasys/dheater Third Party Advisory

https://github.com/Balasys/dheater Product

https://github.com/mozilla/ssl-config-generator/issues/162 Third Party Advisory

https://github.com/mozilla/ssl-config-generator/issues/162 Issue Tracking

https://support.f5.com/csp/article/K83120834 No Types Assigned

https://support.f5.com/csp/article/K83120834 Third Party Advisory

https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-004.txt No Types Assigned

https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-004.txt Third Party Advisory

https://www.openssl.org/blog/blog/2022/10/21/tls-groups-configuration/ No Types Assigned

https://www.openssl.org/blog/blog/2022/10/21/tls-groups-configuration/ Third Party Advisory

https://www.reddit.com/r/netsec/comments/qdoosy/server_overload_by_enforcing_dhe_key_exchange/ Third Party Advisory

https://www.reddit.com/r/netsec/comments/qdoosy/server_overload_by_enforcing_dhe_key_exchange/ Issue Tracking

https://www.researchgate.net/profile/Anton-Stiglic-2/publication/2401745_Security_Issues_in_the_Diffie-Hellman_Key_Agreement_Protocol Exploit, Third Party Advisory

https://www.researchgate.net/profile/Anton-Stiglic-2/publication/2401745_Security_Issues_in_the_Diffie-Hellman_Key_Agreement_Protocol Exploit, Technical Description

https://www.suse.com/support/kb/doc/?id=000020510 No Types Assigned

https://www.suse.com/support/kb/doc/?id=000020510 Third Party Advisory

https://dheatattack.com [No Types Assigned]

https://support.f5.com/csp/article/K83120834 [No Types Assigned]

https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-004.txt [No Types Assigned]

https://www.openssl.org/blog/blog/2022/10/21/tls-groups-configuration/ [No Types Assigned]

https://www.suse.com/support/kb/doc/?id=000020510 [No Types Assigned]

https://cert-portal.siemens.com/productcert/pdf/ssa-506569.pdf [No Types Assigned]

NIST AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

NIST (AV:N/AC:L/Au:N/C:N/I:N/A:P)

NIST CWE-400

OR
     *cpe:2.3:a:balasys:dheater:-:*:*:*:*:*:*:*

https://github.com/Balasys/dheater No Types Assigned

https://github.com/Balasys/dheater Third Party Advisory

https://github.com/mozilla/ssl-config-generator/issues/162 No Types Assigned

https://github.com/mozilla/ssl-config-generator/issues/162 Third Party Advisory

https://www.reddit.com/r/netsec/comments/qdoosy/server_overload_by_enforcing_dhe_key_exchange/ No Types Assigned

https://www.reddit.com/r/netsec/comments/qdoosy/server_overload_by_enforcing_dhe_key_exchange/ Third Party Advisory

https://www.researchgate.net/profile/Anton-Stiglic-2/publication/2401745_Security_Issues_in_the_Diffie-Hellman_Key_Agreement_Protocol No Types Assigned

https://www.researchgate.net/profile/Anton-Stiglic-2/publication/2401745_Security_Issues_in_the_Diffie-Hellman_Key_Agreement_Protocol Exploit, Third Party Advisory

https://github.com/mozilla/ssl-config-generator/issues/162 [No Types Assigned]

https://www.reddit.com/r/netsec/comments/qdoosy/server_overload_by_enforcing_dhe_key_exchange/ [No Types Assigned]