HOMEVULNERABILITIESCVE-2015-4000
LOW

CVE-2015-4000

CWE-310Published: May 21, 2015· Updated: Jun 17, 2026

3.7
CVSS v3.1

Official Description

The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHE_EXPORT and then rewriting a ServerHello with DHE_EXPORT replaced by DHE, aka the "Logjam" issue.

NVD Source

Technical Analysis

CVE-2015-4000 can be exploited remotely over the network without requiring physical or adjacent access, significantly expanding the attack surface for threat actors.

The vulnerability requires no privileges and no user interaction, making it a prime target for automated exploitation campaigns and worm-like propagation.

CVSS v3.1 Vector Breakdown

Exploitability
Attack VectorNetwork
Attack ComplexityHigh
Privileges Req.None
User InteractionNone
ScopeUnchanged
Impact
ConfidentialityNone
IntegrityLow
AvailabilityNone
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

Affected Vendors & Products

Apple3 product(s)
iphone osmac os xsafari
Canonical1 product(s)
ubuntu linux
Debian1 product(s)
debian linux
Google1 product(s)
chrome
HP1 product(s)
hp-ux
IBM1 product(s)
content manager
Microsoft1 product(s)
internet explorer
Mozilla6 product(s)
network security servicesfirefoxfirefox esrseamonkeythunderbirdfirefox os
OpenSSL1 product(s)
openssl
opera1 product(s)
opera browser
Oracle4 product(s)
jrockitjdkjresparc-opl service processor
SUSE4 product(s)
linux enterprise desktoplinux enterprise serverlinux enterprise software development kitsuse linux enterprise server
Source: NVD CPE · 36 total CPE entries

Exploit & PoC Resources

NO KNOWN EXPLOITNo public exploit confirmed at this time
External links open in a new tab. Always verify in a controlled environment before use.

Official Patches & Advisories

All References (434)

Quick Facts

CVE IDCVE-2015-4000
CVSS Score3.7 / 10
SeverityLOW
WeaknessCWE-310
CISA KEVNo
Affected12 vendor(s)
PublishedMay 21, 2015

Related CVEs (CWE-310)

Recommended Actions

  • Apply vendor patches immediately
  • Monitor CVE-2015-4000 in threat intel feeds
  • Review IDS/IPS signatures for exploitation attempts
Data sourced from NVD (NIST), CISA KEV, and EPSS (FIRST). Analysis generated by CTIWATCH.COM. CVE data is provided under the NVD usage policy.