This page was not yet optimized for use on mobile
devices.
VMware VMkernel Cryptographic Module 2.0
Known vulnerabilities detected
Our automated heuristics have identified vulnerabilities that may be associated with this certificate. See the CVEs section for details.Certificate #4815
Webpage information
Security policy
Symmetric Algorithms
AES-256, AES, CAST, HMACHash functions
SHA-1Schemes
MACRandomness
DRBGBlock cipher modes
ECB, CBC, CTR, CFB, GCM, XTSSecurity level
Level 1, level 1Standards
FIPS 140-3, FIPS PUB 140-3, FIPS PUB 197, FIPS PUB 198-1, FIPS 180-4, NIST SP 800-38D, NIST SP 800-38E, NIST SP 800-90B, ISO/IEC 19790, ISO/IEC 24759, ISO/IEC 19790:2012File metadata
| Author | Lynn Butler Bradford |
|---|---|
| Creation date | D:20240924132829+05'30' |
| Modification date | D:20240924132829+05'30' |
| Pages | 24 |
| Creator | Microsoft® Word for Microsoft 365 |
| Producer | Microsoft® Word for Microsoft 365 |
Heuristics
Automated inference - use with caution
All attributes shown in this section (e.g., links between certificates, products, vendors, and known CVEs) are generated by automated heuristics and have not been reviewed by humans. These methods can produce false positives or false negatives and should not be treated as definitive without independent verification. For details on our data sources and inference methods, see our methodology. If you believe any information here is inaccurate or harmful, please submit feedback.CPE matches
Related CVEs
| ID | Links | Severity | CVSS Score | Published on | ||
|---|---|---|---|---|---|---|
| Base | Exploitability | Impact | ||||
| CVE-2001-1059 | LOW | 3.6 | 4.9 | 30.07.2001 | ||
| CVE-2003-0739 | MEDIUM | 4.6 | 6.4 | 20.10.2003 | ||
| CVE-2007-1069 | HIGH | 7.8 | 6.9 | 02.05.2007 | ||
| CVE-2007-1337 | HIGH | 7.8 | 6.9 | 02.05.2007 | ||
| CVE-2007-1877 | HIGH | 7.8 | 6.9 | 02.05.2007 | ||
| CVE-2009-1146 | MEDIUM | 4.9 | 6.9 | 06.04.2009 | ||
| CVE-2009-1147 | HIGH | 7.2 | 10.0 | 06.04.2009 | ||
| CVE-2009-1244 | MEDIUM | 6.8 | 10.0 | 13.04.2009 | ||
| CVE-2009-1805 | MEDIUM | 4.0 | 6.9 | 01.06.2009 | ||
| CVE-2012-1666 | MEDIUM | 6.9 | 10.0 | 08.09.2012 | ||
| CVE-2014-4199 | MEDIUM | 6.3 | 9.2 | 28.08.2014 | ||
| CVE-2014-4200 | MEDIUM | 4.7 | 6.9 | 28.08.2014 | ||
Showing 5 out of 12.
References
No references are available for this certificate.
Updates Feed
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate was first processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 4815,
"dgst": "79c794728c6beb64",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"AES-GCMA2792",
"Counter DRBGA2792",
"AES-CBC-CS3A2792",
"HMAC-SHA2-256A2792",
"HMAC-SHA2-512A2792",
"HMAC-SHA-1A2792",
"SHA2-256A2792",
"AES-CBCA2792",
"AES-CTRA2792",
"SHA2-512A2792",
"SHA-1A2792",
"AES-XTS Testing Revision 2.0A2792",
"AES-ECBA2792"
]
},
"cpe_matches": {
"_type": "Set",
"elements": [
"cpe:2.3:a:vmware:workstation:2.0:*:*:*:*:*:*:*"
]
},
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"2.0"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": {
"_type": "Set",
"elements": [
"CVE-2009-1805",
"CVE-2009-1244",
"CVE-2001-1059",
"CVE-2014-4200",
"CVE-2003-0739",
"CVE-2007-1337",
"CVE-2007-1069",
"CVE-2009-1147",
"CVE-2012-1666",
"CVE-2009-1146",
"CVE-2014-4199",
"CVE-2007-1877"
]
},
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 7
},
"CFB": {
"CFB": 1
},
"CTR": {
"CTR": 7
},
"ECB": {
"ECB": 7
},
"GCM": {
"GCM": 8
},
"XTS": {
"XTS": 7
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {},
"crypto_scheme": {
"MAC": {
"MAC": 6
}
},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"fips_cert_id": {},
"fips_certlike": {
"Certlike": {
"AES-256": 1,
"AES-CTR 256": 1,
"HMAC SHA-1": 1,
"HMAC-SHA-1": 2,
"HMAC-SHA1": 2,
"SHA-1": 6,
"SHA2-256": 6,
"SHA2-512": 5
}
},
"fips_security_level": {
"Level": {
"Level 1": 2,
"level 1": 3
}
},
"hash_function": {
"SHA": {
"SHA1": {
"SHA-1": 6
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 20
}
},
"side_channel_analysis": {},
"standard_id": {
"FIPS": {
"FIPS 140-3": 6,
"FIPS 180-4": 4,
"FIPS PUB 140-3": 1,
"FIPS PUB 197": 4,
"FIPS PUB 198-1": 4
},
"ISO": {
"ISO/IEC 19790": 6,
"ISO/IEC 19790:2012": 2,
"ISO/IEC 24759": 2
},
"NIST": {
"NIST SP 800-38D": 1,
"NIST SP 800-38E": 1,
"NIST SP 800-90B": 1
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 25,
"AES-256": 1
},
"CAST": {
"CAST": 1
}
},
"constructions": {
"MAC": {
"HMAC": 7
}
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"policy_metadata": {
"/Author": "Lynn Butler Bradford",
"/CreationDate": "D:20240924132829+05\u002730\u0027",
"/Creator": "Microsoft\u00ae Word for Microsoft 365",
"/ModDate": "D:20240924132829+05\u002730\u0027",
"/Producer": "Microsoft\u00ae Word for Microsoft 365",
"pdf_file_size_bytes": 457186,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 24
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_garbage": false,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_pdf_hash": "c9d70e259c08d8d4db22281a2cf16645218c150ce24fea7ef4c18ed2a6616a8a",
"policy_txt_hash": "df0fd72f1f36d0049e212817adf678f5f7aeef14e4ac9a4dd5c7316f200d41f9"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "None",
"certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/September 2024_011024_0217.pdf",
"date_sunset": "2029-09-25",
"description": "The VMware VMkernel Cryptographic Module is a firmware cryptographic library that provides FIPS 140-3 Approved cryptographic services for VMware products and platforms.",
"embodiment": "Multi-Chip Stand Alone",
"exceptions": [
"Physical security: N/A",
"Non-invasive security: N/A",
"Mitigation of other attacks: N/A"
],
"fw_versions": null,
"historical_reason": null,
"hw_versions": null,
"level": 1,
"mentioned_certs": {},
"module_name": "VMware VMkernel Cryptographic Module 2.0",
"module_type": "Software",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-3",
"status": "active",
"sw_versions": "2.0",
"tested_conf": [
"ESXi 8.0 on Dell EMC PowerEdge R650 with Intel Xeon Gold 6330 2.00GHz"
],
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2024-09-26",
"lab": "Acumen Security",
"validation_type": "Initial"
}
],
"vendor": "VMware, Inc.",
"vendor_url": "http://www.vmware.com"
}
}