A newly discovered bug in OpenSSL is the open-source implementation of the SSL and TLS protocols that’s used to secure data sent between clients and servers. A man-in-the-middle attack could force servers and clients to use weak keys, which would allow attackers to decrypt traffic. The latest version of OpenSSL also patches five other vulnerabilities, some of which could be abused by attackers to create a distributed-denial-of-service attack. The new MITM vulnerability was discovered by Japanese security researcher Masashi Kikuchi.”]
Source: https://www.cuinfosecurity.com/openssl-flaw-discovered-patch-now-a-6915