Lucene search
CVE-2014-3504
CVE-2014-3504 Serf 0.2.0 through 1.3.x before 1.3.7, NUL byte in domain name in subject's Common Name (CN) field allows SSL server spoofing
Show more
| Reporter | Title | Published | Views | Family All 29 |
|---|---|---|---|---|
 | [USN-2315-1] serf vulnerability | 26 Aug 201400:00 | – | securityvulns |
| serf certificate name spoofing vulnerability | 26 Aug 201400:00 | – | securityvulns |
| serf / Apache httpcomponents HttpClient / Jakarta Commons HttpClient SSL validation bypass | 15 Oct 201400:00 | – | securityvulns |
 | CVE-2014-3504 | 19 Aug 201418:00 | – | cvelist |
 | FreeBSD : serf -- SSL Certificate Null Byte Poisoning (69048656-2187-11e4-802c-20cf30e32f6d) | 12 Aug 201400:00 | – | nessus |
| Mandriva Linux Security Advisory : serf (MDVSA-2014:166) | 12 Sep 201400:00 | – | nessus |
| Fedora 20 : libserf-1.3.7-1.fc20 (2014-9367) | 23 Aug 201400:00 | – | nessus |
| Mandriva Linux Security Advisory : serf (MDVSA-2015:127) | 30 Mar 201500:00 | – | nessus |
| Ubuntu 14.04 LTS : serf vulnerability (USN-2315-1) | 15 Aug 201400:00 | – | nessus |
| Amazon Linux AMI : libserf (ALAS-2014-397) | 12 Oct 201400:00 | – | nessus |
10
Node
OROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROR
Node
Node
OROROROROROROROROROROROROROROROROROROROROROROROR
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo19 Aug 2014 18:55Current
8High risk
Vulners AI Score8
CVSS24
EPSS0.02168