CVE-2014-5270

🗓️ 10 Oct 2014 01:10:55Reported by mitreType

Libgcrypt vulnerability in version before 1.5.4 allows key-extraction attacks

Reporter	Title	Published	Views	Family All 122
Prion	Code injection	10 Oct 201401:55	–	prion
Prion	Code injection	20 Dec 201321:55	–	prion
Debian CVE	CVE-2014-5270	10 Oct 201401:55	–	debiancve
Cvelist	CVE-2014-5270	10 Oct 201401:00	–	cvelist
Cvelist	CVE-2013-4576	20 Dec 201321:00	–	cvelist
NVD	CVE-2014-5270	10 Oct 201401:55	–	nvd
NVD	CVE-2013-4576	20 Dec 201321:55	–	nvd
OpenVAS	Debian Security Advisory DSA 3024-1 (gnupg - security update)	11 Sep 201400:00	–	openvas
OpenVAS	Debian: Security Advisory (DSA-3024-1)	10 Sep 201400:00	–	openvas
OpenVAS	SUSE: Security Advisory (SUSE-SU-2014:1077-1)	9 Jun 202100:00	–	openvas

Nvd

Node

gnupg libgcryptRange≤1.5.3

gnupg libgcryptMatch1.4.0

gnupg libgcryptMatch1.4.3

gnupg libgcryptMatch1.4.4

gnupg libgcryptMatch1.4.5

gnupg libgcryptMatch1.4.6

gnupg libgcryptMatch1.5.0

gnupg libgcryptMatch1.5.1

gnupg libgcryptMatch1.5.2

Node

debian debian_linuxMatch7.0

Source	Link
cs	www.cs.tau.ac.il/~tromer/handsoff/
lists	www.lists.gnupg.org/pipermail/gnupg-announce/2014q3/000352.html
debian	www.debian.org/security/2014/dsa-3073
debian	www.debian.org/security/2014/dsa-3024
openwall	www.openwall.com/lists/oss-security/2014/08/16/2

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

10 Oct 2014 01:55Current

5.6Medium risk

Vulners AI Score5.6

CVSS22.1

EPSS0.002

CWE-200