Lucene search

K

MitreCVELIST:CVE-2014-2899

HistoryApr 22, 2014 - 2:00 p.m.

CVE-2014-2899

2014-04-2214:00:00

mitre

www.cve.org

9.3 High

AI Score

Confidence

High

0.053 Low

EPSS

Percentile

93.1%

wolfSSL CyaSSL before 2.9.4 allows remote attackers to cause a denial of service (NULL pointer dereference) via (1) a request for the peer certificate when a certificate parsing failure occurs or (2) a client_key_exchange message when the ephemeral key is not found.

References

seclists.org/oss-sec/2014/q2/126

seclists.org/oss-sec/2014/q2/130

secunia.com/advisories/57743

www.securityfocus.com/bid/66780

www.wolfssl.com/yaSSL/Blog/Entries/2014/4/11_wolfSSL_Security_Advisory__April_9%2C_2014.html

www.wolfssl.com/yaSSL/Docs-cyassl-changelog.html

security.gentoo.org/glsa/201612-53

9.3 High

AI Score

Confidence

High

0.053 Low

EPSS

Percentile

93.1%

Related for CVELIST:CVE-2014-2899

cve1 prion1 nvd1 nessus1 gentoo1