Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2014-5270
HistoryOct 10, 2014 - 1:00 a.m.

CVE-2014-5270

2014-10-1001:00:00
mitre
raw.githubusercontent.com
2

6.2 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

39.9%

JSON

Libgcrypt before 1.5.4, as used in GnuPG and other products, does not properly perform ciphertext normalization and ciphertext randomization, which makes it easier for physically proximate attackers to conduct key-extraction attacks by leveraging the ability to collect voltage data from exposed metal, a different vector than CVE-2013-4576.

Related

prion 2
debiancve 1
ubuntucve 2
openvas 39
nessus 27
amazon 2
securityvulns 5
mageia 3
cve 2
ubuntu 1
oraclelinux 1
slackware 1
centos 1
gentoo 1
f5 2
freebsd 1
fedora 5
cvelist 1
redhat 1
veracode 1
rosalinux 1
prion
prion
Code injection
2014-10-10 01:55:00
Code injection
2013-12-20 21:55:00
debiancve
debiancve
CVE-2014-5270
2014-10-10 01:55:10
ubuntucve
ubuntucve
CVE-2014-5270
2014-08-18 00:00:00
CVE-2013-4576
2013-12-18 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for libgcrypt (EulerOS-SA-2019-1750)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for libgcrypt (EulerOS-SA-2019-2006)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for libgcrypt (EulerOS-SA-2020-1189)
2020-03-13 00:00:00
nessus
nessus
EulerOS 2.0 SP3 : libgcrypt (EulerOS-SA-2019-2006)
2019-09-24 00:00:00
EulerOS 2.0 SP2 : libgcrypt (EulerOS-SA-2019-1750)
2019-07-22 00:00:00
EulerOS 2.0 SP5 : libgcrypt (EulerOS-SA-2019-2205)
2019-11-08 00:00:00
amazon
amazon
Medium: libgcrypt
2015-08-04 17:43:00
Medium: gnupg
2014-01-14 16:18:00
securityvulns
securityvulns
[USN-2339-1] GnuPG vulnerability
2014-09-15 00:00:00
GnuPG / libcrypt information leakage
2014-09-15 00:00:00
[USN-2059-1] GnuPG vulnerability
2013-12-23 00:00:00
mageia
mageia
Updated libgcrypt packages fix CVE-2014-5270
2014-09-05 13:07:37
Updated gnupg packages fix CVE-2014-5270
2014-09-22 12:31:24
Updated gnupg package fixes CVE-2013-4576
2013-12-20 21:29:34
cve
cve
CVE-2014-5270
2014-10-10 01:55:10
CVE-2013-4576
2013-12-20 21:55:06
ubuntu
ubuntu
Libgcrypt vulnerability
2014-09-03 00:00:00
oraclelinux
oraclelinux
gnupg security update
2014-01-08 00:00:00
slackware
slackware
[slackware-security] gnupg
2013-12-21 19:34:33
centos
centos
gnupg security update
2014-01-08 22:53:33
gentoo
gentoo
Libgcrypt: Side-channel attack
2014-08-29 00:00:00
f5
f5
K16396 : GnuPG vulnerability CVE-2013-4576
2015-04-09 00:00:00
SOL16396 - GnuPG vulnerability CVE-2013-4576
2015-04-09 00:00:00
freebsd
freebsd
gnupg -- RSA Key Extraction via Low-Bandwidth Acoustic Cryptanalysis attack
2013-12-18 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: gnupg-1.4.17-1.fc20
2014-06-27 02:28:57
[SECURITY] Fedora 20 Update: gnupg-1.4.16-2.fc20
2013-12-23 03:48:29
[SECURITY] Fedora 20 Update: gnupg-1.4.19-2.fc20
2015-03-14 09:16:09
cvelist
cvelist
CVE-2013-4576
2013-12-20 21:00:00
redhat
redhat
(RHSA-2014:0016) Moderate: gnupg security update
2014-01-08 00:00:00
veracode
veracode
Side-channel Attack
2019-01-15 08:54:58
rosalinux
rosalinux
Advisory ROSA-SA-2021-1870
2021-07-02 17:14:28

6.2 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

39.9%

JSON
Related for CVELIST:CVE-2014-5270
prion2debiancve1ubuntucve2openvas39nessus27amazon2securityvulns5mageia3cve2ubuntu1oraclelinux1slackware1centos1gentoo1f52freebsd1fedora5cvelist1redhat1veracode1rosalinux1