Lucene search
HistoryOct 22, 2014 - 2:55 p.m.
CVE-2014-3676
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.8 High
AI Score
Confidence
Low
0.02 Low
EPSS
Percentile
89.0%
Heap-based buffer overflow in Shim allows remote attackers to execute arbitrary code via a crafted IPv6 address, related to the “tftp:// DHCPv6 boot option.”
Affected configurations
Node
redhatshimRange0.3–0.8
Related
ubuntucve
ubuntucve
CVE-2014-3676
2014-10-22 00:00:00
prion
prion
Heap overflow
2014-10-22 14:55:00
cvelist
cvelist
CVE-2014-3676
2014-10-22 14:00:00
cve
cve
CVE-2014-3676
2014-10-22 14:55:06
fedora
fedora
[SECURITY] Fedora 21 Update: shim-signed-0.8-1.fc22
2014-11-01 17:07:48
[SECURITY] Fedora 19 Update: shim-signed-0.8-2
2014-11-12 02:36:10
[SECURITY] Fedora 21 Update: shim-0.8-1.fc22
2014-11-01 17:07:48
nessus
nessus
Fedora 19 : mokutil-0.2.0-1.fc19 / shim-signed-0.8-2 (2014-14059)
2014-11-12 00:00:00
Fedora 20 : mokutil-0.2.0-1.fc20 / shim-signed-0.8-3 (2014-14058)
2014-11-12 00:00:00
openSUSE Security Update : gnu-efi / pesign / shim (openSUSE-2015-48)
2015-01-23 00:00:00
openvas
openvas
Fedora Update for shim-signed FEDORA-2014-14058
2014-11-12 00:00:00
SUSE: Security Advisory (SUSE-SU-2014:1619-1)
2021-06-09 00:00:00
Oracle: Security Advisory (ELSA-2014-1801)
2015-10-06 00:00:00
redhat
redhat
(RHSA-2014:1801) Moderate: shim security update
2014-11-04 17:35:31
suse
suse
Security update for shim (important)
2014-12-11 19:04:42
oraclelinux
oraclelinux
shim security update
2014-11-05 00:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.8 High
AI Score
Confidence
Low
0.02 Low
EPSS
Percentile
89.0%
Related for NVD:CVE-2014-3676