Lucene search

K
opensslOpenSSLOPENSSL:CVE-2011-0014
HistoryFeb 08, 2011 - 12:00 a.m.

Vulnerability in OpenSSL CVE-2011-0014

2011-02-0800:00:00
www.openssl.org
12

9.4 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.103 Low

EPSS

Percentile

94.8%

A buffer over-read flaw was discovered in the way OpenSSL parsed the Certificate Status Request TLS extensions in ClientHello TLS handshake messages. A remote attacker could possibly use this flaw to crash an SSL server using the affected OpenSSL functionality.

9.4 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.103 Low

EPSS

Percentile

94.8%

Related for OPENSSL:CVE-2011-0014