Lucene search

K

PRIOn knowledge basePRION:CVE-2014-0128

HistoryApr 14, 2014 - 3:09 p.m.

Server side request forgery (ssrf)

2014-04-1415:09:00

PRIOn knowledge base

www.prio-n.com

7

6.8 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.117 Low

EPSS

Percentile

95.1%

Squid 3.1 before 3.3.12 and 3.4 before 3.4.4, when SSL-Bump is enabled, allows remote attackers to cause a denial of service (assertion failure) via a crafted range request, related to state management.

CPENameOperatorVersion
opensuseeq11.4
squideq3.2.0.18
squideq3.1.0.18
squideq3.3.3
squideq3.2.0.9
squideq3.3.11
squideq3.1.13
squideq3.3.5
squideq3.2.0.1
squideq3.3.0.3

Rows per page:

1-10 of 871

References

lists.opensuse.org/opensuse-security-announce/2016-08/msg00010.html

lists.opensuse.org/opensuse-security-announce/2016-08/msg00040.html

lists.opensuse.org/opensuse-updates/2014-04/msg00030.html

lists.opensuse.org/opensuse-updates/2014-04/msg00060.html

secunia.com/advisories/57288

secunia.com/advisories/57889

www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html

www.securityfocus.com/bid/66112

www.squid-cache.org/Advisories/SQUID-2014_1.txt

6.8 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.117 Low

EPSS

Percentile

95.1%

Related for PRION:CVE-2014-0128

redhat1 securityvulns2 fedora2 mageia2 openvas16 veracode1 amazon2 nessus16 debiancve1 oraclelinux1 ubuntucve1 centos1 cve1 seebug1 gentoo1 suse2