CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

31 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2014-6062

Malware in sbrugna...

4.3CVSS6.4AI score0.0036EPSS

Exploits0References6

IBM Security Bulletins•added 2024/01/29 7:19 p.m.•37 views

Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect Content Manager Enterprise Edition (CVE-2014-3566, CVE-2014-6457, CVE-2014-6468)

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Technology Edition, Version 5 and 7 that is used by Content Manager Enterprise Edition. This also includes a fix for the Padding Oracle On Downgraded Legacy Encryption POODLE SSLv3 vulnerability CVE-2014-3566. These were...

6.8CVSS3.3AI score0.93538EPSS

Exploits5Affected Software1

IBM Security Bulletins•added 2023/02/28 1:48 a.m.•100 views

Security Bulletin: Vulnerability in SSLv3 affects IBM SAN b-type switches and directors (CVE-2014-3566)

Summary SSLv3 contains a vulnerability that has been referred to as the Padding Oracle On Downgraded Legacy Encryption POODLE attack. SSLv3 is enabled in IBM SAN b-type switches and directors. Vulnerability Details CVE-ID : CVE-2014-3566 DESCRIPTION : Product could allow a remote attacker to obta...

4.3CVSS3.3AI score0.93538EPSS

Exploits5Affected Software7

Ivanti•added 2023/02/14 7:22 a.m.•5 views

JSA10656 - 2014-10 Out of Cycle Security Bulletin: Multiple products affected by SSL POODLE vulnerability (CVE-2014-3566)

Ivanti 4th of March 2024 - This isn't an active SA and any new edits are part of an article maintenance project. The SSL protocol 3.0 SSLv3 uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack. This issue is...

4.3CVSS6.2AI score0.93538EPSS

Exploits5

IBM Security Bulletins•added 2022/09/22 3:2 a.m.•47 views

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect Asset and Service Management

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Versions 5, 6, and 7 that are used by Maximo Asset Management, Maximo Asset Management Essentials, Maximo Asset Management for Energy Optimization, Maximo Industry Solutions including Maximo for Government, Maximo fo...

3.4CVSS4.3AI score0.93538EPSS

Exploits6Affected Software14

IBM Security Bulletins•added 2022/08/19 11:26 p.m.•37 views

Security Bulletin: IBM License Metric Tool v9 and IBM Endpoint Manager for Software Use Analysis v2.2 and v9 are vulnerable to Padding Oracle On Downgraded Legacy Encryption (POODLE) attack on SSLv3 connections (CVE-2014-3566)

Summary SSLv3 protocol used to secure a number of connection paths in IBM License Metric Tool and IBM Endpoint Manager for Software Use Analysis is vulnerable to POODLE attack. This attack enables a man-in-the-middle attacker to decrypt and intercept communications, including user-server and...

4.3CVSS3.8AI score0.93538EPSS

Exploits5Affected Software1

IBM Security Bulletins•added 2020/07/24 10:49 p.m.•30 views

Security Bulletin: Vulnerability in SSLv3 affects IBM Sterling Connect:Direct FTP+ (CVE-2014-3566)

Summary SSLv3 contains a vulnerability that has been referred to as the Padding Oracle On Downgraded Legacy Encryption POODLE attack. SSLv3 is enabled by default in Connect:Direct FTP+. Vulnerability Details CVE-ID: CVE-2014-3566 DESCRIPTION: Product could allow a remote attacker to obtain...

4.3CVSS0.6AI score0.93538EPSS

Exploits5Affected Software1

IBM Security Bulletins•added 2019/12/20 4:10 p.m.•54 views

Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Tivoli Netcool Configuration Manager (ITNCM)

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Technology Edition, Version 6 that is used by ITNCM. This also includes a fix for the Padding Oracle On Downgraded Legacy Encryption POODLE SSLv3 vulnerability CVE-2014-3566. These were disclosed as part of the IBM Java...

4.3CVSS0.8AI score0.93538EPSS

Exploits5Affected Software1

IBM Security Bulletins•added 2018/09/29 8:6 p.m.•39 views

Security Bulletin: Multiple vulnerabilities in IBM Java SDK, and IBM Java Runtime Technology Edition affect Rational Functional Tester

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 6 & 7 and IBM® Runtime Environment Java™ Technology Edition, Version 6 & 7 that is used by IBM Rational Functional Tester . Vulnerability Details CVEID: CVE-2014-3566 DESCRIPTION: Multiple products could allo...

10CVSS1AI score0.93538EPSS

Exploits10Affected Software1

IBM Security Bulletins•added 2018/09/29 6:4 p.m.•42 views

Security Bulletin: Multiple vulnerabilities in IBM Java runtime affect ClearQuest Web and ClearQuest EmailRelay (CVE-2014-3566, CVE-2014-6457)

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Technology Edition that is used by ClearQuest Web and ClearQuest EmailRelay. This also includes a fix for the Padding Oracle On Downgraded Legacy Encryption POODLE SSLv3 vulnerability CVE-2014-3566. These were disclosed ...

4.3CVSS1AI score0.93538EPSS

Exploits5Affected Software1

IBM Security Bulletins•added 2018/08/03 4:23 a.m.•30 views

Security Bulletin: IBM Java Quarterly CPU - October 2014 affecting Rational Business Developer (CVE-2014-6457,CVE-2014-3065 and CVE-2014-3566)

Summary IBM SDK, which is based on an Oracle Java Development Kit JDK, is shipped with Rational Business Developer. Oracle has released the October 2014 critical patch updates CPU that contains security vulnerability fixes for the JDK. The IBM SDK has been updated to incorporate these fixes and...

6.9CVSS1AI score0.93538EPSS

Exploits5Affected Software1

IBM Security Bulletins•added 2018/06/18 12:9 a.m.•30 views

Security Bulletin:Vulnerabilities in Network Security Services (NSS) affect the IBM FlashSystem V840,(CVE-2014-3566)

Summary Network Security Services NSS is a set of libraries designed to support the cross-platform development of security-enabled client and server applications. NSS is used by the IBM FlashSystem V840. FlashSystem V840 has addressed the applicable CVE. Vulnerability Details CVE-ID: CVE-2014-356...

4.3CVSS0.4AI score0.93538EPSS

Exploits5Affected Software1

IBM Security Bulletins•added 2018/06/17 2:53 p.m.•27 views

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect WebSphere Application Server shipped with IBM Tivoli Network Performance Manager Wireless Platform (CVE-2014-3566 and CVE-2014-6457)

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition that is shipped with IBM WebSphere Application Server as a component of IBM Tivoli Network Performance Manager Wireless Platform . This also includes a fix for the Padding Oracle On Downgraded Legacy Encryption POODLE...

4.3CVSS0.93538EPSS

Exploits5Affected Software1

IBM Security Bulletins•added 2018/06/17 2:51 p.m.•29 views

Security Bulletin: Vulnerability in SSLv3 affects IBM Tivoli Composite Application Manager for Transactions (CVE-2014-3566)

Summary SSLv3 contains a vulnerability that has been referred to as the Padding Oracle On Downgraded Legacy Encryption POODLE attack. SSLv3 is enabled in IBM Tivoli Composite Application Manager for Transactions. Vulnerability Details CVE-ID: CVE-2014-3566 DESCRIPTION: Product could allow a remot...

4.3CVSS1.3AI score0.93538EPSS

Exploits5Affected Software1

IBM Security Bulletins•added 2018/06/17 12:9 p.m.•31 views

Security Bulletin: IBM Content Collector for SAP Applications affected by vulnerabilities in IBM SDK Java™ Technology Edition, Version 6 and Version 7 (CVE-2014-3566, CVE-2014-4244, CVE-2014-4263, CVE-2014-6457, CVE-2014-6468)

Summary IBM Content Collector for SAP Applications ships IBM SDK Java™ Technology Edition, Version 6 and Version 7, which have security vulnerabilities that might be exposed within the use of Content Collector for SAP Applications. Vulnerability Details CVE ID: CVE-2014-3566 Description: Product...

7.1CVSS1.1AI score0.93538EPSS

Exploits5Affected Software1

IBM Security Bulletins•added 2018/06/17 4:59 a.m.•16 views

Security Bulletin: Rational License Key Server Administration and Reporting Tool vulnerabilities (CVE-2014-3566, CVE-2014-4244)

Summary Two possible security vulnerabilities have been reported in RLKS Administration and Reporting Tool. There have been no reported exploits of these vulnerabilities. Vulnerability Details CVE ID: CVE-2014-3566 Description: Product could allow a remote attacker to obtain sensitive information...

4.3CVSS0.2AI score0.93538EPSS

Exploits5Affected Software1

IBM Security Bulletins•added 2018/06/17 4:59 a.m.•30 views

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect RequisitePro (CVE-2014-3566 and CVE-2014-6457)

Summary There are multiple vulnerabilities in IBM SDK Java Technology Edition, versions 1.5, 1.6 and 1.7 which are used by IBM Rational RequisitePro. These issues were disclosed as part of the IBM Java SDK updates in October 2014. Vulnerability Details CVEID: CVE-2014-3566 Description: Product...

4.3CVSS1.1AI score0.93538EPSS

Exploits5Affected Software1

IBM Security Bulletins•added 2018/06/17 4:58 a.m.•34 views

Security Bulletin: Rational Automation Framework Security Advisory (CVE-2014-3566)

Summary SSLv3 contains a vulnerability that has been referred to as the Padding Oracle On Downgraded Legacy Encryption POODLE attack. SSLTLS is enabled by default in embedded Build Forge in some pages. Vulnerability Details | Subscribe to My Notifications to be notified of important product suppo...

4.3CVSS3.3AI score0.93538EPSS

Exploits5Affected Software1

IBM Security Bulletins•added 2018/06/16 9:22 p.m.•42 views

Security Bulletin: Multiple vulnerabilities in IBM Security Network Protection (CVE-2014-3567, CVE-2014-4877, CVE-2014-3513, CVE-2014-3566, CVE-2014-3567, CVE-2014-3568)

Summary An OpenSSL and a Wget vulnerability have been discovered in IBM Security Network Protection. Vulnerability Details CVEID: CVE-2014-4877 DESCRIPTION: GNU Wget could allow a remote attacker to launch a symlink attack. Temporary files are created insecurely. A remote attacker could exploit...

9.3CVSS1.1AI score0.93538EPSS

Exploits9Affected Software1

IBM Security Bulletins•added 2018/06/16 1:18 p.m.•13 views

Security Bulletin: Vulnerability in SSLv3 affects IBM SPSS Modeler (CVE-2014-3566)

Summary SSLv3 contains a vulnerability that has been referred to as the Padding Oracle On Downgraded Legacy Encryption POODLE attack. SSLv3 is enabled in IBM SPSS Modeler. Vulnerability Details CVE-ID: CVE-2014-3566 DESCRIPTION: Product could allow a remote attacker to obtain sensitive informatio...

4.3CVSS1.6AI score0.93538EPSS

Exploits5Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by