Lucene search

K
ubuntucveUbuntu.comUB:CVE-2014-3568
HistoryOct 19, 2014 - 12:00 a.m.

CVE-2014-3568

2014-10-1900:00:00
ubuntu.com
ubuntu.com
9

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.005 Low

EPSS

Percentile

76.6%

OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j does
not properly enforce the no-ssl3 build option, which allows remote
attackers to bypass intended access restrictions via an SSL 3.0 handshake,
related to s23_clnt.c and s23_srvr.c.

OSVersionArchitecturePackageVersionFilename
ubuntu15.04noarchopenssl< 1.0.1f-1ubuntu9UNKNOWN
ubuntu15.10noarchopenssl< 1.0.1f-1ubuntu9UNKNOWN
ubuntu16.04noarchopenssl< 1.0.1f-1ubuntu9UNKNOWN
ubuntu16.10noarchopenssl< 1.0.1f-1ubuntu9UNKNOWN
ubuntu17.04noarchopenssl< 1.0.1f-1ubuntu9UNKNOWN
ubuntu17.10noarchopenssl< 1.0.1f-1ubuntu9UNKNOWN
ubuntu18.04noarchopenssl< 1.0.1f-1ubuntu9UNKNOWN
ubuntu18.10noarchopenssl< 1.0.1f-1ubuntu9UNKNOWN
ubuntu19.04noarchopenssl< 1.0.1f-1ubuntu9UNKNOWN
ubuntu10.04noarchopenssl< 0.9.8k-7ubuntu8.22UNKNOWN
Rows per page:
1-10 of 131

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.005 Low

EPSS

Percentile

76.6%