Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:11323
HistoryJan 15, 2019 - 9:00 a.m.

Information Disclosure Through Buffer Over-read

2019-01-1509:00:11
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
14

0.975 High

EPSS

Percentile

100.0%

OpenSSL is vulnerable to information disclosure. OpenSSL does not correctly handle Heartbeat Extension packets, attackers can leverage this flaw to read sensitive information by triggering a buffer over-read. This is also known as Heartbleed.

References