CVE-2014-3566

ADVISORY - nist

Summary

The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue.

EPSS Score⁠: 0.94196 (0.999)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-310⁠

Cryptographic Issues

ADVISORY - redhat

(CWE-636|CWE-757)⁠

Impacted images

Advisories

NIST

CREATED

11 years ago

UPDATED

3 months ago

ADVISORY IDCVE-2014-3566⁠

EXPLOITABILITY SCORE

1.6

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-310⁠

CVSS SCORE

3.4low

Debian

CREATED

11 years ago

UPDATED

2 months ago

ADVISORY IDCVE-2014-3566⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Alow

Ubuntu

CREATED

11 years ago

UPDATED

2 months ago

ADVISORY IDCVE-2014-3566⁠

EXPLOITABILITY SCORE

1.6

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

3.4medium

Amazon

CREATED

11 years ago

UPDATED

11 years ago

ADVISORY IDALAS-2014-426⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

Amazon

CREATED

11 years ago

UPDATED

11 years ago

ADVISORY IDALAS-2014-429⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

Amazon

CREATED

10 years ago

UPDATED

10 years ago

ADVISORY IDALAS-2015-471⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Acritical

Amazon

CREATED

10 years ago

UPDATED

10 years ago

ADVISORY IDALAS-2015-472⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

Amazon

CREATED

10 years ago

UPDATED

10 years ago

ADVISORY IDALAS-2015-480⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

Red Hat

CREATED

11 years ago

UPDATED

4 months ago

ADVISORY IDCVE-2014-3566⁠

EXPLOITABILITY SCORE

10.0

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

(CWE-636|CWE-757)⁠

CVSS SCORE

5high

Oracle

CREATED

10 years ago

UPDATED

10 years ago

ADVISORY IDELSA-2015-0067⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Acritical

Oracle

CREATED

10 years ago

UPDATED

10 years ago

ADVISORY IDELSA-2015-0068⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

Oracle

CREATED

10 years ago

UPDATED

10 years ago

ADVISORY IDELSA-2015-0069⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

Oracle

CREATED

10 years ago

UPDATED

10 years ago

ADVISORY IDELSA-2015-0085⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

intheWild

CREATED

4 months ago

UPDATED

4 months ago

ADVISORY IDCVE-2014-3566⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY