Exploitation Summary
CVE-2014-0224 has been observed exploited in the wild (reported by VulnCheck KEV).
EIP tracks 7 public exploits from researchers including Tripwire, ssllabs, secretnonempty, including a Metasploit module auxiliary/scanner/ssl/openssl_ccs.
AI-analyzed exploit summary This is a detection tool for CVE-2014-0224 (OpenSSL Change Cipher Spec Injection vulnerability). It tests for the presence of the vulnerability by sending crafted SSL/TLS packets to a target host and analyzing responses.
Description
OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly restrict processing of ChangeCipherSpec messages, which allows man-in-the-middle attackers to trigger use of a zero-length master key in certain OpenSSL-to-OpenSSL communications, and consequently hijack sessions or obtain sensitive information, via a crafted TLS handshake, aka the "CCS Injection" vulnerability.
Exploits (7)
nomisec
SCANNER
39 stars
by Tripwire · remote-auth
https://github.com/Tripwire/OpenSSL-CCS-Inject-Test
This is a detection tool for CVE-2014-0224 (OpenSSL Change Cipher Spec Injection vulnerability). It tests for the presence of the vulnerability by sending crafted SSL/TLS packets to a target host and analyzing responses.
Classification
Scanner 95%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target:
OpenSSL versions 1.0.1 and 1.0.2-beta1
No auth needed
Prerequisites:
Network access to the target host · OpenSSL service running on the target
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
nomisec
SCANNER
15 stars
by ssllabs · poc
https://github.com/ssllabs/openssl-ccs-cve-2014-0224
This repository contains a Go-based scanner to test for CVE-2014-0224, an OpenSSL vulnerability allowing MITM attacks via ChangeCipherSpec injection. It performs TLS handshakes with modified configurations to detect vulnerable servers.
Classification
Scanner 95%
Attack Type
Other
Complexity
Moderate
Reliability
Reliable
Target:
OpenSSL 1.0.1, 1.0.0, and 0.9.8
No auth needed
Prerequisites:
Network access to target server · TLS/SSL service running on target
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
nomisec
WORKING POC
9 stars
by secretnonempty · remote-auth
https://github.com/secretnonempty/CVE-2014-0224
This repository contains a Go-based proof-of-concept exploit for CVE-2014-0224, a MITM vulnerability in OpenSSL 1.0.1* that allows an attacker to inject a ChangeCipherSpec message to downgrade the connection security. The exploit acts as a proxy to intercept and manipulate TLS handshakes.
Classification
Working Poc 95%
Attack Type
Other
Complexity
Moderate
Reliability
Reliable
Target:
OpenSSL 1.0.1*
No auth needed
Prerequisites:
OpenSSL 1.0.1* with RC4-SHA cipher suite enabled · Network position to perform MITM attacks
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
nomisec
WORKING POC
by droptables · poc
https://github.com/droptables/ccs-eval
This repository contains a Python script and a Perl script to evaluate hosts for CVE-2014-0224, a vulnerability in OpenSSL. The Python script uses nmap to check for open SSL ports and then executes the Perl script to perform a proof-of-concept injection test.
Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target:
OpenSSL versions prior to 1.0.1h, 1.0.0m, and 0.9.8za
No auth needed
Prerequisites:
List of target hosts · Network access to target hosts
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
nomisec
WORKING POC
by iph0n3 · remote-auth
https://github.com/iph0n3/CVE-2014-0224
This PoC exploits CVE-2014-0224, a MITM vulnerability in OpenSSL's ChangeCipherSpec handling, by sending malformed CCS messages to trigger a DoS or potential RCE. The code includes a client and server component to test the vulnerability.
Classification
Working Poc 95%
Attack Type
Dos
Complexity
Moderate
Reliability
Reliable
Target:
OpenSSL 1.0.1 before 1.0.1h
No auth needed
Prerequisites:
Network access to vulnerable OpenSSL server · Ability to intercept/modify TLS traffic
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
metasploit
SCANNER
by Masashi Kikuchi · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/ssl/openssl_ccs.rb
This Metasploit module scans for the OpenSSL CCS Injection vulnerability (CVE-2014-0224) by sending a malformed ChangeCipherSpec message during TLS handshake and checking for an alert response. It does not exploit the vulnerability but detects its presence.
Classification
Scanner 100%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target:
OpenSSL versions prior to 0.9.8za, 1.0.0m, 1.0.1h
No auth needed
Prerequisites:
Network access to target server on TCP/443 or other TLS-enabled port
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
metasploit
SCANNER
rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/gather/ssllabs_scan.rb
This Metasploit module is a scanner for SSL/TLS vulnerabilities, specifically designed to interact with the SSL Labs API to assess server configurations. It does not contain offensive exploit code but rather queries the API for vulnerability data.
Classification
Scanner 90%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target:
SSL/TLS servers (scanned via SSL Labs API)
No auth needed
Prerequisites:
Network access to SSL Labs API · Valid target hostnames or IPs
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (303)
Core 303
Core References
Vendor Advisory x_refsource_confirm
https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=bc8923b1ec9c467755cd86f7848c50ee8812e441
Issue Tracking x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=1103586
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59342
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59669
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59525
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=140604261522465&w=2
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59004
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59530
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21675626
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59824
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59282
Third Party Advisory x_refsource_confirm
http://www.novell.com/support/kb/doc.php?id=7015300
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59215
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59990
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59264
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59454
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/58492
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59186
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59188
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59126
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=140672208601650&w=2
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=140784085708882&w=2
Third Party Advisory x_refsource_confirm
http://www.novell.com/support/kb/doc.php?id=7015264
Third Party Advisory x_refsource_confirm
http://support.f5.com/kb/en-us/solutions/public/15000/300/sol15325.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59306
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-0627.html
Third Party Advisory x_refsource_confirm
http://www.websense.com/support/article/kbarticle/Vulnerabilities-resolved-in-TRITON-APX-Version-8-0
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=140544599631400&w=2
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-0626.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59190
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/58639
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21678289
Third Party Advisory x_refsource_confirm
http://www.ibm.com/support/docview.wss?uid=swg21676877
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59446
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59529
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59445
Third Party Advisory x_refsource_confirm
http://www.vmware.com/security/advisories/VMSA-2014-0012.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59589
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59894
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59325
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59354
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg24037729
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21677131
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=140266410314613&w=2
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/61254
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21678233
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59447
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031594
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676655
Third Party Advisory x_refsource_confirm
http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=6061&myns=phmc&mync=E
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59223
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/58743
Patch x_refsource_confirm
http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/58719
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59449
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59132
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=142350350616251&w=2
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=isg400001843
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=140870499402361&w=2
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=140386311427810&w=2
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59442
Third Party Advisory x_refsource_confirm
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05301946
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=140317760000786&w=2
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=142805027510172&w=2
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676879
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg24037761
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21677828
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59441
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=140621259019789&w=2
Third Party Advisory x_refsource_confirm
http://www.innominate.com/data/downloads/manuals/mdm_1.5.2.1_Release_Notes.pdf
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=140852757108392&w=2
Third Party Advisory x_refsource_confirm
https://filezilla-project.org/versions.php?type=server
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676786
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/60567
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59189
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59368
Third Party Advisory vendor-advisory
x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2014:106
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59142
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676478
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676845
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/58742
Third Party Advisory x_refsource_confirm
https://www.ibm.com/support/docview.wss?uid=ssg1S1004670
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-0624.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59602
Third Party Advisory x_refsource_confirm
http://www.kerio.com/support/kerio-control/release-history
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59300
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/58930
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21677080
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/61815
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/58667
Third Party Advisory vendor-advisory
x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-201407-05.xml
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21677390
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59191
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59284
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59444
Exploit x_refsource_misc
https://www.imperialviolet.org/2014/06/05/earlyccs.html
Third Party Advisory x_refsource_confirm
http://www.ibm.com/support/docview.wss?uid=swg24037783
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59365
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21677695
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59305
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676529
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59483
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/58385
Not Applicable, Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/534161/100/0/threaded
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59495
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=nas8N1020163
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676889
Third Party Advisory vendor-advisory
x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/58945
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=isg400001841
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=141025641601169&w=2
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59659
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59440
Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59429
Patch, Third Party Advisory x_refsource_confirm
http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
Third Party Advisory x_refsource_confirm
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59655
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59370
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59827
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/58660
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59163
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/58716
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59055
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676071
Third Party Advisory x_refsource_confirm
http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095737
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21677836
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59437
Third Party Advisory x_refsource_confirm
http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095754
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/60176
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=141147110427269&w=2
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59101
Third Party Advisory x_refsource_confirm
http://esupport.trendmicro.com/solution/en-US/1103813.aspx
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59374
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59063
Third Party Advisory x_refsource_confirm
http://www.vmware.com/security/advisories/VMSA-2014-0006.html
Third Party Advisory x_refsource_confirm
https://discussions.nessus.org/thread/7517
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59310
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676501
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676536
Patch, Third Party Advisory x_refsource_confirm
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
Third Party Advisory x_refsource_confirm
http://aix.software.ibm.com/aix/efixes/security/openssl_advisory9.asc
Third Party Advisory vendor-advisory
x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1IV61506
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59502
Third Party Advisory x_refsource_confirm
http://www.splunk.com/view/SP-CAAAM2D
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59878
Third Party Advisory x_refsource_confirm
http://www.fortiguard.com/advisory/FG-IR-14-018/
Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.html
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=140852826008699&w=2
Broken Link x_refsource_confirm
http://www.ibm.com/support/docview.wss?uid=swg21676793
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59214
Third Party Advisory x_refsource_confirm
http://www.ibm.com/support/docview.wss?uid=swg21676356
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=140794476212181&w=2
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=140389274407904&w=2
Third Party Advisory x_refsource_confirm
http://support.citrix.com/article/CTX140876
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59167
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59120
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg24037732
Third Party Advisory x_refsource_confirm
http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095757
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=nas8N1020172
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=140369637402535&w=2
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59380
Third Party Advisory vendor-advisory
x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2014:105
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59460
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59506
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/58939
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59661
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59514
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59677
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-0630.html
Third Party Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140605-openssl
Not Applicable x_refsource_confirm
http://kb.juniper.net/InfoCenter/index?page=content&id=KB29195
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-0632.html
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg24037730
Third Party Advisory x_refsource_confirm
https://kc.mcafee.com/corporate/index?page=content&id=SB10075
Third Party Advisory x_refsource_confirm
http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg24037731
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/58745
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676419
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59438
Broken Link x_refsource_confirm
http://www.ibm.com/support/docview.wss?uid=isg3T1020948
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676496
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/58714
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=140482916501310&w=2
Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-updates/2015-02/msg00030.html
Third Party Advisory x_refsource_misc
http://ccsinjection.lepidum.co.jp
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59435
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=141658880509699&w=2
Vendor Advisory x_refsource_confirm
http://www.openssl.org/news/secadv_20140605.txt
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/58615
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=142546741516006&w=2
Mailing List, Third Party Advisory mailing-list
x_refsource_fulldisc
http://seclists.org/fulldisclosure/2014/Dec/23
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676644
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59231
Third Party Advisory x_refsource_confirm
https://www.ibm.com/support/docview.wss?uid=ssg1S1004671
Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00027.html
Third Party Advisory x_refsource_confirm
http://support.apple.com/kb/HT6443
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59211
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/58433
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/60066
Third Party Advisory x_refsource_confirm
http://dev.mysql.com/doc/relnotes/workbench/en/wb-news-6-1-7.html
Third Party Advisory x_refsource_confirm
https://access.redhat.com/site/blogs/766093/posts/908133
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59301
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/60522
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59784
Third Party Advisory x_refsource_confirm
https://kb.bluecoat.com/index?page=content&id=SA80
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=141383410222440&w=2
Mailing List, Third Party Advisory mailing-list
x_refsource_fulldisc
http://seclists.org/fulldisclosure/2014/Jun/38
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=140904544427729&w=2
Third Party Advisory x_refsource_confirm
http://www.f-secure.com/en/web/labs_global/fsc-2014-6
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59135
Not Applicable x_refsource_confirm
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10629
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21678167
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/58759
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59093
Third Party Advisory x_refsource_confirm
http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095740
Third Party Advisory x_refsource_confirm
http://puppetlabs.com/security/cve/cve-2014-0224
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59192
Third Party Advisory vendor-advisory
x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=140752315422991&w=2
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/58579
Third Party Advisory x_refsource_confirm
https://www.intersectalliance.com/wp-content/uploads/release_notes/ReleaseNotes_for_SNARE_for_MSSQL.pdf
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59040
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=140389355508263&w=2
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59175
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/60819
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=140448122410568&w=2
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59666
Third Party Advisory x_refsource_confirm
http://www.tenable.com/blog/nessus-527-and-pvs-403-are-available-for-download
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/58128
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=140431828824371&w=2
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59413
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676334
Third Party Advisory x_refsource_confirm
http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21675821
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg24037870
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59721
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=141383465822787&w=2
Third Party Advisory x_refsource_confirm
http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095756
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-0680.html
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676062
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59012
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/58713
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21673137
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59362
Third Party Advisory vendor-advisory
x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2015:062
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676035
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=140499864129699&w=2
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-0631.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59338
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59450
Third Party Advisory x_refsource_confirm
http://linux.oracle.com/errata/ELSA-2014-1053.html
Patch, Third Party Advisory x_refsource_confirm
http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
Third Party Advisory, US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/978508
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031032
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59287
Third Party Advisory x_refsource_confirm
https://blogs.oracle.com/sunsecurity/entry/cve_2014_0224_cryptographic_issues1
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21683332
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59491
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59364
Third Party Advisory x_refsource_confirm
https://blogs.oracle.com/sunsecurity/entry/cve_2014_0224_cryptographic_issues
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59451
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/58977
Third Party Advisory x_refsource_confirm
https://www.novell.com/support/kb/doc.php?id=7015271
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676333
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/60571
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59459
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676833
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/60577
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59448
Third Party Advisory x_refsource_confirm
https://www.intersectalliance.com/wp-content/uploads/release_notes/ReleaseNotes_for_Snare_for_Windows.pdf
Third Party Advisory x_refsource_confirm
http://www.blackberry.com/btsc/KB36051
Third Party Advisory x_refsource_confirm
http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095755
Third Party Advisory x_refsource_confirm
http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-345106.htm
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=141164638606214&w=2
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004690
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59885
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21677527
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59202
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-0633.html
Third Party Advisory x_refsource_confirm
http://www.ibm.com/support/docview.wss?uid=ssg1S1004678
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59375
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=140983229106599&w=2
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59528
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/58337
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59518
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59389
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59162
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59383
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21677567
Third Party Advisory x_refsource_confirm
http://kb.juniper.net/InfoCenter/index?page=content&id=KB29217
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59490
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59916
Third Party Advisory x_refsource_confirm
http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=6060&myns=phmc&mync=E
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=140491231331543&w=2
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg24037727
Third Party Advisory vendor-advisory
x_refsource_aixapar
http://www.ibm.com/support/docview.wss?uid=swg1IT02314
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59043
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59347
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/60049
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676615
Third Party Advisory x_refsource_confirm
https://cert-portal.siemens.com/productcert/pdf/ssa-234763.pdf
Broken Link x_refsource_misc
https://www.arista.com/en/support/advisories-notices/security-advisories/941-security-advisory-0005
Scores
CVSS v3
7.4
EPSS
0.9533
EPSS Percentile
99.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
Details
VulnCheck KEV
2024-05-06
CWE
CWE-326
Status
published
Products (21)
fedoraproject/fedora
19
fedoraproject/fedora
20
filezilla-project/filezilla_server
< 0.9.45
mariadb/mariadb
10.0.0 - 10.0.13
nodejs/node.js
< 0.10.29
openssl/openssl
< 0.9.8za
opensuse/opensuse
13.1
opensuse/opensuse
13.2
python/python
2.7.0 - 2.7.8
redhat/enterprise_linux
4
... and 11 more
Published
Jun 05, 2014
Tracked Since
Feb 18, 2026