Exploitation Summary
EIP tracks 8 public exploits for CVE-2014-3566.
PoCs published by mpgn, mikesplain, jmonge12, including Metasploit module auxiliary/scanner/ssl/ssl_version.
AI-analyzed exploit summary This repository contains a proof-of-concept for the POODLE attack (CVE-2014-3566), demonstrating how to exploit the SSL 3.0 protocol vulnerability to decrypt secure communications. The code includes implementations of AES-256 CBC mode decryption and parallelized attacks to recover plaintext without knowing the encryption key.
Description
The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue.
Exploits (8)
nomisec
WORKING POC
263 stars
by mpgn · poc
https://github.com/mpgn/poodle-PoC
This repository contains a proof-of-concept for the POODLE attack (CVE-2014-3566), demonstrating how to exploit the SSL 3.0 protocol vulnerability to decrypt secure communications. The code includes implementations of AES-256 CBC mode decryption and parallelized attacks to recover plaintext without knowing the encryption key.
Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Complex
Reliability
Reliable
Target:
SSL 3.0
No auth needed
Prerequisites:
SSL 3.0 enabled on target server · ability to intercept and modify network traffic
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
nomisec
SCANNER
2 stars
by mikesplain · poc
https://github.com/mikesplain/CVE-2014-3566-poodle-cookbook
This repository contains a Chef cookbook designed to detect the POODLE vulnerability (CVE-2014-3566) by checking if SSLv3 is enabled on specified ports. It includes test suites for vulnerable and patched configurations.
Classification
Scanner 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target:
Systems with SSLv3 enabled (e.g., Nginx)
No auth needed
Prerequisites:
OpenSSL installed on the system · Access to the target ports (default: 443, 8443)
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
nomisec
WRITEUP
by jmonge12 · poc
https://github.com/jmonge12/Home-Network-Vulnerability-Assessment
This repository documents a security audit of a residential router, focusing on the detection of CVE-2014-3566 (POODLE) using Nmap scripts. It provides detailed methodology, tool usage, and evidence of vulnerability detection but does not include functional exploit code.
Classification
Writeup 95%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target:
Residential router (Cisco-Linksys firmware with SSLv3 support)
No auth needed
Prerequisites:
Nmap with NSE scripts · Network access to the target router
devstral-2 · analyzed May 31, 2026
Full analysis →
nomisec
WORKING POC
by josecl200 · poc
https://github.com/josecl200/VC-PoodlePOC
This repository contains a functional proof-of-concept for CVE-2014-3566 (POODLE), demonstrating a padding oracle attack against SSL 3.0. It includes a terminal-based UI for verifying SSL 3.0 support, testing LDAP binds, and executing the POODLE attack to recover plaintext data.
Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target:
SSL 3.0 implementations (e.g., OpenSSL, LDAPS services)
No auth needed
Prerequisites:
SSL 3.0 support on target · CBC-mode cipher suite enabled · Network access to target service
devstral-2 · analyzed Apr 27, 2026
Full analysis →
nomisec
WORKING POC
by GoRuGoo · poc
https://github.com/GoRuGoo/poodle-attack-sandbox
This repository contains a proof-of-concept for CVE-2014-3566 (POODLE attack), which exploits the SSLv3 padding oracle vulnerability. It includes client-side scripts to force SSLv3 connections and server-side MITM components to intercept and manipulate traffic.
Classification
Working Poc 90%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target:
SSLv3 implementations
No auth needed
Prerequisites:
SSLv3 support on target server · MITM position
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
nomisec
WORKING POC
by uthrasri · poc
https://github.com/uthrasri/openssl_g2.5_CVE-2014-3566
This repository contains a proof-of-concept exploit for CVE-2014-3566, also known as the 'POODLE' vulnerability, which affects SSLv3. The code includes various utilities and configurations for testing the vulnerability, particularly in MacOS environments.
Classification
Working Poc 80%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target:
OpenSSL versions with SSLv3 support
No auth needed
Prerequisites:
Vulnerable version of OpenSSL with SSLv3 enabled
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
nomisec
SCANNER
by cloudpassage · poc
https://github.com/cloudpassage/mangy-beast
This repository provides CloudPassage Halo policies for detecting CVE-2014-3566 (POODLE) vulnerabilities in Red Hat hosts running Apache and Windows Server 2008/2012. It includes JSON policy files for scanning and remediation guidance.
Classification
Scanner 90%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target:
Apache (mod_ssl/mod_nss), Windows Server 2008/2012
Auth required
Prerequisites:
Access to CloudPassage Halo portal · Supported platforms (RHEL, Windows Server)
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
metasploit
SCANNER
by todb, et, Chris John Riley · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/ssl/ssl_version.rb
This Metasploit module scans SSL/TLS services to detect supported versions and cipher suites, and checks for known vulnerabilities such as POODLE, DROWN, BEAST, and others. It does not exploit vulnerabilities but reports them for further analysis.
Classification
Scanner 100%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target:
SSL/TLS services (various versions)
No auth needed
Prerequisites:
Network access to the target SSL/TLS service
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (244)
Core 244
Core References
Vendor Advisory x_refsource_confirm
https://support.apple.com/HT205217
Vendor Advisory x_refsource_confirm
https://support.apple.com/kb/HT6531
Vendor Advisory x_refsource_confirm
https://www.openssl.org/news/secadv_20141015.txt
Various Sources
https://templatelab.com/ssl-poodle/
Third Party Advisory x_refsource_confirm
http://aix.software.ibm.com/aix/efixes/security/openssl_advisory11.asc
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031090
Third Party Advisory x_refsource_confirm
http://blog.nodejs.org/2014/10/23/node-v0-10-33-stable/
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-1880.html
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=142804214608580&w=2
Third Party Advisory x_refsource_confirm
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04819635
Third Party Advisory, US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/577193
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=141577087123040&w=2
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=141715130023061&w=2
Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00008.html
Vendor Advisory x_refsource_confirm
https://support.apple.com/kb/HT6542
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031106
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=141697638231025&w=2
Third Party Advisory x_refsource_confirm
http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
Third Party Advisory mailing-list
x_refsource_mlist
http://marc.info/?l=openssl-dev&m=141333049205629&w=2
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/60056
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-1877.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/61130
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-1546.html
Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00018.html
Vendor Advisory x_refsource_confirm
https://support.apple.com/kb/HT6529
Third Party Advisory vendor-advisory
x_refsource_apple
http://archives.neohapsis.com/archives/bugtraq/2014-10/0103.html
Third Party Advisory x_refsource_confirm
http://www.websense.com/support/article/kbarticle/Vulnerabilities-resolved-in-TRITON-APX-Version-8-0
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-1920.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031087
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=143628269912142&w=2
Third Party Advisory x_refsource_confirm
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05157667
Third Party Advisory x_refsource_confirm
https://bto.bluecoat.com/security-advisory/sa83
Third Party Advisory x_refsource_confirm
http://support.citrix.com/article/CTX200238
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/61359
Vendor Advisory x_refsource_confirm
https://support.apple.com/kb/HT6541
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031093
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031132
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2015/dsa-3144
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=142721887231400&w=2
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2015/dsa-3253
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=142660345230545&w=2
Third Party Advisory x_refsource_confirm
http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04779034
Third Party Advisory x_refsource_confirm
https://www.suse.com/support/kb/doc.php?id=7015773
Third Party Advisory, VDB Entry vendor-advisory
x_refsource_apple
http://www.securityfocus.com/archive/1/533724/100/0/threaded
Third Party Advisory x_refsource_confirm
https://www.elastic.co/blog/logstash-1-4-3-released
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=142296755107581&w=2
Patch, Third Party Advisory x_refsource_confirm
http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
Third Party Advisory x_refsource_misc
http://googleonlinesecurity.blogspot.com/2014/10/this-poodle-bites-exploiting-ssl-30.html
Third Party Advisory x_refsource_confirm
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05301946
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=142805027510172&w=2
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/61827
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=141450452204552&w=2
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-0079.html
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21688283
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=142791032306609&w=2
Patch, Vendor Advisory x_refsource_confirm
https://technet.microsoft.com/library/security/3009008.aspx
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-1545.html
Third Party Advisory x_refsource_confirm
https://www-01.ibm.com/support/docview.wss?uid=swg21688165
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=142624619906067&w=2
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031094
Third Party Advisory x_refsource_confirm
http://www.vmware.com/security/advisories/VMSA-2015-0003.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/61316
Third Party Advisory vendor-advisory
x_refsource_gentoo
https://security.gentoo.org/glsa/201606-11
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-1881.html
Third Party Advisory x_refsource_misc
https://www.imperialviolet.org/2014/10/14/poodle.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031096
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/61810
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2014/dsa-3053
Third Party Advisory x_refsource_confirm
https://support.lenovo.com/us/en/product_security/poodle
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031107
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031095
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=143290583027876&w=2
Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2014-12/msg00002.html
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=142962817202793&w=2
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031091
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031123
Third Party Advisory x_refsource_misc
http://askubuntu.com/questions/537196/how-do-i-patch-workaround-sslv3-poodle-vulnerability-cve-2014-3566
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031092
Third Party Advisory x_refsource_confirm
http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html
Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00033.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/61926
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-1876.html
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=142103967620673&w=2
Third Party Advisory x_refsource_confirm
http://people.canonical.com/~ubuntu-security/cve/2014/CVE-2014-3566.html
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=141450973807288&w=2
Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html
Third Party Advisory x_refsource_confirm
http://docs.ipswitch.com/MOVEit/DMZ82/ReleaseNotes/MOVEitReleaseNotes82.pdf
Third Party Advisory x_refsource_confirm
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=145983526810210&w=2
Mailing List, Third Party Advisory vendor-advisory
x_refsource_apple
http://lists.apple.com/archives/security-announce/2015/Sep/msg00002.html
Issue Tracking x_refsource_confirm
https://bugzilla.mozilla.org/show_bug.cgi?id=1076983
Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2014-11/msg00001.html
Third Party Advisory x_refsource_confirm
https://devcentral.f5.com/articles/cve-2014-3566-removing-sslv3-from-big-ip
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-0264.html
Third Party Advisory x_refsource_confirm
https://kc.mcafee.com/corporate/index?page=content&id=SB10091
Vendor Advisory x_refsource_confirm
https://support.apple.com/kb/HT6527
Third Party Advisory x_refsource_confirm
http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=141697676231104&w=2
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/60206
Issue Tracking x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=1152789
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/60792
Third Party Advisory x_refsource_confirm
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
Third Party Advisory vendor-advisory
x_refsource_apple
http://archives.neohapsis.com/archives/bugtraq/2014-10/0101.html
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2016/dsa-3489
Third Party Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20141015-0001/
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031105
Third Party Advisory x_refsource_confirm
https://www.cloudera.com/documentation/other/security-bulletins/topics/csb_topic_1.html
Third Party Advisory vendor-advisory
x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2014-October/141114.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031131
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=141879378918327&w=2
Vendor Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2487-1
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=142740155824959&w=2
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=141813976718456&w=2
Third Party Advisory x_refsource_misc
https://www.dfranke.us/posts/2014-10-14-how-poodle-happened.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031130
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=141577350823734&w=2
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-1948.html
Third Party Advisory vendor-advisory
x_refsource_netbsd
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-015.txt.asc
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=141620103726640&w=2
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-1653.html
Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00036.html
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=144101915224472&w=2
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=isg3T1021431
Third Party Advisory x_refsource_confirm
http://support.apple.com/HT204244
Third Party Advisory x_refsource_confirm
http://blogs.technet.com/b/msrc/archive/2014/10/14/security-advisory-3009008-released.aspx
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-0085.html
Third Party Advisory x_refsource_confirm
http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html
Vendor Advisory x_refsource_confirm
https://support.apple.com/kb/HT6536
Third Party Advisory vendor-advisory
x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2014-November/142330.html
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=141576815022399&w=2
Mailing List x_refsource_confirm
https://groups.google.com/forum/#%21topic/docker-user/oYm0i3xShJU
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=141477196830952&w=2
Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2014-11/msg00021.html
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=143290371927178&w=2
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-1652.html
Vendor Advisory x_refsource_confirm
https://support.apple.com/kb/HT6535
Third Party Advisory, US Government Resource x_refsource_misc
https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02
Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00027.html
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=142546741516006&w=2
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-0086.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031124
Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00027.html
Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00024.html
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-0080.html
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-1882.html
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-0068.html
Vendor Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2486-1
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=144294141001552&w=2
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59627
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=141814011518700&w=2
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=142495837901899&w=2
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=141694355519663&w=2
Patch, Third Party Advisory x_refsource_confirm
http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=143290437727362&w=2
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=142350298616097&w=2
Third Party Advisory x_refsource_confirm
https://support.lenovo.com/product_security/poodle
Third Party Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141015-poodle
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=141775427104070&w=2
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-0698.html
Third Party Advisory x_refsource_confirm
http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html
Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2014-11/msg00003.html
Third Party Advisory x_refsource_confirm
http://downloads.asterisk.org/pub/security/AST-2014-011.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/60859
Third Party Advisory, VDB Entry vendor-advisory
x_refsource_apple
http://www.securityfocus.com/archive/1/533746
Third Party Advisory vendor-advisory
x_refsource_gentoo
https://security.gentoo.org/glsa/201507-14
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=142624719706349&w=2
Third Party Advisory x_refsource_confirm
http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-405500.htm
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/61345
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=143101048219218&w=2
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/61019
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/70574
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031120
Third Party Advisory x_refsource_confirm
https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_openssl6
Third Party Advisory x_refsource_confirm
http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/61825
Third Party Advisory x_refsource_confirm
http://advisories.mageia.org/MGASA-2014-0416.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031029
Third Party Advisory vendor-advisory
x_refsource_hp
http://h20564.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c04583581
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=142624590206005&w=2
Third Party Advisory x_refsource_confirm
https://blog.mozilla.org/security/2014/10/14/the-poodle-attack-and-the-end-of-ssl-3-0/
Third Party Advisory x_refsource_confirm
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05068681
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=143290522027658&w=2
Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00000.html
Third Party Advisory x_refsource_confirm
https://kc.mcafee.com/corporate/index?page=content&id=SB10104
Third Party Advisory x_refsource_confirm
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/61782
Third Party Advisory x_refsource_confirm
https://access.redhat.com/articles/1232123
Third Party Advisory vendor-advisory
x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2015:062
Third Party Advisory vendor-advisory
x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169361.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031085
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=144251162130364&w=2
Patch, Third Party Advisory x_refsource_confirm
http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=143039249603103&w=2
Third Party Advisory, VDB Entry vendor-advisory
x_refsource_apple
http://www.securityfocus.com/archive/1/533747
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=142624679706236&w=2
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21687611
Third Party Advisory x_refsource_misc
https://github.com/mpgn/poodle-PoC
Third Party Advisory vendor-advisory
x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2014:203
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=142118135300698&w=2
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=142607790919348&w=2
Third Party Advisory x_refsource_misc
http://blog.cryptographyengineering.com/2014/10/attack-of-week-poodle.html
Third Party Advisory x_refsource_confirm
https://support.citrix.com/article/CTX216642
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=142354438527235&w=2
Third Party Advisory x_refsource_confirm
https://puppet.com/security/cve/poodle-sslv3-vulnerability
Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00001.html
Mailing List, Third Party Advisory vendor-advisory
x_refsource_apple
http://lists.apple.com/archives/security-announce/2015/Jan/msg00003.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/61303
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=142350743917559&w=2
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=142496355704097&w=2
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21692299
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031039
Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00066.html
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21687172
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=142721830231196&w=2
Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00026.html
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=142624619906067
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031089
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=142350196615714&w=2
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=141628688425177&w=2
Third Party Advisory, US Government Resource third-party-advisory
x_refsource_cert
http://www.us-cert.gov/ncas/alerts/TA14-290A
Third Party Advisory vendor-advisory
x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2014-October/141158.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/61819
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=142357976805598&w=2
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031088
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2015/dsa-3147
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/61995
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=141703183219781&w=2
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21686997
Third Party Advisory x_refsource_confirm
https://kc.mcafee.com/corporate/index?page=content&id=SB10090
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031086
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=143558192010071&w=2
Third Party Advisory x_refsource_confirm
http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-1692.html
Third Party Advisory vendor-advisory
x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169374.html
Vendor Advisory x_refsource_misc
https://www.openssl.org/~bodo/ssl-poodle.pdf
Third Party Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=isg3T1021439
Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=143558137709884&w=2
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/rc774278135816e7afc943dc9fc78eb0764f2c84a2b96470a0187315c%40%3Ccommits.cxf.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf%40%3Ccommits.cxf.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4%40%3Ccommits.cxf.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6%40%3Ccommits.cxf.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4%40%3Ccommits.cxf.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e%40%3Ccommits.cxf.apache.org%3E
Various Sources x_refsource_misc
https://www.arista.com/en/support/advisories-notices/security-advisories/1015-security-advisory-7
Scores
CVSS v3
3.4
EPSS
1.0000
EPSS Percentile
100.0%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-310
CWE-329
Status
published
Products (49)
apple/mac_os_x
< 10.10.1
debian/debian_linux
7.0
debian/debian_linux
8.0
fedoraproject/fedora
19
fedoraproject/fedora
20
fedoraproject/fedora
21
ibm/aix
5.3
ibm/aix
6.1
ibm/aix
7.1
ibm/vios
2.2.0.10
... and 39 more
Published
Oct 15, 2014
Tracked Since
Feb 18, 2026