U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Vulnerability Change Records for CVE-2014-8176

Change History

Modified Analysis by NIST 6/15/2015 11:59:43 AM

Action Type Old Value New Value
Added CVSS V2

								
							
							
						
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Added CWE

								
							
							
						
CWE-119
Added CPE Configuration

								
							
							
						
Configuration 1
     OR
          *cpe:2.3:a:openssl:openssl:0.9.8z:*:*:*:*:*:*:* (and previous)
          *cpe:2.3:a:openssl:openssl:1.0.0:*:*:*:*:*:*:*
          *cpe:2.3:a:openssl:openssl:1.0.0:beta1:*:*:*:*:*:*
          *cpe:2.3:a:openssl:openssl:1.0.0:beta2:*:*:*:*:*:*
          *cpe:2.3:a:openssl:openssl:1.0.0:beta3:*:*:*:*:*:*
          *cpe:2.3:a:openssl:openssl:1.0.0:beta4:*:*:*:*:*:*
          *cpe:2.3:a:openssl:openssl:1.0.0:beta5:*:*:*:*:*:*
          *cpe:2.3:a:openssl:openssl:1.0.0a:*:*:*:*:*:*:*
          *cpe:2.3:a:openssl:openssl:1.0.0b:*:*:*:*:*:*:*
          *cpe:2.3:a:openssl:openssl:1.0.0c:*:*:*:*:*:*:*
          *cpe:2.3:a:openssl:openssl:1.0.0d:*:*:*:*:*:*:*
          *cpe:2.3:a:openssl:openssl:1.0.0e:*:*:*:*:*:*:*
          *cpe:2.3:a:openssl:openssl:1.0.0f:*:*:*:*:*:*:*
          *cpe:2.3:a:openssl:openssl:1.0.0g:*:*:*:*:*:*:*
          *cpe:2.3:a:openssl:openssl:1.0.0h:*:*:*:*:*:*:*
          *cpe:2.3:a:openssl:openssl:1.0.0i:*:*:*:*:*:*:*
          *cpe:2.3:a:openssl:openssl:1.0.0j:*:*:*:*:*:*:*
          *cpe:2.3:a:openssl:openssl:1.0.0k:*:*:*:*:*:*:*
          *cpe:2.3:a:openssl:openssl:1.0.0l:*:*:*:*:*:*:*
          *cpe:2.3:a:openssl:openssl:1.0.1:*:*:*:*:*:*:*
          *cpe:2.3:a:openssl:openssl:1.0.1:beta1:*:*:*:*:*:*
          *cpe:2.3:a:openssl:openssl:1.0.1:beta2:*:*:*:*:*:*
          *cpe:2.3:a:openssl:openssl:1.0.1:beta3:*:*:*:*:*:*
          *cpe:2.3:a:openssl:openssl:1.0.1a:*:*:*:*:*:*:*
          *cpe:2.3:a:openssl:openssl:1.0.1b:*:*:*:*:*:*:*
          *cpe:2.3:a:openssl:openssl:1.0.1c:*:*:*:*:*:*:*
          *cpe:2.3:a:openssl:openssl:1.0.1d:*:*:*:*:*:*:*
          *cpe:2.3:a:openssl:openssl:1.0.1e:*:*:*:*:*:*:*
          *cpe:2.3:a:openssl:openssl:1.0.1f:*:*:*:*:*:*:*
          *cpe:2.3:a:openssl:openssl:1.0.1g:*:*:*:*:*:*:*
Changed Reference Type
https://rt.openssl.org/Ticket/Display.html?id=3286&user=guest&pass=guest No Types Assigned
https://rt.openssl.org/Ticket/Display.html?id=3286&user=guest&pass=guest Exploit
Changed Reference Type
https://www.openssl.org/news/secadv_20150611.txt No Types Assigned
https://www.openssl.org/news/secadv_20150611.txt Advisory