CVE-2014-3495

Опубликовано: 13 дек. 2019

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

duplicity 0.6.24 has improper verification of SSL certificates

Ссылки

https://access.redhat.com/security/cve/cve-2014-3495
Broken Link
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-3495
Exploit
Issue Tracking
https://bugzilla.suse.com/show_bug.cgi?id=CVE-2014-3495
Issue Tracking
Third Party Advisory
https://security-tracker.debian.org/tracker/CVE-2014-3495
Third Party Advisory
https://access.redhat.com/security/cve/cve-2014-3495
Broken Link
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-3495
Exploit
Issue Tracking
https://bugzilla.suse.com/show_bug.cgi?id=CVE-2014-3495
Issue Tracking
Third Party Advisory
https://security-tracker.debian.org/tracker/CVE-2014-3495
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:debian:duplicity:0.6.24:*:*:*:*:*:*:*

Конфигурация 2

Одно из

cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

Конфигурация 3

Одно из

cpe:2.3:o:opensuse:opensuse:12.3:*:*:*:*:*:*:*

cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*

EPSS

Процентиль: 51%

0.00284

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-295

Связанные уязвимости

CVE-2014-3495

CVSS3: 7.5

ubuntu

около 6 лет назад

duplicity 0.6.24 has improper verification of SSL certificates

CVE-2014-3495

CVSS3: 7.5

debian

около 6 лет назад

duplicity 0.6.24 has improper verification of SSL certificates

GHSA-2xxp-9232-mwj8

CVSS3: 7.5

github

больше 3 лет назад

duplicity 0.6.24 has improper verification of SSL certificates

EPSS

Процентиль: 51%

0.00284

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-295