CVE-2014-8627

Опубликовано: 24 нояб. 2014

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

PolarSSL 1.3.8 does not properly negotiate the signature algorithm to use, which allows remote attackers to conduct downgrade attacks via unspecified vectors.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:polarssl:polarssl:1.3.8:*:*:*:*:*:*:*

EPSS

Процентиль: 50%

0.00274

Низкий

5 Medium

CVSS2

Дефекты

CWE-310

Связанные уязвимости

CVE-2014-8627

ubuntu

около 11 лет назад

PolarSSL 1.3.8 does not properly negotiate the signature algorithm to use, which allows remote attackers to conduct downgrade attacks via unspecified vectors.

CVE-2014-8627

debian

около 11 лет назад

PolarSSL 1.3.8 does not properly negotiate the signature algorithm to ...

GHSA-9jjq-g2xm-68mw

github

больше 3 лет назад

PolarSSL 1.3.8 does not properly negotiate the signature algorithm to use, which allows remote attackers to conduct downgrade attacks via unspecified vectors.

EPSS

Процентиль: 50%

0.00274

Низкий

5 Medium

CVSS2

Дефекты

CWE-310