Executive Summary

Informations
Name CVE-2014-7189 First vendor Publication 2014-10-07
Vendor Cve Last vendor Modification 2018-08-13

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:N/I:P/A:N)
Cvss Base Score 4.3 Attack Range Network
Cvss Impact Score 2.9 Attack Complexity Medium
Cvss Expoit Score 8.6 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

crpyto/tls in Go 1.1 before 1.3.2, when SessionTicketsDisabled is enabled, allows man-in-the-middle attackers to spoof clients via unspecified vectors.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7189

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-264 Permissions, Privileges, and Access Controls

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 8

Nessus® Vulnerability Scanner

Date Description
2014-11-14 Name : The remote openSUSE host is missing a security update.
File : openSUSE-2014-660.nasl - Type : ACT_GATHER_INFO
2014-11-11 Name : The remote Fedora host is missing a security update.
File : fedora_2014-14130.nasl - Type : ACT_GATHER_INFO
2014-11-03 Name : The remote Amazon Linux AMI host is missing a security update.
File : ala_ALAS-2014-437.nasl - Type : ACT_GATHER_INFO
2014-10-12 Name : The remote Fedora host is missing a security update.
File : fedora_2014-11971.nasl - Type : ACT_GATHER_INFO
2014-10-12 Name : The remote Fedora host is missing a security update.
File : fedora_2014-12077.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

Source Url
BID http://www.securityfocus.com/bid/70156
CONFIRM https://groups.google.com/forum/#!msg/golang-nuts/eeOHNw_shwU/OHALUmroA5kJ
MLIST http://www.openwall.com/lists/oss-security/2014/09/26/28
XF https://exchange.xforce.ibmcloud.com/vulnerabilities/96693

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
Date Informations
2020-05-23 00:42:15
  • Multiple Updates
2018-08-14 00:19:31
  • Multiple Updates
2017-09-08 09:23:09
  • Multiple Updates
2014-11-15 13:25:58
  • Multiple Updates
2014-11-12 13:27:24
  • Multiple Updates
2014-11-04 13:27:34
  • Multiple Updates
2014-10-13 13:24:45
  • Multiple Updates
2014-10-10 13:28:04
  • Multiple Updates
2014-10-08 21:23:55
  • Multiple Updates
2014-10-07 21:29:00
  • First insertion