CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-4487

Off-by-one error in the dane_raw_tlsa in the DANE library (libdane) in GnuTLS 3.1.x before 3.1.16 and 3.2.x before 3.2.6 allows remote servers to cause a denial of service (memory corruption) via a response with more than four DANE entries. NOTE: this issue is due to an incomplete fix for CVE-2013-4466.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 55.8%

CVSS Severity

CVSS v2 Score 5.0

References

Products affected by CVE-2013-4487

Gnu » Gnutls » Version: 3.1.0

cpe:2.3:a:gnu:gnutls:3.1.0
Gnu » Gnutls » Version: 3.1.1

cpe:2.3:a:gnu:gnutls:3.1.1
Gnu » Gnutls » Version: 3.1.10

cpe:2.3:a:gnu:gnutls:3.1.10
Gnu » Gnutls » Version: 3.1.11

cpe:2.3:a:gnu:gnutls:3.1.11
Gnu » Gnutls » Version: 3.1.12

cpe:2.3:a:gnu:gnutls:3.1.12
Gnu » Gnutls » Version: 3.1.13

cpe:2.3:a:gnu:gnutls:3.1.13
Gnu » Gnutls » Version: 3.1.14

cpe:2.3:a:gnu:gnutls:3.1.14
Gnu » Gnutls » Version: 3.1.15

cpe:2.3:a:gnu:gnutls:3.1.15
Gnu » Gnutls » Version: 3.1.2

cpe:2.3:a:gnu:gnutls:3.1.2
Gnu » Gnutls » Version: 3.1.3

cpe:2.3:a:gnu:gnutls:3.1.3
Gnu » Gnutls » Version: 3.1.4

cpe:2.3:a:gnu:gnutls:3.1.4
Gnu » Gnutls » Version: 3.1.5

cpe:2.3:a:gnu:gnutls:3.1.5
Gnu » Gnutls » Version: 3.1.6

cpe:2.3:a:gnu:gnutls:3.1.6
Gnu » Gnutls » Version: 3.1.7

cpe:2.3:a:gnu:gnutls:3.1.7
Gnu » Gnutls » Version: 3.1.8

cpe:2.3:a:gnu:gnutls:3.1.8
Gnu » Gnutls » Version: 3.1.9

cpe:2.3:a:gnu:gnutls:3.1.9
Gnu » Gnutls » Version: 3.2.0

cpe:2.3:a:gnu:gnutls:3.2.0
Gnu » Gnutls » Version: 3.2.1

cpe:2.3:a:gnu:gnutls:3.2.1
Gnu » Gnutls » Version: 3.2.2

cpe:2.3:a:gnu:gnutls:3.2.2
Gnu » Gnutls » Version: 3.2.3

cpe:2.3:a:gnu:gnutls:3.2.3
Gnu » Gnutls » Version: 3.2.4

cpe:2.3:a:gnu:gnutls:3.2.4
Gnu » Gnutls » Version: 3.2.5

cpe:2.3:a:gnu:gnutls:3.2.5
Opensuse » Opensuse » Version: 13.1

cpe:2.3:o:opensuse:opensuse:13.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-4487

Products

Pricing

Contact Us