CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2014-0088

The SPDY implementation in the ngx_http_spdy_module module in nginx 1.5.10 before 1.5.11, when running on a 32-bit platform, allows remote attackers to execute arbitrary code via a crafted request.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.026

EPSS Ranking 85.1%

CVSS Severity

CVSS v2 Score 7.5

References

http://mailman.nginx.org/pipermail/nginx-announce/2014/000132.html
http://www.securitytracker.com/id/1030150
http://mailman.nginx.org/pipermail/nginx-announce/2014/000132.html
http://www.securitytracker.com/id/1030150

Products affected by CVE-2014-0088

F5 » Nginx » Version: 1.5.10

cpe:2.3:a:f5:nginx:1.5.10

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-0088

Products

Pricing

Contact Us