CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-4911

The ssl_decrypt_buf function in library/ssl_tls.c in PolarSSL before 1.2.11 and 1.3.x before 1.3.8 allows remote attackers to cause a denial of service (crash) via vectors related to the GCM ciphersuites, as demonstrated using the Codenomicon Defensics toolkit.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 66.2%

CVSS Severity

CVSS v2 Score 5.0

References

Products affected by CVE-2014-4911

Polarssl » Polarssl » Version: 0.10.0

cpe:2.3:a:polarssl:polarssl:0.10.0
Polarssl » Polarssl » Version: 0.10.1

cpe:2.3:a:polarssl:polarssl:0.10.1
Polarssl » Polarssl » Version: 0.11.0

cpe:2.3:a:polarssl:polarssl:0.11.0
Polarssl » Polarssl » Version: 0.11.1

cpe:2.3:a:polarssl:polarssl:0.11.1
Polarssl » Polarssl » Version: 0.12.0

cpe:2.3:a:polarssl:polarssl:0.12.0
Polarssl » Polarssl » Version: 0.12.1

cpe:2.3:a:polarssl:polarssl:0.12.1
Polarssl » Polarssl » Version: 0.13.1

cpe:2.3:a:polarssl:polarssl:0.13.1
Polarssl » Polarssl » Version: 0.14.0

cpe:2.3:a:polarssl:polarssl:0.14.0
Polarssl » Polarssl » Version: 0.14.2

cpe:2.3:a:polarssl:polarssl:0.14.2
Polarssl » Polarssl » Version: 0.14.3

cpe:2.3:a:polarssl:polarssl:0.14.3
Polarssl » Polarssl » Version: 0.99

cpe:2.3:a:polarssl:polarssl:0.99
Polarssl » Polarssl » Version: 1.0.0

cpe:2.3:a:polarssl:polarssl:1.0.0
Polarssl » Polarssl » Version: 1.1.0

cpe:2.3:a:polarssl:polarssl:1.1.0
Polarssl » Polarssl » Version: 1.1.1

cpe:2.3:a:polarssl:polarssl:1.1.1
Polarssl » Polarssl » Version: 1.1.2

cpe:2.3:a:polarssl:polarssl:1.1.2
Polarssl » Polarssl » Version: 1.1.3

cpe:2.3:a:polarssl:polarssl:1.1.3
Polarssl » Polarssl » Version: 1.1.4

cpe:2.3:a:polarssl:polarssl:1.1.4
Polarssl » Polarssl » Version: 1.1.5

cpe:2.3:a:polarssl:polarssl:1.1.5
Polarssl » Polarssl » Version: 1.1.6

cpe:2.3:a:polarssl:polarssl:1.1.6
Polarssl » Polarssl » Version: 1.1.7

cpe:2.3:a:polarssl:polarssl:1.1.7
Polarssl » Polarssl » Version: 1.1.8

cpe:2.3:a:polarssl:polarssl:1.1.8
Polarssl » Polarssl » Version: 1.2.0

cpe:2.3:a:polarssl:polarssl:1.2.0
Polarssl » Polarssl » Version: 1.2.1

cpe:2.3:a:polarssl:polarssl:1.2.1
Polarssl » Polarssl » Version: 1.2.10

cpe:2.3:a:polarssl:polarssl:1.2.10
Polarssl » Polarssl » Version: 1.2.2

cpe:2.3:a:polarssl:polarssl:1.2.2
Polarssl » Polarssl » Version: 1.2.3

cpe:2.3:a:polarssl:polarssl:1.2.3
Polarssl » Polarssl » Version: 1.2.4

cpe:2.3:a:polarssl:polarssl:1.2.4
Polarssl » Polarssl » Version: 1.2.5

cpe:2.3:a:polarssl:polarssl:1.2.5
Polarssl » Polarssl » Version: 1.2.6

cpe:2.3:a:polarssl:polarssl:1.2.6
Polarssl » Polarssl » Version: 1.2.7

cpe:2.3:a:polarssl:polarssl:1.2.7
Polarssl » Polarssl » Version: 1.2.8

cpe:2.3:a:polarssl:polarssl:1.2.8
Polarssl » Polarssl » Version: 1.2.9

cpe:2.3:a:polarssl:polarssl:1.2.9
Polarssl » Polarssl » Version: 1.3.0

cpe:2.3:a:polarssl:polarssl:1.3.0
Polarssl » Polarssl » Version: 1.3.1

cpe:2.3:a:polarssl:polarssl:1.3.1
Polarssl » Polarssl » Version: 1.3.2

cpe:2.3:a:polarssl:polarssl:1.3.2
Polarssl » Polarssl » Version: 1.3.3

cpe:2.3:a:polarssl:polarssl:1.3.3
Polarssl » Polarssl » Version: 1.3.4

cpe:2.3:a:polarssl:polarssl:1.3.4
Polarssl » Polarssl » Version: 1.3.5

cpe:2.3:a:polarssl:polarssl:1.3.5
Polarssl » Polarssl » Version: 1.3.6

cpe:2.3:a:polarssl:polarssl:1.3.6
Polarssl » Polarssl » Version: 1.3.7

cpe:2.3:a:polarssl:polarssl:1.3.7
Debian » Debian Linux » Version: 6.0

cpe:2.3:o:debian:debian_linux:6.0
Debian » Debian Linux » Version: 7.0

cpe:2.3:o:debian:debian_linux:7.0
Debian » Debian Linux » Version: 8.0

cpe:2.3:o:debian:debian_linux:8.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-4911

Products

Pricing

Contact Us