CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-8132

Double free vulnerability in the ssh_packet_kexinit function in kex.c in libssh 0.5.x and 0.6.x before 0.6.4 allows remote attackers to cause a denial of service via a crafted kexinit packet.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.033

EPSS Ranking 86.8%

CVSS Severity

CVSS v2 Score 5.0

References

Products affected by CVE-2014-8132

Libssh » Libssh » Version: 0.5.0

cpe:2.3:a:libssh:libssh:0.5.0
Libssh » Libssh » Version: 0.5.2

cpe:2.3:a:libssh:libssh:0.5.2
Libssh » Libssh » Version: 0.5.3

cpe:2.3:a:libssh:libssh:0.5.3
Libssh » Libssh » Version: 0.5.4

cpe:2.3:a:libssh:libssh:0.5.4
Libssh » Libssh » Version: 0.5.5

cpe:2.3:a:libssh:libssh:0.5.5
Libssh » Libssh » Version: 0.6.0

cpe:2.3:a:libssh:libssh:0.6.0
Libssh » Libssh » Version: 0.6.1

cpe:2.3:a:libssh:libssh:0.6.1
Libssh » Libssh » Version: 0.6.2

cpe:2.3:a:libssh:libssh:0.6.2
Libssh » Libssh » Version: 0.6.3

cpe:2.3:a:libssh:libssh:0.6.3
Canonical » Ubuntu Linux » Version: 12.04

cpe:2.3:o:canonical:ubuntu_linux:12.04
Canonical » Ubuntu Linux » Version: 14.04

cpe:2.3:o:canonical:ubuntu_linux:14.04
Canonical » Ubuntu Linux » Version: 14.10

cpe:2.3:o:canonical:ubuntu_linux:14.10
Debian » Debian Linux » Version: 7.0

cpe:2.3:o:debian:debian_linux:7.0
Debian » Debian Linux » Version: 8.0

cpe:2.3:o:debian:debian_linux:8.0
Fedoraproject » Fedora » Version: 19

cpe:2.3:o:fedoraproject:fedora:19
Fedoraproject » Fedora » Version: 20

cpe:2.3:o:fedoraproject:fedora:20
Fedoraproject » Fedora » Version: 21

cpe:2.3:o:fedoraproject:fedora:21
Opensuse » Opensuse » Version: 12.3

cpe:2.3:o:opensuse:opensuse:12.3
Opensuse » Opensuse » Version: 13.1

cpe:2.3:o:opensuse:opensuse:13.1
Opensuse » Opensuse » Version: 13.2

cpe:2.3:o:opensuse:opensuse:13.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-8132

Products

Pricing

Contact Us