Statements (25)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:security
|
| gptkbp:access |
no
|
| gptkbp:affects |
gptkb:OpenSSL
|
| gptkbp:alsoKnownAs |
gptkb:Heartbleed
|
| gptkbp:assignee |
gptkb:MITRE
|
| gptkbp:availabilityImpact |
none
|
| gptkbp:complexity |
low
|
| gptkbp:confidentialityImpact |
high
|
| gptkbp:describes |
A vulnerability in OpenSSL's implementation of the TLS/DTLS heartbeat extension, allowing attackers to read memory of affected systems.
|
| gptkbp:discoveredIn |
2014
|
| gptkbp:exploits |
true
|
| gptkbp:firstPublished |
2014-04-07
|
| gptkbp:fixes |
gptkb:OpenSSL_1.0.1g
|
| gptkbp:hasCVSSScore |
5.0
7.5 |
| gptkbp:hasCWE |
gptkb:CWE-119
|
| gptkbp:impact |
information disclosure
|
| gptkbp:integrityImpact |
none
|
| gptkbp:patchedBy |
yes
|
| gptkbp:vectorFor |
remote
|
| gptkbp:vulnerableTo |
TLS heartbeat extension
|
| gptkbp:vulnerableVersions |
gptkb:OpenSSL_1.0.1_to_1.0.1f
|
| gptkbp:bfsParent |
gptkb:Heartbleed
|
| gptkbp:bfsLayer |
6
|
| https://www.w3.org/2000/01/rdf-schema#label |
CVE-2014-0160
|