|
gptkbp:instance_of
|
gptkb:vulnerability
|
|
gptkbp:affected_devices
|
gptkb:servers
|
|
gptkbp:affected_organizations
|
various companies
|
|
gptkbp:affected_protocols
|
gptkb:HTTPS
|
|
gptkbp:affects
|
gptkb:Open_SSL
|
|
gptkbp:allows
|
memory leak
|
|
gptkbp:community_feedback
|
patching efforts
|
|
gptkbp:consequences
|
loss of sensitive data
|
|
gptkbp:cvssscore
|
5.0
|
|
gptkbp:difficulty_levels
|
critical
|
|
gptkbp:disclosure_impact
|
trust issues
|
|
gptkbp:disclosure_type
|
gptkb:Public
|
|
gptkbp:discovered_by
|
gptkb:Neel_Mehta
|
|
gptkbp:discovery_year
|
April 2012
|
|
gptkbp:enforces
|
recommended
|
|
gptkbp:environmental_initiatives
|
update Open SSL
|
|
gptkbp:exploit_method
|
sending crafted heartbeat requests
|
|
gptkbp:fixed_in_version
|
gptkb:Open_SSL_1.0.1g
|
|
https://www.w3.org/2000/01/rdf-schema#label
|
Heartbleed vulnerability
|
|
gptkbp:impact
|
data theft
|
|
gptkbp:is_monitored_by
|
conducted
|
|
gptkbp:is_vulnerable_to
|
attackers
buffer over-read
heartbeat extension
|
|
gptkbp:latest_version
|
Open SSL 1.0.1 to 1.0.1f
|
|
gptkbp:media_coverage
|
extensive
|
|
gptkbp:notable_influence
|
exposed private keys
|
|
gptkbp:patch_available
|
April 2014
|
|
gptkbp:provides_support_for
|
web servers
|
|
gptkbp:public_reaction
|
concerned
|
|
gptkbp:publicly_announced_on
|
April 7, 2014
|
|
gptkbp:regulatory_compliance
|
gptkb:CVE-2014-0160
required
increased
|
|
gptkbp:related_to
|
gptkb:TLS/_SSL_protocols
|
|
gptkbp:responds_to
|
security patches
|
|
gptkbp:response_time
|
immediate
|
|
gptkbp:security
|
gptkb:ISO_9001
ongoing
improved
regular updates
widespread
reported
revised
NIST guidelines
|
|
gptkbp:security_awareness_training
|
important
|
|
gptkbp:security_community_response
|
urgent
|
|
gptkbp:security_incident_response
|
critical
|
|
gptkbp:security_posture
|
enhanced
|
|
gptkbp:security_tools
|
vulnerability scanners
|
|
gptkbp:updates
|
necessary
|
|
gptkbp:user
|
millions
|
|
gptkbp:vulnerability_assessment
|
critical
|
|
gptkbp:vulnerability_category
|
cryptographic vulnerability
|
|
gptkbp:vulnerability_disclosure
|
responsible
|
|
gptkbp:vulnerability_duration
|
2 years
|
|
gptkbp:vulnerability_management
|
essential
|
|
gptkbp:vulnerability_reports
|
published
|