Lucene search
RedhatCVE-2014-0088HistoryApr 29, 2014 - 2:38 p.m.
CVE-2014-0088
2014-04-2914:38:49
CWE-119
redhat
web.nvd.nist.gov
68
cve-2014-0088
nginx
spdy
remote code execution
security vulnerability
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.5
Confidence
Low
EPSS
0.015
Percentile
86.9%
The SPDY implementation in the ngx_http_spdy_module module in nginx 1.5.10 before 1.5.11, when running on a 32-bit platform, allows remote attackers to execute arbitrary code via a crafted request.
Affected configurations
Node
f5nginxMatch1.5.10
Related
prion
prion
Cross site request forgery (csrf)
2014-04-29 14:38:00
nvd
nvd
CVE-2014-0088
2014-04-29 14:38:49
hackerone
hackerone
Internet Bug Bounty: SPDY memory corruption
2014-03-24 21:54:07
ubuntucve
ubuntucve
CVE-2014-0088
2014-04-29 00:00:00
nessus
nessus
nginx 1.5.10 SPDY Memory Corruption
2014-05-06 00:00:00
debiancve
debiancve
CVE-2014-0088
2014-04-29 14:38:49
cvelist
cvelist
CVE-2014-0088
2014-04-29 14:00:00
nginx
nginx
SPDY memory corruption
2014-04-29 14:38:49
freebsd
freebsd
nginx -- SPDY memory corruption
2014-03-04 00:00:00
openvas
openvas
nginx 1.5.10 'ngx_http_spdy_module' RCE Vulnerability
2020-11-05 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.5
Confidence
Low
EPSS
0.015
Percentile
86.9%
Related for CVE-2014-0088