Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2015-4078
HistoryMar 23, 2017 - 8:00 p.m.

CVE-2015-4078

2017-03-2320:00:00
mitre
www.cve.org
3

AI Score

4.7

Confidence

Low

EPSS

0.975

Percentile

100.0%

JSON

Cloudera Navigator 2.2.x before 2.2.4 and 2.3.x before 2.3.3 include support for SSLv3 when configured to use SSL/TLS, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, a variant of CVE-2014-3566 (aka POODLE).

Related

cve 2
prion 1
nvd 1
nessus 41
openvas 19
ibm 94
fedora 18
centos 1
redhat 2
cisco 1
osv 3
suse 1
citrix 1
hackerone 1
cvelist 1
veracode 1
amazon 2
seebug 1
cert 1
f5 1
checkpoint_advisories 1
debian 2
virtuozzo 1
mageia 1
arista 1
cve
cve
CVE-2015-4078
2017-03-23 20:59:00
CVE-2014-3566
2014-10-15 00:55:02
prion
prion
Code injection
2017-03-23 20:59:00
nvd
nvd
CVE-2015-4078
2017-03-23 20:59:00
nessus
nessus
AIX 6.1 TL 8 : nettcp (IV73416) (POODLE)
2015-06-19 00:00:00
Fedora 20 : openssl-1.0.1e-40.fc20 (2014-13069) (POODLE)
2014-10-20 00:00:00
FreeBSD : davmail -- fix potential CVE-2014-3566 vulnerability (POODLE) (384fc0b2-0144-11e5-8fda-002590263bf5) (POODLE)
2015-05-26 00:00:00
openvas
openvas
Amazon Linux: Security Advisory (ALAS-2014-429)
2015-09-08 00:00:00
Debian: Security Advisory (DSA-3489-1)
2016-03-08 00:00:00
SUSE: Security Advisory (SUSE-SU-2015:0010-1)
2021-06-09 00:00:00
ibm
ibm
Security Bulletin: Vulnerability in SSLv3 affects IBM Platform Symphony (CVE-2014-3566)
2018-06-18 01:26:39
Security Bulletin: Vulnerability in SSLv3 affects IBM Tivoli Composite Application Manager for Transactions (CVE-2014-3566)
2018-06-17 14:51:40
Security Bulletin: Vulnerability in SSLv3 affects Warehouse Administration Console and Cubing Services components of IBM InfoSphere Warehouse and IBM DB2 for Linux, Unix and Windows (CVE-2014-3566)
2018-06-16 13:07:48
fedora
fedora
[SECURITY] Fedora 20 Update: claws-mail-3.11.1-2.fc20
2014-11-10 06:30:29
[SECURITY] Fedora 19 Update: claws-mail-plugins-3.11.1-1.fc19
2015-01-05 07:36:19
[SECURITY] Fedora 21 Update: subscription-manager-1.13.6-1.fc21
2014-11-10 06:34:40
centos
centos
openssl security update
2014-10-16 15:21:39
redhat
redhat
(RHSA-2014:1653) Moderate: openssl security update
2014-10-16 00:00:00
(RHSA-2015:1546) Important: node.js security update
2015-08-04 00:00:00
cisco
cisco
SSL Padding Oracle On Downgraded Legacy Encryption (POODLE) Vulnerability
2014-10-15 18:30:00
osv
osv
fossil-1.35-1.3 on GA media
2024-06-15 00:00:00
slrn-1.0.3-3.13 on GA media
2024-06-15 00:00:00
lighttpd - security update
2015-07-25 00:00:00
suse
suse
Security update for suseRegister (important)
2015-01-05 21:04:43
citrix
citrix
CVE-2014-3566 - Citrix Security Advisory for SSLv3 Protocol Flaw
2014-10-14 04:00:00
hackerone
hackerone
New Relic: SSL Padding Oracle On Downgraded Legacy Encryption (POODLE) Vulnerability
2017-03-26 19:08:23
cvelist
cvelist
CVE-2014-3566
2014-10-15 00:00:00
veracode
veracode
Information Disclosure
2017-02-07 00:05:45
amazon
amazon
Important: openssl
2014-10-14 22:32:00
Important: nss
2014-10-16 22:14:00
seebug
seebug
SSL 3.0 POODLE(CVE-2014-3566)
2017-02-17 00:00:00
cert
cert
POODLE vulnerability in SSL 3.0
2014-10-17 00:00:00
f5
f5
K15702 : SSLv3 vulnerability CVE-2014-3566
2015-09-18 00:00:00
checkpoint_advisories
checkpoint_advisories
Secure Socket Layer (SSL) Version 3.0 (CVE-2014-3566)
2014-10-15 00:00:00
debian
debian
[SECURITY] [DLA 282-1] lighttpd security update
2015-07-25 14:29:15
[SECURITY] [DSA 3489-1] lighttpd security update
2016-02-23 18:26:27
virtuozzo
virtuozzo
Important product update: Virtuozzo PowerPanel RTM Hotfix 3 (7.0.1-415)
2017-09-20 00:00:00
mageia
mageia
Updated ruby-httpclient package enables SSL negotiation
2014-11-26 20:29:06
arista
arista
Security Advisory 0007
2014-10-20 00:00:00

AI Score

4.7

Confidence

Low

EPSS

0.975

Percentile

100.0%

JSON
Related for CVELIST:CVE-2015-4078
cve2prion1nvd1nessus41openvas19ibm94fedora18centos1redhat2cisco1osv3suse1citrix1hackerone1cvelist1veracode1amazon2seebug1cert1f51checkpoint_advisories1debian2virtuozzo1mageia1arista1