Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2014-0625

EPSS 0.47% · P65
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2014-0625

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The SSLSocket implementation in the (1) JSAFE and (2) JSSE APIs in EMC RSA BSAFE SSL-J 5.x before 5.1.3 and 6.x before 6.0.2 allows remote attackers to cause a denial of service (memory consumption) by triggering application-data processing during the TLS handshake, a time at which the data is internally buffered.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
EMC RSA BSAFE JSAFE和JSSE API 拒绝服务漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
EMC RSA BSAFE是美国易安信(EMC)公司的一款安全软件产品。该产品支持加密算法、证书链验证和传输层安全性(TLS)加密套件等,以帮助用户实现其应用程序的各种安全目标。 EMC RSA BSAFE SSL-J 5.1.3之前的5.x版本和6.0.2之前的6.x版本中的JSAFE和JSSE API中的SSLSocket实现过程中存在安全漏洞。远程攻击者可利用该漏洞造成拒绝服务(内存消耗)。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2014-0625

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2014-0625

登录查看更多情报信息。

Same Patch Batch · n/a · 2014-02-18 · 12 CVEs total

CVE-2013-6396python-swiftclient SSL证书验证安全绕过漏洞
CVE-2014-1943Fine Free file 安全漏洞
CVE-2014-2019Apple iOS iCloud 权限许可和访问控制漏洞
CVE-2013-7226PHP‘gdImageCrop’函数整数溢出漏洞
CVE-2013-7327PHP‘gdImageCrop’函数输入验证漏洞
CVE-2013-7328PHP‘gdImageCrop’函数整数符号错误漏洞
CVE-2014-1861Jetro COCKPIT Secure Browsing 输入验证漏洞
CVE-2014-1903FreePBX admin/libraries/view.functions.php 安全漏洞
CVE-2014-2020PHP‘ext/gd/gd.c’安全漏洞
CVE-2014-0626EMC RSA BSAFE JSAFE和JSSE API 加密问题漏洞
CVE-2014-0627EMC RSA BSAFE SSLEngine API 加密问题漏洞

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2014-0625

No comments yet

Leave a comment