CVE-2014-3566

UNKNOWN

Published 2014-10-15T00:00:00

Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2014-3566. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed MODERATE

GHSA-r82h-wc4x-gcp9

Advisory Details

CVSS Scoring

CVSS Score

5.0

CVSS Vector


                                    CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2014-3566

WEB https://security.gentoo.org/glsa/201507-14

WEB https://security.gentoo.org/glsa/201606-11

WEB https://security.netapp.com/advisory/ntap-20141015-0001

WEB https://support.apple.com/HT205217

WEB https://support.apple.com/kb/HT6527

WEB https://support.apple.com/kb/HT6529

WEB https://support.apple.com/kb/HT6531

WEB https://support.apple.com/kb/HT6535

WEB https://support.apple.com/kb/HT6536

WEB https://support.apple.com/kb/HT6541

WEB https://support.apple.com/kb/HT6542

WEB https://support.citrix.com/article/CTX216642

WEB https://support.lenovo.com/product_security/poodle

WEB https://support.lenovo.com/us/en/product_security/poodle

WEB https://technet.microsoft.com/library/security/3009008.aspx

WEB https://www-01.ibm.com/support/docview.wss?uid=swg21688165

WEB https://www.arista.com/en/support/advisories-notices/security-advisories/1015-security-advisory-7

WEB https://www.cloudera.com/documentation/other/security-bulletins/topics/csb_topic_1.html

WEB https://www.dfranke.us/posts/2014-10-14-how-poodle-happened.html

WEB https://www.elastic.co/blog/logstash-1-4-3-released

WEB https://www.imperialviolet.org/2014/10/14/poodle.html

WEB https://www.openssl.org/news/secadv_20141015.txt

WEB https://www.openssl.org/~bodo/ssl-poodle.pdf

WEB https://www.suse.com/support/kb/doc.php?id=7015773

WEB https://access.redhat.com/articles/1232123

WEB https://blog.mozilla.org/security/2014/10/14/the-poodle-attack-and-the-end-of-ssl-3-0

WEB https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_openssl6

WEB https://bto.bluecoat.com/security-advisory/sa83

WEB https://bugzilla.mozilla.org/show_bug.cgi?id=1076983

WEB https://bugzilla.redhat.com/show_bug.cgi?id=1152789

WEB https://devcentral.f5.com/articles/cve-2014-3566-removing-sslv3-from-big-ip

WEB https://github.com/mpgn/poodle-PoC

WEB https://groups.google.com/forum/#!topic/docker-user/oYm0i3xShJU

WEB https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04819635

WEB https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05068681

WEB https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05157667

WEB https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05301946

WEB https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02

WEB https://kc.mcafee.com/corporate/index?page=content&id=SB10090

WEB https://kc.mcafee.com/corporate/index?page=content&id=SB10091

WEB https://kc.mcafee.com/corporate/index?page=content&id=SB10104

WEB https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf@%3Ccommits.cxf.apache.org%3E

WEB https://lists.apache.org/thread.html/rc774278135816e7afc943dc9fc78eb0764f2c84a2b96470a0187315c@%3Ccommits.cxf.apache.org%3E

WEB https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6@%3Ccommits.cxf.apache.org%3E

WEB https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4@%3Ccommits.cxf.apache.org%3E

WEB https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e@%3Ccommits.cxf.apache.org%3E

WEB https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4@%3Ccommits.cxf.apache.org%3E

WEB https://puppet.com/security/cve/poodle-sslv3-vulnerability

WEB http://advisories.mageia.org/MGASA-2014-0416.html

WEB http://aix.software.ibm.com/aix/efixes/security/openssl_advisory11.asc

WEB http://archives.neohapsis.com/archives/bugtraq/2014-10/0101.html

WEB http://archives.neohapsis.com/archives/bugtraq/2014-10/0103.html

WEB http://askubuntu.com/questions/537196/how-do-i-patch-workaround-sslv3-poodle-vulnerability-cve-2014-3566

WEB http://blog.cryptographyengineering.com/2014/10/attack-of-week-poodle.html

WEB http://blog.nodejs.org/2014/10/23/node-v0-10-33-stable

WEB http://blogs.technet.com/b/msrc/archive/2014/10/14/security-advisory-3009008-released.aspx

WEB http://docs.ipswitch.com/MOVEit/DMZ82/ReleaseNotes/MOVEitReleaseNotes82.pdf

WEB http://downloads.asterisk.org/pub/security/AST-2014-011.html

WEB http://googleonlinesecurity.blogspot.com/2014/10/this-poodle-bites-exploiting-ssl-30.html

WEB http://h20564.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c04583581

WEB http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04779034

WEB http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705

WEB http://lists.apple.com/archives/security-announce/2015/Jan/msg00003.html

WEB http://lists.apple.com/archives/security-announce/2015/Sep/msg00002.html

WEB http://lists.fedoraproject.org/pipermail/package-announce/2014-November/142330.html

WEB http://lists.fedoraproject.org/pipermail/package-announce/2014-October/141114.html

WEB http://lists.fedoraproject.org/pipermail/package-announce/2014-October/141158.html

WEB http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169361.html

WEB http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169374.html

WEB http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00008.html

WEB http://lists.opensuse.org/opensuse-security-announce/2014-11/msg00001.html

WEB http://lists.opensuse.org/opensuse-security-announce/2014-11/msg00003.html

WEB http://lists.opensuse.org/opensuse-security-announce/2014-11/msg00021.html

WEB http://lists.opensuse.org/opensuse-security-announce/2014-12/msg00002.html

WEB http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00001.html

WEB http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00024.html

WEB http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00026.html

WEB http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00027.html

WEB http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00033.html

WEB http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00036.html

WEB http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00018.html

WEB http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00027.html

WEB http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html

WEB http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00066.html

WEB http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00000.html

WEB http://marc.info/?l=bugtraq&m=141450452204552&w=2

WEB http://marc.info/?l=bugtraq&m=141450973807288&w=2

WEB http://marc.info/?l=bugtraq&m=141477196830952&w=2

WEB http://marc.info/?l=bugtraq&m=141576815022399&w=2

WEB http://marc.info/?l=bugtraq&m=141577087123040&w=2

WEB http://marc.info/?l=bugtraq&m=141577350823734&w=2

WEB http://marc.info/?l=bugtraq&m=141620103726640&w=2

WEB http://marc.info/?l=bugtraq&m=141628688425177&w=2

WEB http://marc.info/?l=bugtraq&m=141694355519663&w=2

WEB http://marc.info/?l=bugtraq&m=141697638231025&w=2

WEB http://marc.info/?l=bugtraq&m=141697676231104&w=2

WEB http://marc.info/?l=bugtraq&m=141703183219781&w=2

WEB http://marc.info/?l=bugtraq&m=141715130023061&w=2

WEB http://marc.info/?l=bugtraq&m=141775427104070&w=2

WEB http://marc.info/?l=bugtraq&m=141813976718456&w=2

WEB http://marc.info/?l=bugtraq&m=141814011518700&w=2

WEB http://marc.info/?l=bugtraq&m=141879378918327&w=2

WEB http://marc.info/?l=bugtraq&m=142103967620673&w=2

WEB http://marc.info/?l=bugtraq&m=142118135300698&w=2

WEB http://marc.info/?l=bugtraq&m=142296755107581&w=2

WEB http://marc.info/?l=bugtraq&m=142350196615714&w=2

WEB http://marc.info/?l=bugtraq&m=142350298616097&w=2

WEB http://marc.info/?l=bugtraq&m=142350743917559&w=2

WEB http://marc.info/?l=bugtraq&m=142354438527235&w=2

WEB http://marc.info/?l=bugtraq&m=142357976805598&w=2

WEB http://marc.info/?l=bugtraq&m=142495837901899&w=2

WEB http://marc.info/?l=bugtraq&m=142496355704097&w=2

WEB http://marc.info/?l=bugtraq&m=142546741516006&w=2

WEB http://marc.info/?l=bugtraq&m=142607790919348&w=2

WEB http://marc.info/?l=bugtraq&m=142624590206005&w=2

WEB http://marc.info/?l=bugtraq&m=142624619906067

WEB http://marc.info/?l=bugtraq&m=142624619906067&w=2

WEB http://marc.info/?l=bugtraq&m=142624679706236&w=2

WEB http://marc.info/?l=bugtraq&m=142624719706349&w=2

WEB http://marc.info/?l=bugtraq&m=142660345230545&w=2

WEB http://marc.info/?l=bugtraq&m=142721830231196&w=2

WEB http://marc.info/?l=bugtraq&m=142721887231400&w=2

WEB http://marc.info/?l=bugtraq&m=142740155824959&w=2

WEB http://marc.info/?l=bugtraq&m=142791032306609&w=2

WEB http://marc.info/?l=bugtraq&m=142804214608580&w=2

WEB http://marc.info/?l=bugtraq&m=142805027510172&w=2

WEB http://marc.info/?l=bugtraq&m=142962817202793&w=2

WEB http://marc.info/?l=bugtraq&m=143039249603103&w=2

WEB http://marc.info/?l=bugtraq&m=143101048219218&w=2

WEB http://marc.info/?l=bugtraq&m=143290371927178&w=2

WEB http://marc.info/?l=bugtraq&m=143290437727362&w=2

WEB http://marc.info/?l=bugtraq&m=143290522027658&w=2

WEB http://marc.info/?l=bugtraq&m=143290583027876&w=2

WEB http://marc.info/?l=bugtraq&m=143558137709884&w=2

WEB http://marc.info/?l=bugtraq&m=143558192010071&w=2

WEB http://marc.info/?l=bugtraq&m=143628269912142&w=2

WEB http://marc.info/?l=bugtraq&m=144101915224472&w=2

WEB http://marc.info/?l=bugtraq&m=144251162130364&w=2

WEB http://marc.info/?l=bugtraq&m=144294141001552&w=2

WEB http://marc.info/?l=bugtraq&m=145983526810210&w=2

WEB http://marc.info/?l=openssl-dev&m=141333049205629&w=2

WEB http://people.canonical.com/~ubuntu-security/cve/2014/CVE-2014-3566.html

WEB http://rhn.redhat.com/errata/RHSA-2014-1652.html

WEB http://rhn.redhat.com/errata/RHSA-2014-1653.html

WEB http://rhn.redhat.com/errata/RHSA-2014-1692.html

WEB http://rhn.redhat.com/errata/RHSA-2014-1876.html

WEB http://rhn.redhat.com/errata/RHSA-2014-1877.html

WEB http://rhn.redhat.com/errata/RHSA-2014-1880.html

WEB http://rhn.redhat.com/errata/RHSA-2014-1881.html

WEB http://rhn.redhat.com/errata/RHSA-2014-1882.html

WEB http://rhn.redhat.com/errata/RHSA-2014-1920.html

WEB http://rhn.redhat.com/errata/RHSA-2014-1948.html

WEB http://rhn.redhat.com/errata/RHSA-2015-0068.html

WEB http://rhn.redhat.com/errata/RHSA-2015-0079.html

WEB http://rhn.redhat.com/errata/RHSA-2015-0080.html

WEB http://rhn.redhat.com/errata/RHSA-2015-0085.html

WEB http://rhn.redhat.com/errata/RHSA-2015-0086.html

WEB http://rhn.redhat.com/errata/RHSA-2015-0264.html

WEB http://rhn.redhat.com/errata/RHSA-2015-0698.html

WEB http://rhn.redhat.com/errata/RHSA-2015-1545.html

WEB http://rhn.redhat.com/errata/RHSA-2015-1546.html

WEB http://secunia.com/advisories/59627

WEB http://secunia.com/advisories/60056

WEB http://secunia.com/advisories/60206

WEB http://secunia.com/advisories/60792

WEB http://secunia.com/advisories/60859

WEB http://secunia.com/advisories/61019

WEB http://secunia.com/advisories/61130

WEB http://secunia.com/advisories/61303

WEB http://secunia.com/advisories/61316

WEB http://secunia.com/advisories/61345

WEB http://secunia.com/advisories/61359

WEB http://secunia.com/advisories/61782

WEB http://secunia.com/advisories/61810

WEB http://secunia.com/advisories/61819

WEB http://secunia.com/advisories/61825

WEB http://secunia.com/advisories/61827

WEB http://secunia.com/advisories/61926

WEB http://secunia.com/advisories/61995

WEB http://support.apple.com/HT204244

WEB http://support.citrix.com/article/CTX200238

WEB http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141015-poodle

WEB http://www-01.ibm.com/support/docview.wss?uid=isg3T1021431

WEB http://www-01.ibm.com/support/docview.wss?uid=isg3T1021439

WEB http://www-01.ibm.com/support/docview.wss?uid=swg21686997

WEB http://www-01.ibm.com/support/docview.wss?uid=swg21687172

WEB http://www-01.ibm.com/support/docview.wss?uid=swg21687611

WEB http://www-01.ibm.com/support/docview.wss?uid=swg21688283

WEB http://www-01.ibm.com/support/docview.wss?uid=swg21692299

WEB http://www.debian.org/security/2014/dsa-3053

WEB http://www.debian.org/security/2015/dsa-3144

WEB http://www.debian.org/security/2015/dsa-3147

WEB http://www.debian.org/security/2015/dsa-3253

WEB http://www.debian.org/security/2016/dsa-3489

WEB http://www.kb.cert.org/vuls/id/577193

WEB http://www.mandriva.com/security/advisories?name=MDVSA-2014:203

WEB http://www.mandriva.com/security/advisories?name=MDVSA-2015:062

WEB http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html

WEB http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html

WEB http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html

WEB http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html

WEB http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

WEB http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html

WEB http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html

WEB http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html

WEB http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html

WEB http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html

WEB http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html

WEB http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html

WEB http://www.securityfocus.com/archive/1/533724/100/0/threaded

WEB http://www.securityfocus.com/archive/1/533746

WEB http://www.securityfocus.com/archive/1/533747

WEB http://www.securityfocus.com/bid/70574

WEB http://www.securitytracker.com/id/1031029

WEB http://www.securitytracker.com/id/1031039

WEB http://www.securitytracker.com/id/1031085

WEB http://www.securitytracker.com/id/1031086

WEB http://www.securitytracker.com/id/1031087

WEB http://www.securitytracker.com/id/1031088

WEB http://www.securitytracker.com/id/1031089

WEB http://www.securitytracker.com/id/1031090

WEB http://www.securitytracker.com/id/1031091

WEB http://www.securitytracker.com/id/1031092

WEB http://www.securitytracker.com/id/1031093

WEB http://www.securitytracker.com/id/1031094

WEB http://www.securitytracker.com/id/1031095

WEB http://www.securitytracker.com/id/1031096

WEB http://www.securitytracker.com/id/1031105

WEB http://www.securitytracker.com/id/1031106

WEB http://www.securitytracker.com/id/1031107

WEB http://www.securitytracker.com/id/1031120

WEB http://www.securitytracker.com/id/1031123

WEB http://www.securitytracker.com/id/1031124

WEB http://www.securitytracker.com/id/1031130

WEB http://www.securitytracker.com/id/1031131

WEB http://www.securitytracker.com/id/1031132

WEB http://www.ubuntu.com/usn/USN-2486-1

WEB http://www.ubuntu.com/usn/USN-2487-1

WEB http://www.us-cert.gov/ncas/alerts/TA14-290A

WEB http://www.vmware.com/security/advisories/VMSA-2015-0003.html

WEB http://www.websense.com/support/article/kbarticle/Vulnerabilities-resolved-in-TRITON-APX-Version-8-0

WEB http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-405500.htm

Advisory provided by GitHub Security Advisory Database. Published: May 17, 2022, Modified: May 17, 2022

References

http://marc.info/?l=bugtraq&m=142103967620673&w=2

http://aix.software.ibm.com/aix/efixes/security/openssl_advisory11.asc

http://www.securitytracker.com/id/1031090

http://blog.nodejs.org/2014/10/23/node-v0-10-33-stable/

http://rhn.redhat.com/errata/RHSA-2014-1880.html

http://marc.info/?l=bugtraq&m=142804214608580&w=2

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04819635

http://www.kb.cert.org/vuls/id/577193

http://marc.info/?l=bugtraq&m=141577087123040&w=2

http://marc.info/?l=bugtraq&m=141715130023061&w=2

http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00008.html

https://support.apple.com/kb/HT6542

http://www.securitytracker.com/id/1031106

http://marc.info/?l=bugtraq&m=141697638231025&w=2

http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html

http://marc.info/?l=openssl-dev&m=141333049205629&w=2

http://marc.info/?l=bugtraq&m=142350298616097&w=2

http://marc.info/?l=bugtraq&m=142350743917559&w=2

http://secunia.com/advisories/60056

http://rhn.redhat.com/errata/RHSA-2014-1877.html

http://marc.info/?l=bugtraq&m=141477196830952&w=2

http://secunia.com/advisories/61130

http://rhn.redhat.com/errata/RHSA-2015-1546.html

http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00018.html

https://support.apple.com/kb/HT6529

https://www.openssl.org/news/secadv_20141015.txt

http://archives.neohapsis.com/archives/bugtraq/2014-10/0103.html

http://www.websense.com/support/article/kbarticle/Vulnerabilities-resolved-in-TRITON-APX-Version-8-0

http://rhn.redhat.com/errata/RHSA-2014-1920.html

http://www.securitytracker.com/id/1031087

http://marc.info/?l=bugtraq&m=143628269912142&w=2

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05157667

https://bto.bluecoat.com/security-advisory/sa83

http://marc.info/?l=bugtraq&m=141879378918327&w=2

http://support.citrix.com/article/CTX200238

http://secunia.com/advisories/61359

https://support.apple.com/kb/HT6541

http://www.securitytracker.com/id/1031093

http://www.securitytracker.com/id/1031132

http://www.debian.org/security/2015/dsa-3144

http://marc.info/?l=bugtraq&m=142721887231400&w=2

http://www.debian.org/security/2015/dsa-3253

http://marc.info/?l=bugtraq&m=142660345230545&w=2

http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04779034

https://www.suse.com/support/kb/doc.php?id=7015773

http://www.securityfocus.com/archive/1/533724/100/0/threaded

https://www.elastic.co/blog/logstash-1-4-3-released

http://marc.info/?l=bugtraq&m=142296755107581&w=2

http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html

http://googleonlinesecurity.blogspot.com/2014/10/this-poodle-bites-exploiting-ssl-30.html

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05301946

http://marc.info/?l=bugtraq&m=142805027510172&w=2

http://secunia.com/advisories/61827

http://marc.info/?l=bugtraq&m=141450452204552&w=2

http://rhn.redhat.com/errata/RHSA-2015-0079.html

http://www-01.ibm.com/support/docview.wss?uid=swg21688283

http://marc.info/?l=bugtraq&m=142791032306609&w=2

https://technet.microsoft.com/library/security/3009008.aspx

http://rhn.redhat.com/errata/RHSA-2015-1545.html

https://www-01.ibm.com/support/docview.wss?uid=swg21688165

http://marc.info/?l=bugtraq&m=142624619906067&w=2

http://www.securitytracker.com/id/1031094

http://www.vmware.com/security/advisories/VMSA-2015-0003.html

http://secunia.com/advisories/61316

https://security.gentoo.org/glsa/201606-11

http://rhn.redhat.com/errata/RHSA-2014-1881.html

https://www.imperialviolet.org/2014/10/14/poodle.html

http://www.securitytracker.com/id/1031096

http://marc.info/?l=bugtraq&m=142721887231400&w=2

http://secunia.com/advisories/61810

http://marc.info/?l=bugtraq&m=142660345230545&w=2

http://www.debian.org/security/2014/dsa-3053

http://marc.info/?l=bugtraq&m=142296755107581&w=2

https://support.lenovo.com/us/en/product_security/poodle

http://www.securitytracker.com/id/1031107

http://www.securitytracker.com/id/1031095

http://marc.info/?l=bugtraq&m=143290583027876&w=2

http://lists.opensuse.org/opensuse-security-announce/2014-12/msg00002.html

http://marc.info/?l=bugtraq&m=142962817202793&w=2

http://marc.info/?l=bugtraq&m=143101048219218&w=2

http://marc.info/?l=bugtraq&m=142118135300698&w=2

http://www.securitytracker.com/id/1031091

http://marc.info/?l=bugtraq&m=142495837901899&w=2

http://www.securitytracker.com/id/1031123

http://askubuntu.com/questions/537196/how-do-i-patch-workaround-sslv3-poodle-vulnerability-cve-2014-3566

https://support.apple.com/HT205217

http://www.securitytracker.com/id/1031092

http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html

http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00033.html

http://secunia.com/advisories/61926

http://rhn.redhat.com/errata/RHSA-2014-1876.html

http://marc.info/?l=bugtraq&m=142103967620673&w=2

http://people.canonical.com/~ubuntu-security/cve/2014/CVE-2014-3566.html

http://marc.info/?l=bugtraq&m=141450973807288&w=2

http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html

http://docs.ipswitch.com/MOVEit/DMZ82/ReleaseNotes/MOVEitReleaseNotes82.pdf

http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html

http://marc.info/?l=bugtraq&m=141814011518700&w=2

http://marc.info/?l=bugtraq&m=145983526810210&w=2

http://lists.apple.com/archives/security-announce/2015/Sep/msg00002.html

https://bugzilla.mozilla.org/show_bug.cgi?id=1076983

https://support.apple.com/kb/HT6531

http://lists.opensuse.org/opensuse-security-announce/2014-11/msg00001.html

https://devcentral.f5.com/articles/cve-2014-3566-removing-sslv3-from-big-ip

http://rhn.redhat.com/errata/RHSA-2015-0264.html

https://kc.mcafee.com/corporate/index?page=content&id=SB10091

https://support.apple.com/kb/HT6527

http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html

http://marc.info/?l=bugtraq&m=142350196615714&w=2

http://marc.info/?l=bugtraq&m=141697676231104&w=2

http://secunia.com/advisories/60206

https://bugzilla.redhat.com/show_bug.cgi?id=1152789

http://secunia.com/advisories/60792

http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

http://archives.neohapsis.com/archives/bugtraq/2014-10/0101.html

http://www.debian.org/security/2016/dsa-3489

https://security.netapp.com/advisory/ntap-20141015-0001/

http://www.securitytracker.com/id/1031105

https://www.cloudera.com/documentation/other/security-bulletins/topics/csb_topic_1.html

http://lists.fedoraproject.org/pipermail/package-announce/2014-October/141114.html

http://www.securitytracker.com/id/1031131

http://marc.info/?l=bugtraq&m=141879378918327&w=2

http://www.ubuntu.com/usn/USN-2487-1

http://marc.info/?l=bugtraq&m=142740155824959&w=2

http://marc.info/?l=bugtraq&m=141813976718456&w=2

https://www.dfranke.us/posts/2014-10-14-how-poodle-happened.html

http://www.securitytracker.com/id/1031130

http://marc.info/?l=bugtraq&m=142721830231196&w=2

http://marc.info/?l=bugtraq&m=141577350823734&w=2

http://rhn.redhat.com/errata/RHSA-2014-1948.html

ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-015.txt.asc

http://marc.info/?l=bugtraq&m=141620103726640&w=2

http://rhn.redhat.com/errata/RHSA-2014-1653.html

http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00036.html

http://marc.info/?l=bugtraq&m=144101915224472&w=2

http://www-01.ibm.com/support/docview.wss?uid=isg3T1021431

http://support.apple.com/HT204244

http://blogs.technet.com/b/msrc/archive/2014/10/14/security-advisory-3009008-released.aspx

http://marc.info/?l=bugtraq&m=142624679706236&w=2

http://rhn.redhat.com/errata/RHSA-2015-0085.html

http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html

https://support.apple.com/kb/HT6536

http://lists.fedoraproject.org/pipermail/package-announce/2014-November/142330.html

http://marc.info/?l=bugtraq&m=141576815022399&w=2

https://groups.google.com/forum/#%21topic/docker-user/oYm0i3xShJU

http://marc.info/?l=bugtraq&m=141477196830952&w=2

http://lists.opensuse.org/opensuse-security-announce/2014-11/msg00021.html

http://marc.info/?l=bugtraq&m=143290371927178&w=2

http://rhn.redhat.com/errata/RHSA-2014-1652.html

https://support.apple.com/kb/HT6535

https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02

http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00027.html

http://marc.info/?l=bugtraq&m=142546741516006&w=2

http://rhn.redhat.com/errata/RHSA-2015-0086.html

http://marc.info/?l=bugtraq&m=143039249603103&w=2

http://www.securitytracker.com/id/1031124

http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00027.html

http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00024.html

http://rhn.redhat.com/errata/RHSA-2015-0080.html

http://marc.info/?l=bugtraq&m=142740155824959&w=2

http://rhn.redhat.com/errata/RHSA-2014-1882.html

http://rhn.redhat.com/errata/RHSA-2015-0068.html

http://marc.info/?l=bugtraq&m=142354438527235&w=2

http://www.ubuntu.com/usn/USN-2486-1

http://marc.info/?l=bugtraq&m=144294141001552&w=2

http://secunia.com/advisories/59627

http://marc.info/?l=bugtraq&m=141814011518700&w=2

http://marc.info/?l=bugtraq&m=142495837901899&w=2

http://marc.info/?l=bugtraq&m=141694355519663&w=2

http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html

http://marc.info/?l=bugtraq&m=143290437727362&w=2

http://marc.info/?l=bugtraq&m=142350298616097&w=2

https://support.lenovo.com/product_security/poodle

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141015-poodle

http://marc.info/?l=bugtraq&m=141775427104070&w=2

http://rhn.redhat.com/errata/RHSA-2015-0698.html

http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html

http://lists.opensuse.org/opensuse-security-announce/2014-11/msg00003.html

http://downloads.asterisk.org/pub/security/AST-2014-011.html

http://secunia.com/advisories/60859

http://www.securityfocus.com/archive/1/533746

https://security.gentoo.org/glsa/201507-14

http://marc.info/?l=bugtraq&m=142624719706349&w=2

http://marc.info/?l=bugtraq&m=142496355704097&w=2

http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-405500.htm

http://secunia.com/advisories/61345

http://marc.info/?l=bugtraq&m=143101048219218&w=2

http://secunia.com/advisories/61019

http://www.securityfocus.com/bid/70574

http://www.securitytracker.com/id/1031120

https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_openssl6

http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html

http://secunia.com/advisories/61825

http://advisories.mageia.org/MGASA-2014-0416.html

http://www.securitytracker.com/id/1031029

http://h20564.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c04583581

http://marc.info/?l=bugtraq&m=142624719706349&w=2

http://marc.info/?l=bugtraq&m=142624590206005&w=2

https://blog.mozilla.org/security/2014/10/14/the-poodle-attack-and-the-end-of-ssl-3-0/

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05068681

http://marc.info/?l=bugtraq&m=143290522027658&w=2

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00000.html

https://kc.mcafee.com/corporate/index?page=content&id=SB10104

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705

http://secunia.com/advisories/61782

https://access.redhat.com/articles/1232123

http://www.mandriva.com/security/advisories?name=MDVSA-2015:062

http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169361.html

http://www.securitytracker.com/id/1031085

http://marc.info/?l=bugtraq&m=144251162130364&w=2

http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html

http://marc.info/?l=bugtraq&m=143039249603103&w=2

http://www.securityfocus.com/archive/1/533747

http://marc.info/?l=bugtraq&m=142118135300698&w=2

http://marc.info/?l=bugtraq&m=142624679706236&w=2

http://www-01.ibm.com/support/docview.wss?uid=swg21687611

https://github.com/mpgn/poodle-PoC

http://www.mandriva.com/security/advisories?name=MDVSA-2014:203

http://marc.info/?l=bugtraq&m=142118135300698&w=2

http://marc.info/?l=bugtraq&m=142607790919348&w=2

http://blog.cryptographyengineering.com/2014/10/attack-of-week-poodle.html

https://support.citrix.com/article/CTX216642

http://marc.info/?l=bugtraq&m=142354438527235&w=2

https://puppet.com/security/cve/poodle-sslv3-vulnerability

http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00001.html

http://lists.apple.com/archives/security-announce/2015/Jan/msg00003.html

http://secunia.com/advisories/61303

http://marc.info/?l=bugtraq&m=142350743917559&w=2

http://marc.info/?l=bugtraq&m=142496355704097&w=2

http://www-01.ibm.com/support/docview.wss?uid=swg21692299

http://www.securitytracker.com/id/1031039

http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00066.html

http://www-01.ibm.com/support/docview.wss?uid=swg21687172

http://marc.info/?l=bugtraq&m=142721830231196&w=2

http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00026.html

http://marc.info/?l=bugtraq&m=142624619906067

http://www.securitytracker.com/id/1031089

http://marc.info/?l=bugtraq&m=142350196615714&w=2

http://marc.info/?l=bugtraq&m=141628688425177&w=2

http://www.us-cert.gov/ncas/alerts/TA14-290A

http://lists.fedoraproject.org/pipermail/package-announce/2014-October/141158.html

http://secunia.com/advisories/61819

http://marc.info/?l=bugtraq&m=142357976805598&w=2

http://www.securitytracker.com/id/1031088

http://www.debian.org/security/2015/dsa-3147

http://secunia.com/advisories/61995

http://marc.info/?l=bugtraq&m=141703183219781&w=2

http://www-01.ibm.com/support/docview.wss?uid=swg21686997

https://kc.mcafee.com/corporate/index?page=content&id=SB10090

http://marc.info/?l=bugtraq&m=142357976805598&w=2

http://www.securitytracker.com/id/1031086

http://marc.info/?l=bugtraq&m=143558192010071&w=2

http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html

http://rhn.redhat.com/errata/RHSA-2014-1692.html

http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169374.html

https://www.openssl.org/~bodo/ssl-poodle.pdf

http://www-01.ibm.com/support/docview.wss?uid=isg3T1021439

http://marc.info/?l=bugtraq&m=143558137709884&w=2

https://lists.apache.org/thread.html/rc774278135816e7afc943dc9fc78eb0764f2c84a2b96470a0187315c%40%3Ccommits.cxf.apache.org%3E

https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf%40%3Ccommits.cxf.apache.org%3E

https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4%40%3Ccommits.cxf.apache.org%3E

https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6%40%3Ccommits.cxf.apache.org%3E

https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4%40%3Ccommits.cxf.apache.org%3E

https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e%40%3Ccommits.cxf.apache.org%3E

https://www.arista.com/en/support/advisories-notices/security-advisories/1015-security-advisory-7

HackerOne Reports

SSLv3 Poodle Attack on Ip Of semrush Low

apapedulimu-

Semrush

Violation of Secure Design Principles

View Report

POODLE SSLv3 bug on multiple twitter smtp servers (mx3.twitter.com,199.59.148.204,199.16.156.108 and 199.59.148.204) None

omespino

X (Formerly Twitter)

Cryptographic Issues - Generic

View Report

Published: 2014-10-15T00:00:00

Last Modified: 2024-11-27T19:31:57.733Z

Copied to clipboard!

CVE-2014-3566

Expert Analysis

Description

Available Exploits

Related News

GitHub Security Advisories

Advisory Details

CVSS Scoring

CVSS Score

CVSS Vector

References

References

HackerOne Reports

Request Analysis

What to expect

Request Received!