CVE-2014-3574

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 18-08-2014 02:00

Last modified: - 18-08-2014 02:00

Total changes: - 10

Description

CVE-2014-3574 apache-poi: entity expansion (billion laughs) flaw

Common Vulnerability Scoring System (CVSS)

AV:N/AC:L/Au:N/C:N/I:N/A:P

Low

Attack complexity

Network

Attack vector

Low

Availability

None

Confidentiality

None

Integrity

-

Privileges required

-

Scope

-

User interaction

5.0

Base score

Exploitability score

Impact score

Verification logic

OR

AND

vendor=Red Hat Enterprise Linux AND product=jboss_bpms AND version=6.0

AND

vendor=Red Hat Enterprise Linux AND product=jboss_brms AND version=6.0

AND

product=apache-poi

vendor=Red Hat Enterprise Linux AND product=jboss_data_virtualization AND version=6.0

AND

product=apache-poi

vendor=Red Hat Enterprise Linux AND product=jboss_fuse_service_works AND version=6.0

AND

product=apache-poi

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_portal_platform AND version=6.2

AND

product=apache-poi AND version=

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_bpms_platform AND version=6

AND

product=jasperreports-server-pro AND version=

vendor=Red Hat Enterprise Linux AND product=enterprise_linux AND version=

AND

product=apache-poi AND version=

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_brms_platform AND version=5

AND

product=apache-poi AND version=

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_brms_platform AND version=6

AND

product=apache-poi AND version=

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_portal_platform AND version=5

AND

product=apache-poi AND version=

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_soa_platform AND version=4

AND

product=apache-poi AND version=

vendor=Red Hat Enterprise Linux AND product=network_satellite AND version=5.3

AND

product=apache-poi AND version=

vendor=Red Hat Enterprise Linux AND product=network_satellite AND version=5.4

AND

product=apache-poi AND version=

vendor=Red Hat Enterprise Linux AND product=network_satellite AND version=5.5

AND

product=apache-poi AND version=

vendor=Red Hat Enterprise Linux AND product=network_satellite AND version=5.6

Reference

Keywords

REDHAT

CVE-2014-3574

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures

We use cookies to ensure that we give you the best experience on our website. Read privacy policies for more information.