VulnerableCode Vulnerability Details

Staging Environment: Content and features may be unstable or change without notice.

Search for vulnerabilities

Vulnerability details: VCID-4mk9-5buz-puh5

Vulnerability ID	VCID-4mk9-5buz-puh5
Aliases	CVE-2014-0139
Summary	Multiple vulnerabilities have been discovered in cURL, the worst of which could lead to man-in-the-middle attacks.
Status	Published
Exploitability	0.5
Weighted Severity	4.8
Risk	2.4
Affected and Fixed Packages	Package Details

Weaknesses (1)

CWE-297

System	Score	Found at
epss	0.01203	https://api.first.org/data/v1/epss?cve=CVE-2014-0139
epss	0.01203	https://api.first.org/data/v1/epss?cve=CVE-2014-0139
epss	0.01203	https://api.first.org/data/v1/epss?cve=CVE-2014-0139
epss	0.01203	https://api.first.org/data/v1/epss?cve=CVE-2014-0139
epss	0.01203	https://api.first.org/data/v1/epss?cve=CVE-2014-0139
epss	0.01203	https://api.first.org/data/v1/epss?cve=CVE-2014-0139
epss	0.01203	https://api.first.org/data/v1/epss?cve=CVE-2014-0139
epss	0.01203	https://api.first.org/data/v1/epss?cve=CVE-2014-0139
epss	0.01203	https://api.first.org/data/v1/epss?cve=CVE-2014-0139
cvssv3.1	Medium	https://curl.se/docs/CVE-2014-0139.html

Reference id	Reference type	URL
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0139.json
		https://api.first.org/data/v1/epss?cve=CVE-2014-0139
		https://curl.se/docs/CVE-2014-0139.html
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0138
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0139
1079149		https://bugzilla.redhat.com/show_bug.cgi?id=1079149
742728		https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742728
GLSA-201406-21		https://security.gentoo.org/glsa/201406-21
USN-2167-1		https://usn.ubuntu.com/2167-1/

No exploits are available.

There are no known vectors.

Exploit Prediction Scoring System (EPSS)

Date	Actor	Action	Source	VulnerableCode Version
2026-04-01T13:05:01.307055+00:00	Gentoo Importer	Import	https://security.gentoo.org/glsa/201406-21	38.0.0