Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-aws5-8ugp-f3cb
Vulnerability ID VCID-aws5-8ugp-f3cb
Aliases CVE-2014-2532
Summary
Status Published
Exploitability 0.5
Weighted Severity 3.8
Risk 1.9
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-138 Improper Neutralization of Special Elements
System Score Found at
cvssv3.1 4.2 http://advisories.mageia.org/MGASA-2014-0143.html
ssvc Track http://advisories.mageia.org/MGASA-2014-0143.html
cvssv3.1 4.2 http://aix.software.ibm.com/aix/efixes/security/openssh_advisory4.asc
ssvc Track http://aix.software.ibm.com/aix/efixes/security/openssh_advisory4.asc
cvssv3.1 4.2 http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html
ssvc Track http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html
cvssv3.1 4.2 http://lists.fedoraproject.org/pipermail/package-announce/2014-June/134026.html
ssvc Track http://lists.fedoraproject.org/pipermail/package-announce/2014-June/134026.html
cvssv3.1 4.2 http://lists.fedoraproject.org/pipermail/package-announce/2014-May/133537.html
ssvc Track http://lists.fedoraproject.org/pipermail/package-announce/2014-May/133537.html
cvssv3.1 4.2 http://marc.info/?l=bugtraq&m=141576985122836&w=2
ssvc Track http://marc.info/?l=bugtraq&m=141576985122836&w=2
cvssv3.1 4.2 http://marc.info/?l=openbsd-security-announce&m=139492048027313&w=2
ssvc Track http://marc.info/?l=openbsd-security-announce&m=139492048027313&w=2
cvssv3.1 4.2 http://rhn.redhat.com/errata/RHSA-2014-1552.html
ssvc Track http://rhn.redhat.com/errata/RHSA-2014-1552.html
epss 0.00104 https://api.first.org/data/v1/epss?cve=CVE-2014-2532
epss 0.00104 https://api.first.org/data/v1/epss?cve=CVE-2014-2532
epss 0.00104 https://api.first.org/data/v1/epss?cve=CVE-2014-2532
cvssv3.1 4.2 http://secunia.com/advisories/57488
ssvc Track http://secunia.com/advisories/57488
cvssv3.1 4.2 http://secunia.com/advisories/57574
ssvc Track http://secunia.com/advisories/57574
cvssv3.1 4.2 http://secunia.com/advisories/59313
ssvc Track http://secunia.com/advisories/59313
cvssv3.1 4.2 http://secunia.com/advisories/59855
ssvc Track http://secunia.com/advisories/59855
cvssv3.1 4.2 https://exchange.xforce.ibmcloud.com/vulnerabilities/91986
ssvc Track https://exchange.xforce.ibmcloud.com/vulnerabilities/91986
cvssv3.1 4.9 https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
cvssv3.1 4.2 https://support.apple.com/HT205267
ssvc Track https://support.apple.com/HT205267
cvssv3.1 4.2 http://www.debian.org/security/2014/dsa-2894
ssvc Track http://www.debian.org/security/2014/dsa-2894
cvssv3.1 4.2 http://www.mandriva.com/security/advisories?name=MDVSA-2014:068
ssvc Track http://www.mandriva.com/security/advisories?name=MDVSA-2014:068
cvssv3.1 4.2 http://www.mandriva.com/security/advisories?name=MDVSA-2015:095
ssvc Track http://www.mandriva.com/security/advisories?name=MDVSA-2015:095
cvssv3.1 4.2 http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html
ssvc Track http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html
cvssv3.1 4.2 http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html
ssvc Track http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html
cvssv3.1 4.2 http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
ssvc Track http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
cvssv3.1 4.2 http://www.securityfocus.com/bid/66355
ssvc Track http://www.securityfocus.com/bid/66355
cvssv3.1 4.2 http://www.securitytracker.com/id/1029925
ssvc Track http://www.securitytracker.com/id/1029925
cvssv3.1 4.2 http://www.ubuntu.com/usn/USN-2155-1
ssvc Track http://www.ubuntu.com/usn/USN-2155-1
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-2532.json
https://api.first.org/data/v1/epss?cve=CVE-2014-2532
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2532
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2653
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
1029925 http://www.securitytracker.com/id/1029925
1077843 https://bugzilla.redhat.com/show_bug.cgi?id=1077843
133537.html http://lists.fedoraproject.org/pipermail/package-announce/2014-May/133537.html
134026.html http://lists.fedoraproject.org/pipermail/package-announce/2014-June/134026.html
57488 http://secunia.com/advisories/57488
57574 http://secunia.com/advisories/57574
59313 http://secunia.com/advisories/59313
59855 http://secunia.com/advisories/59855
66355 http://www.securityfocus.com/bid/66355
91986 https://exchange.xforce.ibmcloud.com/vulnerabilities/91986
advisories?name=MDVSA-2014:068 http://www.mandriva.com/security/advisories?name=MDVSA-2014:068
advisories?name=MDVSA-2015:095 http://www.mandriva.com/security/advisories?name=MDVSA-2015:095
cpuapr2016v3-2985753.html http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html
cpujul2018-4258247.html http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html
cpuoct2016-2881722.html http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
dsa-2894 http://www.debian.org/security/2014/dsa-2894
GLSA-201405-06 https://security.gentoo.org/glsa/201405-06
HT205267 https://support.apple.com/HT205267
?l=bugtraq&m=141576985122836&w=2 http://marc.info/?l=bugtraq&m=141576985122836&w=2
?l=openbsd-security-announce&m=139492048027313&w=2 http://marc.info/?l=openbsd-security-announce&m=139492048027313&w=2
MGASA-2014-0143.html http://advisories.mageia.org/MGASA-2014-0143.html
msg00008.html http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html
openssh_advisory4.asc http://aix.software.ibm.com/aix/efixes/security/openssh_advisory4.asc
RHSA-2014:1552 https://access.redhat.com/errata/RHSA-2014:1552
RHSA-2014-1552.html http://rhn.redhat.com/errata/RHSA-2014-1552.html
USN-2155-1 https://usn.ubuntu.com/2155-1/
USN-2155-1 http://www.ubuntu.com/usn/USN-2155-1
No exploits are available.
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N Found at http://advisories.mageia.org/MGASA-2014-0143.html
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T17:40:36Z/ Found at http://advisories.mageia.org/MGASA-2014-0143.html
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N Found at http://aix.software.ibm.com/aix/efixes/security/openssh_advisory4.asc
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T17:40:36Z/ Found at http://aix.software.ibm.com/aix/efixes/security/openssh_advisory4.asc
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N Found at http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T17:40:36Z/ Found at http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N Found at http://lists.fedoraproject.org/pipermail/package-announce/2014-June/134026.html
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T17:40:36Z/ Found at http://lists.fedoraproject.org/pipermail/package-announce/2014-June/134026.html
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N Found at http://lists.fedoraproject.org/pipermail/package-announce/2014-May/133537.html
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T17:40:36Z/ Found at http://lists.fedoraproject.org/pipermail/package-announce/2014-May/133537.html
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N Found at http://marc.info/?l=bugtraq&m=141576985122836&w=2
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T17:40:36Z/ Found at http://marc.info/?l=bugtraq&m=141576985122836&w=2
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N Found at http://marc.info/?l=openbsd-security-announce&m=139492048027313&w=2
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T17:40:36Z/ Found at http://marc.info/?l=openbsd-security-announce&m=139492048027313&w=2
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N Found at http://rhn.redhat.com/errata/RHSA-2014-1552.html
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T17:40:36Z/ Found at http://rhn.redhat.com/errata/RHSA-2014-1552.html
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N Found at http://secunia.com/advisories/57488
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T17:40:36Z/ Found at http://secunia.com/advisories/57488
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N Found at http://secunia.com/advisories/57574
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T17:40:36Z/ Found at http://secunia.com/advisories/57574
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N Found at http://secunia.com/advisories/59313
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T17:40:36Z/ Found at http://secunia.com/advisories/59313
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N Found at http://secunia.com/advisories/59855
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T17:40:36Z/ Found at http://secunia.com/advisories/59855
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N Found at https://exchange.xforce.ibmcloud.com/vulnerabilities/91986
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T17:40:36Z/ Found at https://exchange.xforce.ibmcloud.com/vulnerabilities/91986
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:N Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N Found at https://support.apple.com/HT205267
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T17:40:36Z/ Found at https://support.apple.com/HT205267
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N Found at http://www.debian.org/security/2014/dsa-2894
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T17:40:36Z/ Found at http://www.debian.org/security/2014/dsa-2894
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N Found at http://www.mandriva.com/security/advisories?name=MDVSA-2014:068
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T17:40:36Z/ Found at http://www.mandriva.com/security/advisories?name=MDVSA-2014:068
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N Found at http://www.mandriva.com/security/advisories?name=MDVSA-2015:095
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T17:40:36Z/ Found at http://www.mandriva.com/security/advisories?name=MDVSA-2015:095
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N Found at http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T17:40:36Z/ Found at http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N Found at http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T17:40:36Z/ Found at http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N Found at http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T17:40:36Z/ Found at http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N Found at http://www.securityfocus.com/bid/66355
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T17:40:36Z/ Found at http://www.securityfocus.com/bid/66355
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N Found at http://www.securitytracker.com/id/1029925
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T17:40:36Z/ Found at http://www.securitytracker.com/id/1029925
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N Found at http://www.ubuntu.com/usn/USN-2155-1
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T17:40:36Z/ Found at http://www.ubuntu.com/usn/USN-2155-1
Exploit Prediction Scoring System (EPSS)
Percentile 0.27952
EPSS Score 0.00104
Published At June 11, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-06-10T18:04:58.148149+00:00 SUSE Severity Score Importer Import https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml 38.6.0