Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-b1fp-4j2a-cqbx
Vulnerability ID VCID-b1fp-4j2a-cqbx
Aliases CVE-2014-8501
Summary The _bfd_XXi_swap_aouthdr_in function in bfd/peXXigen.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (out-of-bounds write) and possibly have other unspecified impact via a crafted NumberOfRvaAndSizes field in the AOUT header in a PE executable.
Status Published
Exploitability 0.5
Weighted Severity 0.1
Risk 0.1
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-787 Out-of-bounds Write
System Score Found at
epss 0.05875 https://api.first.org/data/v1/epss?cve=CVE-2014-8501
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8501.json
https://api.first.org/data/v1/epss?cve=CVE-2014-8501
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8484
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8485
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8501
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8502
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8503
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8504
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8737
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8738
1162570 https://bugzilla.redhat.com/show_bug.cgi?id=1162570
GLSA-201612-24 https://security.gentoo.org/glsa/201612-24
RHSA-2015:2079 https://access.redhat.com/errata/RHSA-2015:2079
No exploits are available.
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.90736
EPSS Score 0.05875
Published At June 4, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-06-04T16:28:37.452691+00:00 Debian Importer Import https://security-tracker.debian.org/tracker/data/json 38.6.0