CVE-2014-3566

The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue.

Severity	LOW
CVSS	3.4
CWE	CWE-310
KEV
Published	11 years ago
Modified	1 week ago

Related Products

Product	Advisory	Evidence
Cisco IOS	Cisco-SA-20141211-CVE-2014-8730	Cisco OpenVuln
Cisco Adaptive Security Appliance (ASA) Software	Cisco-SA-20141211-CVE-2014-8730	Cisco OpenVuln
Cisco ASR 5000 Series Software	Cisco-SA-20141211-CVE-2014-8730	Cisco OpenVuln
Cisco ACE Application Control Engine Module	Cisco-SA-20141211-CVE-2014-8730	Cisco OpenVuln