High severity7.4NVD Advisory· Published Jun 5, 2014· Updated May 6, 2026
CVE-2014-0224
CVE-2014-0224
Description
OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly restrict processing of ChangeCipherSpec messages, which allows man-in-the-middle attackers to trigger use of a zero-length master key in certain OpenSSL-to-OpenSSL communications, and consequently hijack sessions or obtain sensitive information, via a crafted TLS handshake, aka the "CCS Injection" vulnerability.
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
302- www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.htmlnvdPatch
- www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.htmlnvdPatchThird Party Advisory
- www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.htmlnvdPatchThird Party Advisory
- www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.htmlnvdPatchThird Party Advisory
- www.imperialviolet.org/2014/06/05/earlyccs.htmlnvdExploit
- aix.software.ibm.com/aix/efixes/security/openssl_advisory9.ascnvdThird Party Advisory
- ccsinjection.lepidum.co.jpnvdThird Party Advisory
- dev.mysql.com/doc/relnotes/workbench/en/wb-news-6-1-7.htmlnvdThird Party Advisory
- esupport.trendmicro.com/solution/en-US/1103813.aspxnvdThird Party Advisory
- kb.juniper.net/InfoCenter/indexnvdThird Party Advisory
- linux.oracle.com/errata/ELSA-2014-1053.htmlnvdThird Party Advisory
- lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.htmlnvdThird Party Advisory
- lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.htmlnvdThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2015-03/msg00027.htmlnvdThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.htmlnvdThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.htmlnvdThird Party Advisory
- lists.opensuse.org/opensuse-updates/2015-02/msg00030.htmlnvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- puppetlabs.com/security/cve/cve-2014-0224nvdThird Party Advisory
- rhn.redhat.com/errata/RHSA-2014-0624.htmlnvdThird Party Advisory
- rhn.redhat.com/errata/RHSA-2014-0626.htmlnvdThird Party Advisory
- rhn.redhat.com/errata/RHSA-2014-0627.htmlnvdThird Party Advisory
- rhn.redhat.com/errata/RHSA-2014-0630.htmlnvdThird Party Advisory
- rhn.redhat.com/errata/RHSA-2014-0631.htmlnvdThird Party Advisory
- rhn.redhat.com/errata/RHSA-2014-0632.htmlnvdThird Party Advisory
- rhn.redhat.com/errata/RHSA-2014-0633.htmlnvdThird Party Advisory
- rhn.redhat.com/errata/RHSA-2014-0680.htmlnvdThird Party Advisory
- seclists.org/fulldisclosure/2014/Dec/23nvdMailing ListThird Party Advisory
- seclists.org/fulldisclosure/2014/Jun/38nvdMailing ListThird Party Advisory
- secunia.com/advisories/58128nvdThird Party Advisory
- secunia.com/advisories/58337nvdThird Party Advisory
- secunia.com/advisories/58385nvdThird Party Advisory
- secunia.com/advisories/58433nvdThird Party Advisory
- secunia.com/advisories/58492nvdThird Party Advisory
- secunia.com/advisories/58579nvdThird Party Advisory
- secunia.com/advisories/58615nvdThird Party Advisory
- secunia.com/advisories/58639nvdThird Party Advisory
- secunia.com/advisories/58660nvdThird Party Advisory
- secunia.com/advisories/58667nvdThird Party Advisory
- secunia.com/advisories/58713nvdThird Party Advisory
- secunia.com/advisories/58714nvdThird Party Advisory
- secunia.com/advisories/58716nvdThird Party Advisory
- secunia.com/advisories/58719nvdThird Party Advisory
- secunia.com/advisories/58742nvdThird Party Advisory
- secunia.com/advisories/58743nvdThird Party Advisory
- secunia.com/advisories/58745nvdThird Party Advisory
- secunia.com/advisories/58759nvdThird Party Advisory
- secunia.com/advisories/58930nvdThird Party Advisory
- secunia.com/advisories/58939nvdThird Party Advisory
- secunia.com/advisories/58945nvdThird Party Advisory
- secunia.com/advisories/58977nvdThird Party Advisory
- secunia.com/advisories/59004nvdThird Party Advisory
- secunia.com/advisories/59012nvdThird Party Advisory
- secunia.com/advisories/59040nvdThird Party Advisory
- secunia.com/advisories/59043nvdThird Party Advisory
- secunia.com/advisories/59055nvdThird Party Advisory
- secunia.com/advisories/59063nvdThird Party Advisory
- secunia.com/advisories/59093nvdThird Party Advisory
- secunia.com/advisories/59101nvdThird Party Advisory
- secunia.com/advisories/59120nvdThird Party Advisory
- secunia.com/advisories/59126nvdThird Party Advisory
- secunia.com/advisories/59132nvdThird Party Advisory
- secunia.com/advisories/59135nvdThird Party Advisory
- secunia.com/advisories/59142nvdThird Party Advisory
- secunia.com/advisories/59162nvdThird Party Advisory
- secunia.com/advisories/59163nvdThird Party Advisory
- secunia.com/advisories/59167nvdThird Party Advisory
- secunia.com/advisories/59175nvdThird Party Advisory
- secunia.com/advisories/59186nvdThird Party Advisory
- secunia.com/advisories/59188nvdThird Party Advisory
- secunia.com/advisories/59189nvdThird Party Advisory
- secunia.com/advisories/59190nvdThird Party Advisory
- secunia.com/advisories/59191nvdThird Party Advisory
- secunia.com/advisories/59192nvdThird Party Advisory
- secunia.com/advisories/59202nvdThird Party Advisory
- secunia.com/advisories/59211nvdThird Party Advisory
- secunia.com/advisories/59214nvdThird Party Advisory
- secunia.com/advisories/59215nvdThird Party Advisory
- secunia.com/advisories/59223nvdThird Party Advisory
- secunia.com/advisories/59231nvdThird Party Advisory
- secunia.com/advisories/59264nvdThird Party Advisory
- secunia.com/advisories/59282nvdThird Party Advisory
- secunia.com/advisories/59284nvdThird Party Advisory
- secunia.com/advisories/59287nvdThird Party Advisory
- secunia.com/advisories/59300nvdThird Party Advisory
- secunia.com/advisories/59301nvdThird Party Advisory
- secunia.com/advisories/59305nvdThird Party Advisory
- secunia.com/advisories/59306nvdThird Party Advisory
- secunia.com/advisories/59310nvdThird Party Advisory
- secunia.com/advisories/59325nvdThird Party Advisory
- secunia.com/advisories/59338nvdThird Party Advisory
- secunia.com/advisories/59342nvdThird Party Advisory
- secunia.com/advisories/59347nvdThird Party Advisory
- secunia.com/advisories/59354nvdThird Party Advisory
- secunia.com/advisories/59362nvdThird Party Advisory
- secunia.com/advisories/59364nvdThird Party Advisory
- secunia.com/advisories/59365nvdThird Party Advisory
- secunia.com/advisories/59368nvdThird Party Advisory
- secunia.com/advisories/59370nvdThird Party Advisory
- secunia.com/advisories/59374nvdThird Party Advisory
- secunia.com/advisories/59375nvdThird Party Advisory
- secunia.com/advisories/59380nvdThird Party Advisory
- secunia.com/advisories/59383nvdThird Party Advisory
- secunia.com/advisories/59389nvdThird Party Advisory
- secunia.com/advisories/59413nvdThird Party Advisory
- secunia.com/advisories/59429nvdThird Party Advisory
- secunia.com/advisories/59435nvdThird Party Advisory
- secunia.com/advisories/59437nvdThird Party Advisory
- secunia.com/advisories/59438nvdThird Party Advisory
- secunia.com/advisories/59440nvdThird Party Advisory
- secunia.com/advisories/59441nvdThird Party Advisory
- secunia.com/advisories/59442nvdThird Party Advisory
- secunia.com/advisories/59444nvdThird Party Advisory
- secunia.com/advisories/59445nvdThird Party Advisory
- secunia.com/advisories/59446nvdThird Party Advisory
- secunia.com/advisories/59447nvdThird Party Advisory
- secunia.com/advisories/59448nvdThird Party Advisory
- secunia.com/advisories/59449nvdThird Party Advisory
- secunia.com/advisories/59450nvdThird Party Advisory
- secunia.com/advisories/59451nvdThird Party Advisory
- secunia.com/advisories/59454nvdThird Party Advisory
- secunia.com/advisories/59459nvdThird Party Advisory
- secunia.com/advisories/59460nvdThird Party Advisory
- secunia.com/advisories/59483nvdThird Party Advisory
- secunia.com/advisories/59490nvdThird Party Advisory
- secunia.com/advisories/59491nvdThird Party Advisory
- secunia.com/advisories/59495nvdThird Party Advisory
- secunia.com/advisories/59502nvdThird Party Advisory
- secunia.com/advisories/59506nvdThird Party Advisory
- secunia.com/advisories/59514nvdThird Party Advisory
- secunia.com/advisories/59518nvdThird Party Advisory
- secunia.com/advisories/59525nvdThird Party Advisory
- secunia.com/advisories/59528nvdThird Party Advisory
- secunia.com/advisories/59529nvdThird Party Advisory
- secunia.com/advisories/59530nvdThird Party Advisory
- secunia.com/advisories/59589nvdThird Party Advisory
- secunia.com/advisories/59602nvdThird Party Advisory
- secunia.com/advisories/59655nvdThird Party Advisory
- secunia.com/advisories/59659nvdThird Party Advisory
- secunia.com/advisories/59661nvdThird Party Advisory
- secunia.com/advisories/59666nvdThird Party Advisory
- secunia.com/advisories/59669nvdThird Party Advisory
- secunia.com/advisories/59677nvdThird Party Advisory
- secunia.com/advisories/59721nvdThird Party Advisory
- secunia.com/advisories/59784nvdThird Party Advisory
- secunia.com/advisories/59824nvdThird Party Advisory
- secunia.com/advisories/59827nvdThird Party Advisory
- secunia.com/advisories/59878nvdThird Party Advisory
- secunia.com/advisories/59885nvdThird Party Advisory
- secunia.com/advisories/59894nvdThird Party Advisory
- secunia.com/advisories/59916nvdThird Party Advisory
- secunia.com/advisories/59990nvdThird Party Advisory
- secunia.com/advisories/60049nvdThird Party Advisory
- secunia.com/advisories/60066nvdThird Party Advisory
- secunia.com/advisories/60176nvdThird Party Advisory
- secunia.com/advisories/60522nvdThird Party Advisory
- secunia.com/advisories/60567nvdThird Party Advisory
- secunia.com/advisories/60571nvdThird Party Advisory
- secunia.com/advisories/60577nvdThird Party Advisory
- secunia.com/advisories/60819nvdThird Party Advisory
- secunia.com/advisories/61254nvdThird Party Advisory
- secunia.com/advisories/61815nvdThird Party Advisory
- security.gentoo.org/glsa/glsa-201407-05.xmlnvdThird Party Advisory
- support.apple.com/kb/HT6443nvdThird Party Advisory
- support.citrix.com/article/CTX140876nvdThird Party Advisory
- support.f5.com/kb/en-us/solutions/public/15000/300/sol15325.htmlnvdThird Party Advisory
- tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140605-opensslnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-947.ibm.com/support/entry/portal/docdisplaynvdThird Party Advisory
- www-947.ibm.com/support/entry/portal/docdisplaynvdThird Party Advisory
- www-947.ibm.com/support/entry/portal/docdisplaynvdThird Party Advisory
- www-947.ibm.com/support/entry/portal/docdisplaynvdThird Party Advisory
- www-947.ibm.com/support/entry/portal/docdisplaynvdThird Party Advisory
- www-947.ibm.com/support/entry/portal/docdisplaynvdThird Party Advisory
- www.blackberry.com/btsc/KB36051nvdThird Party Advisory
- www.f-secure.com/en/web/labs_global/fsc-2014-6nvdThird Party Advisory
- www.fortiguard.com/advisory/FG-IR-14-018/nvdThird Party Advisory
- www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-345106.htmnvdThird Party Advisory
- www.ibm.com/support/docview.wssnvdThird Party Advisory
- www.ibm.com/support/docview.wssnvdThird Party Advisory
- www.ibm.com/support/docview.wssnvdThird Party Advisory
- www.ibm.com/support/docview.wssnvdThird Party Advisory
- www.ibm.com/support/docview.wssnvdThird Party Advisory
- www.innominate.com/data/downloads/manuals/mdm_1.5.2.1_Release_Notes.pdfnvdThird Party Advisory
- www.kb.cert.org/vuls/id/978508nvdThird Party AdvisoryUS Government Resource
- www.kerio.com/support/kerio-control/release-historynvdThird Party Advisory
- www.mandriva.com/security/advisoriesnvdThird Party Advisory
- www.mandriva.com/security/advisoriesnvdThird Party Advisory
- www.mandriva.com/security/advisoriesnvdThird Party Advisory
- www.novell.com/support/kb/doc.phpnvdThird Party Advisory
- www.novell.com/support/kb/doc.phpnvdThird Party Advisory
- www.openssl.org/news/secadv_20140605.txtnvdVendor Advisory
- www.oracle.com/technetwork/topics/security/cpujan2015-1972971.htmlnvdThird Party Advisory
- www.oracle.com/technetwork/topics/security/cpujul2014-1972956.htmlnvdThird Party Advisory
- www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.htmlnvdThird Party Advisory
- www.securityfocus.com/archive/1/534161/100/0/threadednvdNot ApplicableThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1031032nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1031594nvdThird Party AdvisoryVDB Entry
- www.splunk.com/view/SP-CAAAM2DnvdThird Party Advisory
- www.tenable.com/blog/nessus-527-and-pvs-403-are-available-for-downloadnvdThird Party Advisory
- www.vmware.com/security/advisories/VMSA-2014-0006.htmlnvdThird Party Advisory
- www.vmware.com/security/advisories/VMSA-2014-0012.htmlnvdThird Party Advisory
- www.websense.com/support/article/kbarticle/Vulnerabilities-resolved-in-TRITON-APX-Version-8-0nvdThird Party Advisory
- www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjdnvdThird Party Advisory
- www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjdnvdThird Party Advisory
- access.redhat.com/site/blogs/766093/posts/908133nvdThird Party Advisory
- blogs.oracle.com/sunsecurity/entry/cve_2014_0224_cryptographic_issuesnvdThird Party Advisory
- blogs.oracle.com/sunsecurity/entry/cve_2014_0224_cryptographic_issues1nvdThird Party Advisory
- cert-portal.siemens.com/productcert/pdf/ssa-234763.pdfnvdThird Party Advisory
- discussions.nessus.org/thread/7517nvdThird Party Advisory
- filezilla-project.org/versions.phpnvdThird Party Advisory
- h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplaynvdThird Party Advisory
- kb.bluecoat.com/indexnvdThird Party Advisory
- kc.mcafee.com/corporate/indexnvdThird Party Advisory
- www.ibm.com/support/docview.wssnvdThird Party Advisory
- www.ibm.com/support/docview.wssnvdThird Party Advisory
- www.intersectalliance.com/wp-content/uploads/release_notes/ReleaseNotes_for_SNARE_for_MSSQL.pdfnvdThird Party Advisory
- www.intersectalliance.com/wp-content/uploads/release_notes/ReleaseNotes_for_Snare_for_Windows.pdfnvdThird Party Advisory
- www.novell.com/support/kb/doc.phpnvdThird Party Advisory
- kb.juniper.net/InfoCenter/indexnvdNot Applicable
- kb.juniper.net/InfoCenter/indexnvdNot Applicable
- www.ibm.com/support/docview.wssnvdBroken Link
- www.ibm.com/support/docview.wssnvdBroken Link
- bugzilla.redhat.com/show_bug.cginvdIssue Tracking
- www.arista.com/en/support/advisories-notices/security-advisories/941-security-advisory-0005nvdBroken Link
News mentions
0No linked articles in our index yet.