VYPR
Unrated severityNVD Advisory· Published Oct 15, 2014· Updated Jun 17, 2026

CVE-2014-1584

CVE-2014-1584

Description

The Public Key Pinning (PKP) implementation in Mozilla Firefox before 33.0 skips pinning checks upon an unspecified issuer-verification error, which makes it easier for remote attackers to bypass an intended pinning configuration and spoof a web site via a crafted certificate that leads to presentation of the Untrusted Connection dialog to the user.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6

Patches

Vulnerability mechanics

References

13

News mentions

0

No linked articles in our index yet.