VYPR
High severity7.5NVD Advisory· Published Aug 7, 2017· Updated Jun 17, 2026

CVE-2014-3462

CVE-2014-3462

Description

The ".encfs6.xml" configuration file in encfs before 1.7.5 allows remote attackers to access sensitive data by setting "blockMACBytes" to 0 and adding 8 to "blockMACRandBytes".

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5
  • cpe:2.3:a:encfs_project:encfs:*:*:*:*:*:*:*:*
    Range: <1.7.5
  • OpenSUSE/Leap2 versions
    cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*
    • cpe:2.3:o:opensuse:leap:42.2:*:*:*:*:*:*:*
  • cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*
  • EncFS/EncFSllm-fuzzy
    Range: <1.7.5

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.