PT-2014-7834 · Zeromq · Libzmq

Hintjens

·

Published

2014-10-08

·

Updated

2024-06-15

·

CVE-2014-7202

CVSS v2.0

4.3

Medium

VectorAV:N/AC:M/Au:N/C:N/I:P/A:N
Name of the Vulnerable Software and Affected Versions libzmq (aka ZeroMQ/C++) version 4.0.5
Description The issue allows man-in-the-middle attackers to conduct downgrade attacks via a crafted connection request.
Recommendations For libzmq (aka ZeroMQ/C++) version 4.0.5, update to a version newer than 4.0.5 to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

CVE-2014-7202
OPENSUSE-SU-2024:10038-1
SUSE-FU-2022:0444-1
SUSE-FU-2022:0445-1

Affected Products

Libzmq