CVE-2014-0160 Detail Current Description The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrated by reading private keys, related to d1_both.c and t1_lib.c, aka the Heartbleed bug.

View Analysis Description Analysis Description The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrated by reading private keys, related to d1_both.c and t1_lib.c, aka the Heartbleed bug. Severity CVSS Version 3.x CVSS Version 2.0



CVSS 3.x Severity and Metrics:

NIST: NVD Base Score: 7.5 HIGH Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS 2.0 Severity and Metrics:



NIST: NVD Base Score: 5.0 MEDIUM Vector: (AV:N/AC:L/Au:N/C:P/I:N/A:N) Evaluator Impact CVSS V2 scoring evaluates the impact of the vulnerability on the host where the vulnerability is located. When evaluating the impact of this vulnerability to your organization, take into account the nature of the data that is being protected and act according to your organization’s risk acceptance. While CVE-2014-0160 does not allow unrestricted access to memory on the targeted host, a successful exploit does leak information from memory locations which have the potential to contain particularly sensitive information, e.g., cryptographic keys and passwords. Theft of this information could enable other attacks on the information system, the impact of which would depend on the sensitivity of the data and functions of that system. Weakness Enumeration CWE-ID CWE Name Source CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer NIST Known Affected Software Configurations Switch to CPE 2.2 CPEs loading, please wait. Denotes Vulnerable Software

Are we missing a CPE here? Please let us know.

Change History 22 change records found show changes Modified Analysis 7/28/2020 1:11:56 PM Action Type Old Value New Value Added CPE Configuration AND OR *cpe:2.3:o:intellian:v100_firmware:1.20:*:*:*:*:*:*:* *cpe:2.3:o:intellian:v100_firmware:1.21:*:*:*:*:*:*:* *cpe:2.3:o:intellian:v100_firmware:1.24:*:*:*:*:*:*:* OR cpe:2.3:h:intellian:v100:-:*:*:*:*:*:*:*



Added CPE Configuration AND OR *cpe:2.3:o:intellian:v60_firmware:1.15:*:*:*:*:*:*:* *cpe:2.3:o:intellian:v60_firmware:1.25:*:*:*:*:*:*:* OR cpe:2.3:h:intellian:v60:-:*:*:*:*:*:*:*



Added CPE Configuration AND OR *cpe:2.3:o:siemens:application_processing_engine_firmware:2.0:*:*:*:*:*:*:* OR cpe:2.3:h:siemens:application_processing_engine:-:*:*:*:*:*:*:*



Added CPE Configuration AND OR *cpe:2.3:o:siemens:cp_1543-1_firmware:1.1:*:*:*:*:*:*:* OR cpe:2.3:h:siemens:cp_1543-1:-:*:*:*:*:*:*:*



Added CPE Configuration AND OR *cpe:2.3:o:siemens:simatic_s7-1500_firmware:1.5:*:*:*:*:*:*:* OR cpe:2.3:h:siemens:simatic_s7-1500:-:*:*:*:*:*:*:*



Added CPE Configuration AND OR *cpe:2.3:o:siemens:simatic_s7-1500t_firmware:1.5:*:*:*:*:*:*:* OR cpe:2.3:h:siemens:simatic_s7-1500t:-:*:*:*:*:*:*:*



Added CPE Configuration OR *cpe:2.3:a:filezilla-project:filezilla_server:*:*:*:*:*:*:*:* versions up to (excluding) 0.9.44



Added CPE Configuration Record truncated, showing 500 of 636 characters.

View Entire Change Record

OR *cpe:2.3:a:mitel:micollab:6.0:*:*:*:*:*:*:* *cpe:2.3:a:mitel:micollab:7.0:*:*:*:*:*:*:* *cpe:2.3:a:mitel:micollab:7.1:*:*:*:*:*:*:* *cpe:2.3:a:mitel:micollab:7.2:*:*:*:*:*:*:* *cpe:2.3:a:mitel:micollab:7.3:*:*:*:*:*:*:* *cpe:2.3:a:mitel:micollab:7.3.0.104:*:*:*:*:*:*:* *cpe:2.3:a:mitel:mivoice:1.1.2.5:*:*:*:*:lync:*:* *cpe:2.3:a:mitel:mivoice:1.1.3.3:*:*:*:*:skype_for_business:*:* *cpe:2.3:a:mitel:mivoice:1.2.0.11:*:*:*:*:skype_for_business:*:* Added CPE Configuration Record truncated, showing 500 of 572 characters.

View Entire Change Record

OR *cpe:2.3:a:redhat:gluster_storage:2.1:*:*:*:*:*:*:* *cpe:2.3:a:redhat:storage:2.1:*:*:*:*:*:*:* *cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:* *cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:* *cpe:2.3:o:redhat:enterprise_linux_server_aus:6.5:*:*:*:*:*:*:* *cpe:2.3:o:redhat:enterprise_linux_server_eus:6.5:*:*:*:*:*:*:* *cpe:2.3:o:redhat:enterprise_linux_server_tus:6.5:*:*:*:*:*:*:* *cpe:2.3:o:redhat:enterprise_linux_workstation:6 Added CPE Configuration OR *cpe:2.3:a:siemens:elan-8.2:*:*:*:*:*:*:*:* versions up to (excluding) 8.3.3 *cpe:2.3:a:siemens:wincc_open_architecture:3.12:*:*:*:*:*:*:*



Added CPE Configuration OR *cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:* *cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:* *cpe:2.3:o:canonical:ubuntu_linux:13.10:*:*:*:*:*:*:*



Added CPE Configuration OR *cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:* *cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:* *cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*



Added CPE Configuration OR *cpe:2.3:o:fedoraproject:fedora:19:*:*:*:*:*:*:* *cpe:2.3:o:fedoraproject:fedora:20:*:*:*:*:*:*:*



Added CPE Configuration OR *cpe:2.3:o:opensuse:opensuse:12.3:*:*:*:*:*:*:* *cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*



Changed CPE Configuration Record truncated, showing 500 of 596 characters.

View Entire Change Record

OR *cpe:2.3:a:openssl:openssl:1.0.1:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:1.0.1:beta1:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:1.0.1:beta2:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:1.0.1:beta3:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:1.0.1a:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:1.0.1b:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:1.0.1c:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:1.0.1d:*:*:*:*:*:*:* *cpe:2.3:a:openssl:openssl:1.0.1e:*:*:*:*:*:*:* *cpe:2. OR *cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:* versions from (including) 1.0.1 up to (excluding) 1.0.1g



Changed Reference Type http://cogentdatahub.com/ReleaseNotes.html Third Party Advisory



http://cogentdatahub.com/ReleaseNotes.html Release Notes, Third Party Advisory



Changed Reference Type http://download.schneider-electric.com/files?p_Doc_Ref=SEVD%202014-119-01 Third Party Advisory



http://download.schneider-electric.com/files?p_Doc_Ref=SEVD%202014-119-01 Broken Link



Changed Reference Type http://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=96db9023b881d7cd9f379b0c154650d6c108e9a3 Vendor Advisory



http://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=96db9023b881d7cd9f379b0c154650d6c108e9a3 Patch, Vendor Advisory



Changed Reference Type http://heartbleed.com/ Technical Description, Third Party Advisory



http://heartbleed.com/ Third Party Advisory



Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html Third Party Advisory



http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html Mailing List, Third Party Advisory



Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2014-04/msg00004.html Third Party Advisory



http://lists.opensuse.org/opensuse-security-announce/2014-04/msg00004.html Mailing List, Third Party Advisory



Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2014-04/msg00005.html Third Party Advisory



http://lists.opensuse.org/opensuse-security-announce/2014-04/msg00005.html Mailing List, Third Party Advisory



Changed Reference Type http://lists.opensuse.org/opensuse-updates/2014-04/msg00061.html Third Party Advisory



http://lists.opensuse.org/opensuse-updates/2014-04/msg00061.html Mailing List, Third Party Advisory



Changed Reference Type http://secunia.com/advisories/57347 Vendor Advisory



http://secunia.com/advisories/57347 Third Party Advisory



Changed Reference Type http://secunia.com/advisories/57483 Vendor Advisory



http://secunia.com/advisories/57483 Third Party Advisory



Changed Reference Type http://secunia.com/advisories/57721 Vendor Advisory



http://secunia.com/advisories/57721 Third Party Advisory



Changed Reference Type http://secunia.com/advisories/57836 Vendor Advisory



http://secunia.com/advisories/57836 Third Party Advisory



Changed Reference Type http://secunia.com/advisories/57966 Vendor Advisory



http://secunia.com/advisories/57966 Third Party Advisory



Changed Reference Type http://secunia.com/advisories/57968 Vendor Advisory



http://secunia.com/advisories/57968 Third Party Advisory



Changed Reference Type http://www-01.ibm.com/support/docview.wss?uid=swg21670161 Third Party Advisory



http://www-01.ibm.com/support/docview.wss?uid=swg21670161 Broken Link



Changed Reference Type http://www.blackberry.com/btsc/KB35882 Third Party Advisory



http://www.blackberry.com/btsc/KB35882 Broken Link



Changed Reference Type http://www.exploit-db.com/exploits/32745 Third Party Advisory, VDB Entry



http://www.exploit-db.com/exploits/32745 Exploit, Third Party Advisory, VDB Entry



Changed Reference Type http://www.exploit-db.com/exploits/32764 Third Party Advisory, VDB Entry



http://www.exploit-db.com/exploits/32764 Exploit, Third Party Advisory, VDB Entry



Changed Reference Type http://www.innominate.com/data/downloads/manuals/mdm_1.5.2.1_Release_Notes.pdf Third Party Advisory



http://www.innominate.com/data/downloads/manuals/mdm_1.5.2.1_Release_Notes.pdf Not Applicable



Changed Reference Type http://www.securityfocus.com/archive/1/534161/100/0/threaded Third Party Advisory, VDB Entry



http://www.securityfocus.com/archive/1/534161/100/0/threaded Not Applicable



Changed Reference Type http://www.vmware.com/security/advisories/VMSA-2014-0012.html Third Party Advisory



http://www.vmware.com/security/advisories/VMSA-2014-0012.html Not Applicable



Changed Reference Type http://www.websense.com/support/article/kbarticle/Vulnerabilities-resolved-in-TRITON-APX-Version-8-0 Third Party Advisory



http://www.websense.com/support/article/kbarticle/Vulnerabilities-resolved-in-TRITON-APX-Version-8-0 Not Applicable



Changed Reference Type https://bugzilla.redhat.com/show_bug.cgi?id=1084875 Issue Tracking



https://bugzilla.redhat.com/show_bug.cgi?id=1084875 Issue Tracking, Third Party Advisory



Changed Reference Type https://cert-portal.siemens.com/productcert/pdf/ssa-635659.pdf No Types Assigned



https://cert-portal.siemens.com/productcert/pdf/ssa-635659.pdf Third Party Advisory



Changed Reference Type https://filezilla-project.org/versions.php?type=server Third Party Advisory



https://filezilla-project.org/versions.php?type=server Release Notes, Third Party Advisory



Changed Reference Type https://h20566.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?spf_p.tpst=kbDocDisplay&spf_p.prp_kbDocDisplay=wsrp-navigationalState%3DdocId%253Demr_na-c04260637-4%257CdocLocale%253Den_US%257CcalledBy%253DSearch_Result&javax.portlet.begCacheTok=com.vignette.cachetoken&javax.portlet.endCacheTok=com.vignette.cachetoken Third Party Advisory



https://h20566.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?spf_p.tpst=kbDocDisplay&spf_p.prp_kbDocDisplay=wsrp-navigationalState%3DdocId%253Demr_na-c04260637-4%257CdocLocale%253Den_US%257CcalledBy%253DSearch_Result&javax.portlet.begCacheTok=com.vignette.cachetoken&javax.portlet.endCacheTok=com.vignette.cachetoken Broken Link



Changed Reference Type https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d@%3Cdev.tomcat.apache.org%3E Third Party Advisory



https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d@%3Cdev.tomcat.apache.org%3E Mailing List, Patch, Third Party Advisory



Changed Reference Type https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2@%3Cdev.tomcat.apache.org%3E Third Party Advisory



https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2@%3Cdev.tomcat.apache.org%3E Mailing List, Patch, Third Party Advisory



Changed Reference Type https://lists.apache.org/thread.html/re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220@%3Cdev.tomcat.apache.org%3E No Types Assigned



https://lists.apache.org/thread.html/re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220@%3Cdev.tomcat.apache.org%3E Mailing List, Patch, Third Party Advisory



Changed Reference Type https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d@%3Cdev.tomcat.apache.org%3E No Types Assigned



https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d@%3Cdev.tomcat.apache.org%3E Mailing List, Patch, Third Party Advisory



Changed Reference Type https://sku11army.blogspot.com/2020/01/heartbleed-hearts-continue-to-bleed.html No Types Assigned



https://sku11army.blogspot.com/2020/01/heartbleed-hearts-continue-to-bleed.html Exploit, Third Party Advisory



CVE Modified by MITRE 2/13/2020 12:15:23 PM Action Type Old Value New Value Added Reference https://lists.apache.org/thread.html/re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220@%3Cdev.tomcat.apache.org%3E [No Types Assigned]



CVE Modified by MITRE 2/10/2020 10:15:13 AM Action Type Old Value New Value Added Reference https://cert-portal.siemens.com/productcert/pdf/ssa-635659.pdf [No Types Assigned]



CVE Modified by MITRE 2/03/2020 7:15:19 AM Action Type Old Value New Value Added Reference https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d@%3Cdev.tomcat.apache.org%3E [No Types Assigned]



CVE Modified by MITRE 1/25/2020 2:15:11 PM Action Type Old Value New Value Added Reference https://sku11army.blogspot.com/2020/01/heartbleed-hearts-continue-to-bleed.html [No Types Assigned]



Modified Analysis 9/27/2019 2:22:02 PM Action Type Old Value New Value Added CVSS V3.1 NIST AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N



Changed Reference Type http://advisories.mageia.org/MGASA-2014-0165.html No Types Assigned



http://advisories.mageia.org/MGASA-2014-0165.html Third Party Advisory



Changed Reference Type http://blog.fox-it.com/2014/04/08/openssl-heartbleed-bug-live-blog/ No Types Assigned



http://blog.fox-it.com/2014/04/08/openssl-heartbleed-bug-live-blog/ Third Party Advisory



Changed Reference Type http://cogentdatahub.com/ReleaseNotes.html No Types Assigned



http://cogentdatahub.com/ReleaseNotes.html Third Party Advisory



Changed Reference Type http://download.schneider-electric.com/files?p_Doc_Ref=SEVD%202014-119-01 No Types Assigned



http://download.schneider-electric.com/files?p_Doc_Ref=SEVD%202014-119-01 Third Party Advisory



Changed Reference Type http://heartbleed.com/ No Types Assigned



http://heartbleed.com/ Technical Description, Third Party Advisory



Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2014-April/131221.html No Types Assigned



http://lists.fedoraproject.org/pipermail/package-announce/2014-April/131221.html Third Party Advisory



Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2014-April/131291.html No Types Assigned



http://lists.fedoraproject.org/pipermail/package-announce/2014-April/131291.html Third Party Advisory



Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html No Types Assigned



http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html Third Party Advisory



Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2014-04/msg00004.html No Types Assigned



http://lists.opensuse.org/opensuse-security-announce/2014-04/msg00004.html Third Party Advisory



Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2014-04/msg00005.html No Types Assigned



http://lists.opensuse.org/opensuse-security-announce/2014-04/msg00005.html Third Party Advisory



Changed Reference Type http://lists.opensuse.org/opensuse-updates/2014-04/msg00061.html No Types Assigned



http://lists.opensuse.org/opensuse-updates/2014-04/msg00061.html Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139722163017074&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139722163017074&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139757726426985&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139757726426985&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139757819327350&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139757819327350&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139757919027752&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139757919027752&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139758572430452&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139758572430452&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139765756720506&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139765756720506&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139774054614965&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139774054614965&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139774703817488&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139774703817488&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139808058921905&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139808058921905&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139817685517037&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139817685517037&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139817727317190&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139817727317190&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139817782017443&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139817782017443&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139824923705461&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139824923705461&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139824993005633&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139824993005633&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139833395230364&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139833395230364&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139835815211508&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139835815211508&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139835844111589&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139835844111589&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139836085512508&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139836085512508&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139842151128341&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139842151128341&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139843768401936&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139843768401936&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139869720529462&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139869720529462&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139869891830365&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139869891830365&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139889113431619&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139889113431619&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139889295732144&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139889295732144&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139905202427693&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139905202427693&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139905243827825&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139905243827825&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139905295427946&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139905295427946&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139905351928096&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139905351928096&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139905405728262&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139905405728262&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139905458328378&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139905458328378&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139905653828999&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139905653828999&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=139905868529690&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=139905868529690&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=140015787404650&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=140015787404650&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=140075368411126&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=140075368411126&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=140724451518351&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=140724451518351&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=140752315422991&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=140752315422991&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=141287864628122&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=141287864628122&w=2 Third Party Advisory



Changed Reference Type http://marc.info/?l=bugtraq&m=142660345230545&w=2 No Types Assigned



http://marc.info/?l=bugtraq&m=142660345230545&w=2 Third Party Advisory



Changed Reference Type http://public.support.unisys.com/common/public/vulnerability/NVD_Detail_Rpt.aspx?ID=1 No Types Assigned



http://public.support.unisys.com/common/public/vulnerability/NVD_Detail_Rpt.aspx?ID=1 Third Party Advisory



Changed Reference Type http://public.support.unisys.com/common/public/vulnerability/NVD_Detail_Rpt.aspx?ID=3 No Types Assigned



http://public.support.unisys.com/common/public/vulnerability/NVD_Detail_Rpt.aspx?ID=3 Third Party Advisory



Changed Reference Type http://rhn.redhat.com/errata/RHSA-2014-0376.html No Types Assigned



http://rhn.redhat.com/errata/RHSA-2014-0376.html Third Party Advisory



Changed Reference Type http://rhn.redhat.com/errata/RHSA-2014-0377.html No Types Assigned



http://rhn.redhat.com/errata/RHSA-2014-0377.html Third Party Advisory



Changed Reference Type http://rhn.redhat.com/errata/RHSA-2014-0378.html No Types Assigned



http://rhn.redhat.com/errata/RHSA-2014-0378.html Third Party Advisory



Changed Reference Type http://rhn.redhat.com/errata/RHSA-2014-0396.html No Types Assigned



http://rhn.redhat.com/errata/RHSA-2014-0396.html Third Party Advisory



Changed Reference Type http://seclists.org/fulldisclosure/2014/Apr/109 No Types Assigned



http://seclists.org/fulldisclosure/2014/Apr/109 Mailing List, Third Party Advisory



Changed Reference Type http://seclists.org/fulldisclosure/2014/Apr/173 No Types Assigned



http://seclists.org/fulldisclosure/2014/Apr/173 Mailing List, Third Party Advisory



Changed Reference Type http://seclists.org/fulldisclosure/2014/Apr/190 No Types Assigned



http://seclists.org/fulldisclosure/2014/Apr/190 Mailing List, Third Party Advisory



Changed Reference Type http://seclists.org/fulldisclosure/2014/Apr/90 No Types Assigned



http://seclists.org/fulldisclosure/2014/Apr/90 Mailing List, Third Party Advisory



Changed Reference Type http://seclists.org/fulldisclosure/2014/Apr/91 No Types Assigned



http://seclists.org/fulldisclosure/2014/Apr/91 Mailing List, Third Party Advisory



Changed Reference Type http://seclists.org/fulldisclosure/2014/Dec/23 No Types Assigned



http://seclists.org/fulldisclosure/2014/Dec/23 Mailing List, Third Party Advisory



Changed Reference Type http://secunia.com/advisories/59139 No Types Assigned



http://secunia.com/advisories/59139 Third Party Advisory



Changed Reference Type http://secunia.com/advisories/59243 No Types Assigned



http://secunia.com/advisories/59243 Third Party Advisory



Changed Reference Type http://secunia.com/advisories/59347 No Types Assigned



http://secunia.com/advisories/59347 Third Party Advisory



Changed Reference Type http://support.citrix.com/article/CTX140605 No Types Assigned



http://support.citrix.com/article/CTX140605 Third Party Advisory



Changed Reference Type http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140409-heartbleed No Types Assigned



http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140409-heartbleed Third Party Advisory



Changed Reference Type http://www-01.ibm.com/support/docview.wss?uid=isg400001841 No Types Assigned



http://www-01.ibm.com/support/docview.wss?uid=isg400001841 Third Party Advisory



Changed Reference Type http://www-01.ibm.com/support/docview.wss?uid=isg400001843 No Types Assigned



http://www-01.ibm.com/support/docview.wss?uid=isg400001843 Third Party Advisory



Changed Reference Type http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004661 No Types Assigned



http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004661 Third Party Advisory



Changed Reference Type http://www-01.ibm.com/support/docview.wss?uid=swg21670161 No Types Assigned



http://www-01.ibm.com/support/docview.wss?uid=swg21670161 Third Party Advisory



Changed Reference Type http://www.apcmedia.com/salestools/SJHN-7RKGNM/SJHN-7RKGNM_R4_EN.pdf No Types Assigned



http://www.apcmedia.com/salestools/SJHN-7RKGNM/SJHN-7RKGNM_R4_EN.pdf Third Party Advisory



Changed Reference Type http://www.blackberry.com/btsc/KB35882 No Types Assigned



http://www.blackberry.com/btsc/KB35882 Third Party Advisory



Changed Reference Type http://www.debian.org/security/2014/dsa-2896 No Types Assigned



http://www.debian.org/security/2014/dsa-2896 Third Party Advisory



Changed Reference Type http://www.exploit-db.com/exploits/32745 No Types Assigned



http://www.exploit-db.com/exploits/32745 Third Party Advisory, VDB Entry



Changed Reference Type http://www.exploit-db.com/exploits/32764 No Types Assigned



http://www.exploit-db.com/exploits/32764 Third Party Advisory, VDB Entry



Changed Reference Type http://www.f-secure.com/en/web/labs_global/fsc-2014-1 No Types Assigned



http://www.f-secure.com/en/web/labs_global/fsc-2014-1 Third Party Advisory



Changed Reference Type http://www.getchef.com/blog/2014/04/09/chef-server-11-0-12-release/ No Types Assigned



http://www.getchef.com/blog/2014/04/09/chef-server-11-0-12-release/ Third Party Advisory



Changed Reference Type http://www.getchef.com/blog/2014/04/09/chef-server-heartbleed-cve-2014-0160-releases/ No Types Assigned



http://www.getchef.com/blog/2014/04/09/chef-server-heartbleed-cve-2014-0160-releases/ Third Party Advisory



Changed Reference Type http://www.getchef.com/blog/2014/04/09/enterprise-chef-1-4-9-release/ No Types Assigned



http://www.getchef.com/blog/2014/04/09/enterprise-chef-1-4-9-release/ Third Party Advisory



Changed Reference Type http://www.getchef.com/blog/2014/04/09/enterprise-chef-11-1-3-release/ No Types Assigned



http://www.getchef.com/blog/2014/04/09/enterprise-chef-11-1-3-release/ Third Party Advisory



Changed Reference Type http://www.innominate.com/data/downloads/manuals/mdm_1.5.2.1_Release_Notes.pdf No Types Assigned



http://www.innominate.com/data/downloads/manuals/mdm_1.5.2.1_Release_Notes.pdf Third Party Advisory



Changed Reference Type http://www.kb.cert.org/vuls/id/720951 US Government Resource



http://www.kb.cert.org/vuls/id/720951 Third Party Advisory, US Government Resource



Changed Reference Type http://www.kerio.com/support/kerio-control/release-history No Types Assigned



http://www.kerio.com/support/kerio-control/release-history Third Party Advisory



Changed Reference Type http://www.mandriva.com/security/advisories?name=MDVSA-2015:062 No Types Assigned



http://www.mandriva.com/security/advisories?name=MDVSA-2015:062 Third Party Advisory



Changed Reference Type http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html No Types Assigned



http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html Third Party Advisory



Changed Reference Type http://www.oracle.com/technetwork/topics/security/opensslheartbleedcve-2014-0160-2188454.html No Types Assigned



http://www.oracle.com/technetwork/topics/security/opensslheartbleedcve-2014-0160-2188454.html Third Party Advisory



Changed Reference Type http://www.securityfocus.com/archive/1/534161/100/0/threaded No Types Assigned



http://www.securityfocus.com/archive/1/534161/100/0/threaded Third Party Advisory, VDB Entry



Changed Reference Type http://www.securityfocus.com/bid/66690 No Types Assigned



http://www.securityfocus.com/bid/66690 Third Party Advisory, VDB Entry



Changed Reference Type http://www.securitytracker.com/id/1030026 No Types Assigned



http://www.securitytracker.com/id/1030026 Third Party Advisory, VDB Entry



Changed Reference Type http://www.securitytracker.com/id/1030074 No Types Assigned



http://www.securitytracker.com/id/1030074 Third Party Advisory, VDB Entry



Changed Reference Type http://www.securitytracker.com/id/1030077 No Types Assigned



http://www.securitytracker.com/id/1030077 Third Party Advisory, VDB Entry



Changed Reference Type http://www.securitytracker.com/id/1030078 No Types Assigned



http://www.securitytracker.com/id/1030078 Third Party Advisory, VDB Entry



Changed Reference Type http://www.securitytracker.com/id/1030079 No Types Assigned



http://www.securitytracker.com/id/1030079 Third Party Advisory, VDB Entry



Changed Reference Type http://www.securitytracker.com/id/1030080 No Types Assigned



http://www.securitytracker.com/id/1030080 Third Party Advisory, VDB Entry



Changed Reference Type http://www.securitytracker.com/id/1030081 No Types Assigned



http://www.securitytracker.com/id/1030081 Third Party Advisory, VDB Entry



Changed Reference Type http://www.securitytracker.com/id/1030082 No Types Assigned



http://www.securitytracker.com/id/1030082 Third Party Advisory, VDB Entry



Changed Reference Type http://www.splunk.com/view/SP-CAAAMB3 No Types Assigned



http://www.splunk.com/view/SP-CAAAMB3 Third Party Advisory



Changed Reference Type http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20160512_00 No Types Assigned



http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20160512_00 Third Party Advisory



Changed Reference Type http://www.ubuntu.com/usn/USN-2165-1 No Types Assigned



http://www.ubuntu.com/usn/USN-2165-1 Third Party Advisory



Changed Reference Type http://www.us-cert.gov/ncas/alerts/TA14-098A US Government Resource



http://www.us-cert.gov/ncas/alerts/TA14-098A Third Party Advisory, US Government Resource



Changed Reference Type http://www.vmware.com/security/advisories/VMSA-2014-0012.html No Types Assigned



http://www.vmware.com/security/advisories/VMSA-2014-0012.html Third Party Advisory



Changed Reference Type http://www.websense.com/support/article/kbarticle/Vulnerabilities-resolved-in-TRITON-APX-Version-8-0 No Types Assigned



http://www.websense.com/support/article/kbarticle/Vulnerabilities-resolved-in-TRITON-APX-Version-8-0 Third Party Advisory



Changed Reference Type https://blog.torproject.org/blog/openssl-bug-cve-2014-0160 No Types Assigned



https://blog.torproject.org/blog/openssl-bug-cve-2014-0160 Third Party Advisory



Changed Reference Type https://bugzilla.redhat.com/show_bug.cgi?id=1084875 No Types Assigned



https://bugzilla.redhat.com/show_bug.cgi?id=1084875 Issue Tracking



Changed Reference Type https://code.google.com/p/mod-spdy/issues/detail?id=85 No Types Assigned



https://code.google.com/p/mod-spdy/issues/detail?id=85 Third Party Advisory



Changed Reference Type https://filezilla-project.org/versions.php?type=server No Types Assigned



https://filezilla-project.org/versions.php?type=server Third Party Advisory



Changed Reference Type https://gist.github.com/chapmajs/10473815 No Types Assigned



https://gist.github.com/chapmajs/10473815 Third Party Advisory



Changed Reference Type https://h20566.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?spf_p.tpst=kbDocDisplay&spf_p.prp_kbDocDisplay=wsrp-navigationalState%3DdocId%253Demr_na-c04260637-4%257CdocLocale%253Den_US%257CcalledBy%253DSearch_Result&javax.portlet.begCacheTok=com.vignette.cachetoken&javax.portlet.endCacheTok=com.vignette.cachetoken No Types Assigned



https://h20566.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?spf_p.tpst=kbDocDisplay&spf_p.prp_kbDocDisplay=wsrp-navigationalState%3DdocId%253Demr_na-c04260637-4%257CdocLocale%253Den_US%257CcalledBy%253DSearch_Result&javax.portlet.begCacheTok=com.vignette.cachetoken&javax.portlet.endCacheTok=com.vignette.cachetoken Third Party Advisory



Changed Reference Type https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d@%3Cdev.tomcat.apache.org%3E No Types Assigned



https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d@%3Cdev.tomcat.apache.org%3E Third Party Advisory



Changed Reference Type https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2@%3Cdev.tomcat.apache.org%3E No Types Assigned



https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2@%3Cdev.tomcat.apache.org%3E Third Party Advisory



Changed Reference Type https://lists.balabit.hu/pipermail/syslog-ng-announce/2014-April/000184.html No Types Assigned



https://lists.balabit.hu/pipermail/syslog-ng-announce/2014-April/000184.html Third Party Advisory



Changed Reference Type https://support.f5.com/kb/en-us/solutions/public/15000/100/sol15159.html No Types Assigned



https://support.f5.com/kb/en-us/solutions/public/15000/100/sol15159.html Third Party Advisory



Changed Reference Type https://support.f5.com/kb/en-us/solutions/public/15000/100/sol15159.html?sr=36517217 No Types Assigned



https://support.f5.com/kb/en-us/solutions/public/15000/100/sol15159.html?sr=36517217 Third Party Advisory



Changed Reference Type https://www.cert.fi/en/reports/2014/vulnerability788210.html No Types Assigned



https://www.cert.fi/en/reports/2014/vulnerability788210.html Third Party Advisory



Changed Reference Type https://www.mitel.com/en-ca/support/security-advisories/mitel-product-security-advisory-17-0008 No Types Assigned



https://www.mitel.com/en-ca/support/security-advisories/mitel-product-security-advisory-17-0008 Third Party Advisory



CVE Modified by MITRE 3/25/2019 7:34:05 AM Action Type Old Value New Value Added Reference https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2@%3Cdev.tomcat.apache.org%3E [No Types Assigned]



CVE Modified by MITRE 3/21/2019 11:54:49 AM Action Type Old Value New Value Added Reference https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d@%3Cdev.tomcat.apache.org%3E [No Types Assigned]



CVE Modified by MITRE 10/23/2018 5:29:00 PM Action Type Old Value New Value Added Reference https://www.mitel.com/en-ca/support/security-advisories/mitel-product-security-advisory-17-0008 [No Types Assigned]



CVE Modified by MITRE 10/09/2018 3:36:18 PM Action Type Old Value New Value Added Reference http://www.securityfocus.com/archive/1/534161/100/0/threaded [No Types Assigned]



Removed Reference http://www.securityfocus.com/archive/1/archive/1/534161/100/0/threaded [No Types Assigned]



CVE Modified by MITRE 12/15/2017 9:29:03 PM Action Type Old Value New Value Added Reference http://lists.opensuse.org/opensuse-updates/2014-04/msg00061.html [No Types Assigned]



Added Reference http://www.ubuntu.com/usn/USN-2165-1 [No Types Assigned]



CVE Modified by MITRE 11/14/2017 9:29:02 PM Action Type Old Value New Value Added Reference http://support.citrix.com/article/CTX140605 [No Types Assigned]



Added Reference https://support.f5.com/kb/en-us/solutions/public/15000/100/sol15159.html [No Types Assigned]



CVE Modified by MITRE 1/06/2017 9:59:17 PM Action Type Old Value New Value Added Reference http://download.schneider-electric.com/files?p_Doc_Ref=SEVD%202014-119-01 [No Types Assigned]



Added Reference http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html [No Types Assigned]



Added Reference http://secunia.com/advisories/59139 [No Types Assigned]



Added Reference http://secunia.com/advisories/59243 [No Types Assigned]



Added Reference http://secunia.com/advisories/59347 [No Types Assigned]



Added Reference http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004661 [No Types Assigned]



Added Reference http://www.apcmedia.com/salestools/SJHN-7RKGNM/SJHN-7RKGNM_R4_EN.pdf [No Types Assigned]



Added Reference http://www.innominate.com/data/downloads/manuals/mdm_1.5.2.1_Release_Notes.pdf [No Types Assigned]



CVE Modified by MITRE 11/30/2016 9:59:07 PM Action Type Old Value New Value Added Reference http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20160512_00 [No Types Assigned]



CVE Modified by Source 8/22/2016 10:6:46 PM Action Type Old Value New Value Added Reference http://marc.info/?l=bugtraq&m=139757726426985&w=2



Added Reference http://marc.info/?l=bugtraq&m=139757819327350&w=2



Added Reference http://marc.info/?l=bugtraq&m=139757919027752&w=2



Added Reference http://marc.info/?l=bugtraq&m=139758572430452&w=2



Added Reference http://marc.info/?l=bugtraq&m=139765756720506&w=2



Added Reference http://marc.info/?l=bugtraq&m=139774054614965&w=2



Added Reference http://marc.info/?l=bugtraq&m=139774703817488&w=2



Added Reference http://marc.info/?l=bugtraq&m=139808058921905&w=2



Added Reference http://marc.info/?l=bugtraq&m=139817685517037&w=2



Added Reference http://marc.info/?l=bugtraq&m=139817727317190&w=2



Added Reference http://marc.info/?l=bugtraq&m=139817782017443&w=2



Added Reference http://marc.info/?l=bugtraq&m=139824923705461&w=2



Added Reference http://marc.info/?l=bugtraq&m=139824993005633&w=2



Added Reference http://marc.info/?l=bugtraq&m=139833395230364&w=2



Added Reference http://marc.info/?l=bugtraq&m=139835815211508&w=2



Added Reference http://marc.info/?l=bugtraq&m=139835844111589&w=2



Added Reference http://marc.info/?l=bugtraq&m=139836085512508&w=2



Added Reference http://marc.info/?l=bugtraq&m=139842151128341&w=2



Added Reference http://marc.info/?l=bugtraq&m=139843768401936&w=2



Added Reference http://marc.info/?l=bugtraq&m=139869720529462&w=2



Added Reference http://marc.info/?l=bugtraq&m=139889295732144&w=2



Added Reference http://marc.info/?l=bugtraq&m=139905202427693&w=2



Added Reference http://marc.info/?l=bugtraq&m=139905243827825&w=2



Added Reference http://marc.info/?l=bugtraq&m=139905295427946&w=2



Added Reference http://marc.info/?l=bugtraq&m=139905351928096&w=2



Added Reference http://marc.info/?l=bugtraq&m=139905405728262&w=2



Added Reference http://marc.info/?l=bugtraq&m=139905653828999&w=2



Added Reference http://marc.info/?l=bugtraq&m=139905868529690&w=2



Added Reference http://marc.info/?l=bugtraq&m=140015787404650&w=2



Added Reference http://marc.info/?l=bugtraq&m=140075368411126&w=2



Added Reference http://marc.info/?l=bugtraq&m=140724451518351&w=2



Added Reference http://marc.info/?l=bugtraq&m=140752315422991&w=2



CVE Translated 2/17/2016 4:45:08 PM Action Type Old Value New Value Added Translation Las implementaciones de (1) TLS y (2) DTLS en OpenSSL 1.0.1 en versiones anteriores a 1.0.1g no manejan adecuadamente paquetes Heartbeat Extension, lo que permite a atacantes remotos obtener información sensible desde la memoria de proceso a través de paquetes manipulados que desencadenan una sobrelectura del buffer, según lo demostrado mediante la lectura de claves privadas, relacionado con d1_both.c y t1_lib.c, también conocido como bug Heartbleed.



Removed Translation Las implementaciones (1) TLS y (2) DTLS en OpenSSL 1.0.1 anterior a 1.0.1g no manejan debidamente paquetes Heartbeart Extension, lo que permite a atacantes remotos obtener información sensible de la memoria de proceso a través de paquetes manipulados que provocan una sobrelectura de buffer, tal y como fue demostrado mediante la lectura de claves privadas, relacionado con d1_both.c y t1_lib.c, también conocido como el bug Heartbleed



CVE Modified by Source 3/31/2015 9:59:12 PM Action Type Old Value New Value Added Reference http://www.mandriva.com/security/advisories?name=MDVSA-2015:062



CVE Modified by Source 3/30/2015 9:59:09 PM Action Type Old Value New Value Added Reference http://www.websense.com/support/article/kbarticle/Vulnerabilities-resolved-in-TRITON-APX-Version-8-0



CVE Modified by Source 3/23/2015 9:59:57 PM Action Type Old Value New Value Added Reference http://marc.info/?l=bugtraq&m=142660345230545&w=2



CVE Modified by Source 12/11/2014 10:0:34 PM Action Type Old Value New Value Added Reference http://seclists.org/fulldisclosure/2014/Dec/23



Added Reference http://www.securityfocus.com/archive/1/archive/1/534161/100/0/threaded



Added Reference http://www.vmware.com/security/advisories/VMSA-2014-0012.html



CVE Modified by Source 11/18/2014 9:59:22 PM Action Type Old Value New Value Added Reference http://marc.info/?l=bugtraq&m=141287864628122&w=2



Initial CVE Analysis 4/24/2014 7:52:20 AM Action Type Old Value New Value Quick Info CVE Dictionary Entry:

CVE-2014-0160

NVD Published Date:

04/07/2014

NVD Last Modified:

07/28/2020

Source:

MITRE

