CVE-2014-9365
Description
The HTTP clients in the (1) httplib, (2) urllib, (3) urllib2, and (4) xmlrpclib libraries in CPython (aka Python) 2.x before 2.7.9 and 3.x before 3.4.3, when accessing an HTTPS URL, do not (a) check the certificate against a trust store or verify that the server hostname matches a domain name in the subjects (b) Common Name or (c) subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.
Risk Information
Base Score
4.7
MODERATE
Vector
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS Score
Exploitation Probability
2.127
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple Vulnerabilities are affected in Python 3.3.6 | Windows |
| Multiple vulnerabilities are fixed in OS X Yosemite 10.10.5 Update | Mac |
| Multiple vulnerabilities are fixed in OS X Yosemite 10.10.5 Combo Update | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.0 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.0.1 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.1 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.1.1 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.1.2 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.1.3 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.2 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.2.1 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.2.2 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.2.3 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.3.1 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.3.2 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.3.3 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.3.4 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.3.5 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.4.1 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.4.2 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.4.3 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.4.4 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.5.1 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.5.2 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.3.7 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.4.6 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.6.5 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 3.1 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 3.2 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.5.3 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.5.4 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.6.1 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.6.4 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.6.6 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.6.7 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.7.1 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 3.0 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 3.0.1 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 3.1.1 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 3.1.2 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 3.1.3 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.6.2 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.6.2150 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.6.3 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.6.6150 | Mac |
| Vulnerabilities CVE-2011-4944,CVE-2013-4238,CVE-2014-1912,CVE-2014-9365 are affected in Python for MAC 2.6.8 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.7.1150 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.7.2 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.7.2150 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 2.7.3 | Mac |
| Vulnerabilities CVE-2011-4944,CVE-2013-4238,CVE-2014-1912,CVE-2014-9365 are affected in Python for MAC 3.1.2150 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 3.1.4 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 3.1.5 | Mac |
| Vulnerabilities CVE-2012-0845,CVE-2012-1150,CVE-2014-1912,CVE-2014-9365 are affected in Python for MAC 2.5.150 | Mac |
| Vulnerabilities CVE-2012-0845,CVE-2012-1150,CVE-2014-1912,CVE-2014-9365 are affected in Python for MAC 2.5.6 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 3.2.2150 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 3.2.3 | Mac |
| Vulnerabilities CVE-2013-4238,CVE-2013-7040,CVE-2014-1912,CVE-2014-9365 are affected in Python for MAC 3.3 | Mac |
| Vulnerabilities CVE-2013-4238,CVE-2014-1912,CVE-2014-9365 are affected in Python for MAC 3.4 | Mac |
| Vulnerabilities CVE-2013-7040,CVE-2014-1912,CVE-2014-7185,CVE-2014-9365 are affected in Python for MAC 2.7.4 | Mac |
| Vulnerabilities CVE-2013-7040,CVE-2014-1912,CVE-2014-7185,CVE-2014-9365 are affected in Python for MAC 2.7.5 | Mac |
| Vulnerabilities CVE-2013-7040,CVE-2014-1912,CVE-2014-7185,CVE-2014-9365 are affected in Python for MAC 2.7.6 | Mac |
| Vulnerabilities CVE-2013-7040,CVE-2014-9365 are affected in Python for MAC 2.7.7 | Mac |
| Vulnerabilities CVE-2013-7040,CVE-2014-1912,CVE-2014-9365,CVE-2016-5636 are affected in Python for MAC 3.2.0 | Mac |
| Vulnerabilities CVE-2013-7040,CVE-2014-1912,CVE-2014-9365,CVE-2016-5636 are affected in Python for MAC 3.2.1 | Mac |
| Vulnerabilities CVE-2013-7040,CVE-2014-1912,CVE-2014-9365,CVE-2016-5636 are affected in Python for MAC 3.2.2 | Mac |
| Vulnerabilities CVE-2013-7040,CVE-2014-1912,CVE-2014-9365,CVE-2016-5636 are affected in Python for MAC 3.2.4 | Mac |
| Vulnerabilities CVE-2013-7040,CVE-2014-1912,CVE-2014-9365,CVE-2016-5636 are affected in Python for MAC 3.2.5 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 3.3.0 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 3.3.1 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 3.3.2 | Mac |
| Multiple Vulnerabilities are affected in Python for MAC 3.3.3 | Mac |
| Vulnerabilities CVE-2013-7040,CVE-2014-9365,CVE-2016-5636 are affected in Python for MAC 3.3.4 | Mac |
| Vulnerabilities CVE-2013-7040,CVE-2014-9365,CVE-2016-5636 are affected in Python for MAC 3.3.5 | Mac |
| Vulnerabilities CVE-2014-9365 are affected in Python for MAC 2.7.8 | Mac |
| Vulnerabilities CVE-2014-9365,CVE-2016-5636 are affected in Python for MAC 3.2.6 | Mac |
| Vulnerabilities CVE-2014-9365,CVE-2016-5636 are affected in Python for MAC 3.3.6 | Mac |
| Vulnerabilities CVE-2014-9365,CVE-2016-5636 are affected in Python for MAC 3.4.0 | Mac |
| Vulnerabilities CVE-2014-9365,CVE-2016-5636 are affected in Python for MAC 3.4.1 | Mac |
| Vulnerabilities CVE-2014-9365,CVE-2016-5636 are affected in Python for MAC 3.4.2 | Mac |
| Vulnerabilities CVE-2013-4238,CVE-2013-7040,CVE-2014-1912,CVE-2014-9365 are affected in Python for MAC 3.3 | Mac |
| Vulnerabilities CVE-2014-9365 are affected in Python for MAC 2.7.8 | Mac |
| Vulnerabilities CVE-2013-7040,CVE-2014-1912,CVE-2014-9365,CVE-2016-5636 are affected in Python for MAC 3.2.5 | Mac |
| Vulnerabilities CVE-2013-7040,CVE-2014-1912,CVE-2014-9365,CVE-2016-5636 are affected in Python for MAC 3.2.0 | Mac |
| Vulnerabilities CVE-2013-7040,CVE-2014-1912,CVE-2014-9365,CVE-2016-5636 are affected in Python for MAC 3.2.1 | Mac |
| Vulnerabilities CVE-2013-7040,CVE-2014-1912,CVE-2014-9365,CVE-2016-5636 are affected in Python for MAC 3.2.2 | Mac |
| Vulnerabilities CVE-2013-7040,CVE-2014-1912,CVE-2014-9365,CVE-2016-5636 are affected in Python for MAC 3.2.4 | Mac |
| Vulnerabilities CVE-2013-7040,CVE-2014-1912,CVE-2014-7185,CVE-2014-9365 are affected in Python for MAC 2.7.4 | Mac |
| Vulnerabilities CVE-2013-7040,CVE-2014-1912,CVE-2014-7185,CVE-2014-9365 are affected in Python for MAC 2.7.5 | Mac |
| Vulnerabilities CVE-2013-7040,CVE-2014-1912,CVE-2014-7185,CVE-2014-9365 are affected in Python for MAC 2.7.6 | Mac |
| Vulnerabilities CVE-2013-7040,CVE-2014-9365 are affected in Python for MAC 2.7.7 | Mac |
| Vulnerabilities CVE-2013-7040,CVE-2014-9365,CVE-2016-5636 are affected in Python for MAC 3.3.4 | Mac |
| Vulnerabilities CVE-2013-7040,CVE-2014-9365,CVE-2016-5636 are affected in Python for MAC 3.3.5 | Mac |
| Vulnerabilities CVE-2014-9365,CVE-2016-5636 are affected in Python for MAC 3.2.6 | Mac |
| Vulnerabilities CVE-2014-9365,CVE-2016-5636 are affected in Python for MAC 3.3.6 | Mac |
| Vulnerabilities CVE-2014-9365,CVE-2016-5636 are affected in Python for MAC 3.4.0 | Mac |
| Vulnerabilities CVE-2014-9365,CVE-2016-5636 are affected in Python for MAC 3.4.1 | Mac |
| Vulnerabilities CVE-2014-9365,CVE-2016-5636 are affected in Python for MAC 3.4.2 | Mac |
| (RHSA-2017:1868) Moderate: python security and bug fix update python-2.7.5-58.el7.x86_64.rpm | Linux |
| (RHSA-2017:1868) Moderate: python security and bug fix update python-debug-2.7.5-58.el7.x86_64.rpm | Linux |
| (RHSA-2017:1868) Moderate: python security and bug fix update python-devel-2.7.5-58.el7.x86_64.rpm | Linux |
| (RHSA-2017:1868) Moderate: python security and bug fix update python-libs-2.7.5-58.el7.i686.rpm | Linux |
| (RHSA-2017:1868) Moderate: python security and bug fix update python-libs-2.7.5-58.el7.x86_64.rpm | Linux |
| (RHSA-2017:1868) Moderate: python security and bug fix update python-test-2.7.5-58.el7.x86_64.rpm | Linux |
| (RHSA-2017:1868) Moderate: python security and bug fix update python-tools-2.7.5-58.el7.x86_64.rpm | Linux |
| (RHSA-2017:1868) Moderate: python security and bug fix update tkinter-2.7.5-58.el7.x86_64.rpm | Linux |
| CVE-2014-9365 | NCM |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-600354 | OS X Yosemite 10.10.5 Update |
| PATCH-600458 | OS X Yosemite 10.10.5 Combo Update |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
| PATCH-611773 | Python for MAC 3.13.7 |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234