[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2014-3577":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T14:55:33.319Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":18,"aliases":33,"duplicate_of":9,"upstream":35,"downstream":36,"duplicates":85,"related":86,"reserved_at":9,"published_at":95,"modified_at":96,"state":97,"summary":98,"references_raw":106,"kevs":364,"epss":365,"epss_history":368,"metrics":629,"affected":634},"CVE-2014-3577","org.apache.http.conn.ssl.AbstractVerifier in Apache HttpComponents HttpClient before 4.3.5 and HttpAsyncClient before 4.0.2 does not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via a \"CN=\" string in a field in the distinguished name (DN) of a certificate, as demonstrated by the \"foo,CN=www.apache.org\" string in the O field.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":9,"likelihood_of_exploit":9,"capec":17},"NVD-CWE-OTHER","Other","NVD uses this CWE ID when the weakness does not map to any existing CWE entry.","placeholder","NVD-Reserved",[],[19,28],{"_key":20,"name":21,"source":22,"url":23,"maturity":24,"reliability_score":25,"verified":26,"type":9,"platforms":27,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_F21D0489EF47CC0E","Exploit Reference (packetstormsecurity.com)","reference","http://packetstormsecurity.com/files/127913/Apache-HttpComponents-Man-In-The-Middle.html","unknown",0.2,false,[],{"_key":29,"name":30,"source":22,"url":31,"maturity":24,"reliability_score":25,"verified":26,"type":9,"platforms":32,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_24777E2C2531D6D5","Exploit Reference (seclists.org)","http://seclists.org/fulldisclosure/2014/Aug/48",[],[34],"GHSA-cfh5-3ghh-wfjx",[],[37,39,41,43,45,47,49,51,53,55,57,59,61,63,65,67,69,71,73,75,77,79,81,83],{"_key":38},"SUSE-SU-2020:3149-1",{"_key":40},"SUSE-SU-2020:3151-1",{"_key":42},"SUSE-SU-2020:3152-1",{"_key":44},"UBUNTU-CVE-2014-3577",{"_key":46},"USN-2769-1",{"_key":48},"OPENSUSE-SU-2020:1873-1",{"_key":50},"OPENSUSE-SU-2020:1875-1",{"_key":52},"OPENSUSE-SU-2024:10621-1",{"_key":54},"DLA-222-1",{"_key":56},"MGASA-2014-0348",{"_key":58},"MGASA-2014-0557",{"_key":60},"DEBIAN-CVE-2014-3577",{"_key":62},"RHSA-2014:1082",{"_key":64},"RHSA-2014:1146",{"_key":66},"RHSA-2014:1162",{"_key":68},"RHSA-2014:1166",{"_key":70},"RHSA-2014:1320",{"_key":72},"RHSA-2014:1321",{"_key":74},"RHSA-2014:1833",{"_key":76},"RHSA-2014:1834",{"_key":78},"RHSA-2014:2019",{"_key":80},"RHSA-2015:0158",{"_key":82},"RHSA-2016:1773",{"_key":84},"RHSA-2022:0055",[],[87,88,89,90,91,92,93,94],{"_key":38},{"_key":40},{"_key":42},{"_key":48},{"_key":50},{"_key":52},{"_key":56},{"_key":58},"2014-08-21T00:00:00.000Z","2024-08-06T10:50:17.592Z","Modified",{"cisa_kev":26,"cisa_ransomware":26,"cisa_vendor":9,"epss_severity":99,"epss_score":100,"severity":101,"severity_score":102,"severity_version":103,"severity_source":104,"severity_vector":105,"severity_status":97},"low",0.01368,"medium",5.8,"v2.0","nvd","AV:N/AC:M/Au:N/C:P/I:P/A:N",[107,116,120,124,130,134,138,142,146,150,154,158,162,166,170,174,178,182,186,190,194,198,202,206,210,214,218,222,226,230,234,238,242,246,250,254,258,262,266,270,274,278,282,286,290,294,298,302,307,311,315,319,323,327,331,335,339,343,347,351,355,360],{"url":108,"sources":109,"tags":112},"http://rhn.redhat.com/errata/RHSA-2014-1891.html",[110,104,111],"cve.org","osv_maven",[113,114,115],"Vendor Advisory","Third Party Advisory","WEB",{"url":117,"sources":118,"tags":119},"http://rhn.redhat.com/errata/RHSA-2015-0765.html",[110,104,111],[113,114,115],{"url":121,"sources":122,"tags":123},"https://access.redhat.com/solutions/1165533",[110,104,111],[114,115],{"url":125,"sources":126,"tags":127},"http://www.osvdb.org/110143",[110,104],[128,129],"VDB Entry","Broken Link",{"url":131,"sources":132,"tags":133},"http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html",[110,104,111],[115],{"url":135,"sources":136,"tags":137},"http://rhn.redhat.com/errata/RHSA-2015-0675.html",[110,104,111],[113,114,115],{"url":139,"sources":140,"tags":141},"http://secunia.com/advisories/60713",[110,104],[114],{"url":23,"sources":143,"tags":144},[110,104,111],[145,114,128,115],"Exploit",{"url":147,"sources":148,"tags":149},"http://rhn.redhat.com/errata/RHSA-2015-0720.html",[110,104,111],[113,114,115],{"url":151,"sources":152,"tags":153},"http://rhn.redhat.com/errata/RHSA-2014-1166.html",[110,104,111],[113,114,115],{"url":155,"sources":156,"tags":157},"http://rhn.redhat.com/errata/RHSA-2015-1888.html",[110,104,111],[113,114,115],{"url":159,"sources":160,"tags":161},"http://rhn.redhat.com/errata/RHSA-2014-1833.html",[110,104,111],[113,114,115],{"url":163,"sources":164,"tags":165},"http://rhn.redhat.com/errata/RHSA-2015-0850.html",[110,104,111],[113,114,115],{"url":167,"sources":168,"tags":169},"http://rhn.redhat.com/errata/RHSA-2015-0158.html",[110,104,111],[113,114,115],{"url":171,"sources":172,"tags":173},"http://rhn.redhat.com/errata/RHSA-2014-1834.html",[110,104,111],[113,114,115],{"url":175,"sources":176,"tags":177},"http://secunia.com/advisories/60466",[110,104],[114],{"url":179,"sources":180,"tags":181},"http://rhn.redhat.com/errata/RHSA-2015-0125.html",[110,104,111],[113,114,115],{"url":183,"sources":184,"tags":185},"http://rhn.redhat.com/errata/RHSA-2015-1176.html",[110,104,111],[113,114,115],{"url":187,"sources":188,"tags":189},"http://rhn.redhat.com/errata/RHSA-2016-1931.html",[110,104,111],[113,114,115],{"url":191,"sources":192,"tags":193},"http://rhn.redhat.com/errata/RHSA-2014-1146.html",[110,104,111],[113,114,115],{"url":195,"sources":196,"tags":197},"http://rhn.redhat.com/errata/RHSA-2015-1177.html",[110,104,111],[113,114,115],{"url":199,"sources":200,"tags":201},"http://www.securityfocus.com/bid/69258",[110,104],[128,114],{"url":203,"sources":204,"tags":205},"http://rhn.redhat.com/errata/RHSA-2014-1892.html",[110,104,111],[113,114,115],{"url":207,"sources":208,"tags":209},"http://rhn.redhat.com/errata/RHSA-2015-0851.html",[110,104,111],[113,114,115],{"url":211,"sources":212,"tags":213},"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05103564",[110,104],[114],{"url":215,"sources":216,"tags":217},"http://rhn.redhat.com/errata/RHSA-2014-1835.html",[110,104,111],[113,114,115],{"url":219,"sources":220,"tags":221},"http://www.securitytracker.com/id/1030812",[110,104],[128,114],{"url":223,"sources":224,"tags":225},"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05363782",[110,104],[114],{"url":227,"sources":228,"tags":229},"http://www.ubuntu.com/usn/USN-2769-1",[110,104,111],[113,114,115],{"url":231,"sources":232,"tags":233},"http://secunia.com/advisories/60589",[110,104],[114],{"url":235,"sources":236,"tags":237},"http://rhn.redhat.com/errata/RHSA-2014-1836.html",[110,104,111],[113,114,115],{"url":239,"sources":240,"tags":241},"https://exchange.xforce.ibmcloud.com/vulnerabilities/95327",[110,104,111],[128,114,115],{"url":31,"sources":243,"tags":244},[110,104,111],[245,145,114,115],"Mailing List",{"url":247,"sources":248,"tags":249},"http://rhn.redhat.com/errata/RHSA-2016-1773.html",[110,104,111],[113,114,115],{"url":251,"sources":252,"tags":253},"https://lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442%40%3Cdev.drill.apache.org%3E",[110,104],[245],{"url":255,"sources":256,"tags":257},"https://lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f%40%3Cdev.drill.apache.org%3E",[110,104],[245],{"url":259,"sources":260,"tags":261},"https://lists.apache.org/thread.html/f9bc3e55f4e28d1dcd1a69aae6d53e609a758e34d2869b4d798e13cc%40%3Cissues.drill.apache.org%3E",[110,104],[245],{"url":263,"sources":264,"tags":265},"https://lists.apache.org/thread.html/rc774278135816e7afc943dc9fc78eb0764f2c84a2b96470a0187315c%40%3Ccommits.cxf.apache.org%3E",[110,104],[245],{"url":267,"sources":268,"tags":269},"https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf%40%3Ccommits.cxf.apache.org%3E",[110,104],[245],{"url":271,"sources":272,"tags":273},"https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4%40%3Ccommits.cxf.apache.org%3E",[110,104],[245],{"url":275,"sources":276,"tags":277},"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00032.html",[110,104,111],[113,115],{"url":279,"sources":280,"tags":281},"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00033.html",[110,104,111],[113,115],{"url":283,"sources":284,"tags":285},"https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6%40%3Ccommits.cxf.apache.org%3E",[110,104],[245],{"url":287,"sources":288,"tags":289},"https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4%40%3Ccommits.cxf.apache.org%3E",[110,104],[245],{"url":291,"sources":292,"tags":293},"https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e%40%3Ccommits.cxf.apache.org%3E",[110,104],[245],{"url":295,"sources":296,"tags":297},"http://www.openwall.com/lists/oss-security/2021/10/06/1",[110,104,111],[245,115],{"url":299,"sources":300,"tags":301},"https://security.netapp.com/advisory/ntap-20231027-0003/",[110,104],[],{"url":303,"sources":304,"tags":305},"https://nvd.nist.gov/vuln/detail/CVE-2014-3577",[111],[306],"Advisory",{"url":308,"sources":309,"tags":310},"https://github.com/apache/httpcomponents-client/commit/51cc67567765d67f878f0dcef61b5ded454d3122",[111],[115],{"url":312,"sources":313,"tags":314},"https://svn.apache.org/viewvc?view=revision&revision=1614064",[111],[115],{"url":316,"sources":317,"tags":318},"https://security.netapp.com/advisory/ntap-20231027-0003",[111],[115],{"url":320,"sources":321,"tags":322},"https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4@%3Ccommits.cxf.apache.org%3E",[111],[115],{"url":324,"sources":325,"tags":326},"https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e@%3Ccommits.cxf.apache.org%3E",[111],[115],{"url":328,"sources":329,"tags":330},"https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4@%3Ccommits.cxf.apache.org%3E",[111],[115],{"url":332,"sources":333,"tags":334},"https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6@%3Ccommits.cxf.apache.org%3E",[111],[115],{"url":336,"sources":337,"tags":338},"https://lists.apache.org/thread.html/rc774278135816e7afc943dc9fc78eb0764f2c84a2b96470a0187315c@%3Ccommits.cxf.apache.org%3E",[111],[115],{"url":340,"sources":341,"tags":342},"https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf@%3Ccommits.cxf.apache.org%3E",[111],[115],{"url":344,"sources":345,"tags":346},"https://lists.apache.org/thread.html/f9bc3e55f4e28d1dcd1a69aae6d53e609a758e34d2869b4d798e13cc@%3Cissues.drill.apache.org%3E",[111],[115],{"url":348,"sources":349,"tags":350},"https://lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442@%3Cdev.drill.apache.org%3E",[111],[115],{"url":352,"sources":353,"tags":354},"https://lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f@%3Cdev.drill.apache.org%3E",[111],[115],{"url":356,"sources":357,"tags":358},"https://github.com/apache/httpcomponents-client",[111],[359],"PACKAGE",{"url":361,"sources":362,"tags":363},"https://github.com/advisories/GHSA-cfh5-3ghh-wfjx",[111],[306],[],{"date":366,"score":100,"percentile":367},"2026-06-04",0.8054,[369,373,376,379,382,385,388,391,394,397,400,403,406,409,412,415,418,421,424,427,430,432,435,438,441,444,447,449,453,456,459,461,464,467,470,473,476,479,482,485,487,489,492,495,498,501,504,507,510,513,515,518,521,524,527,530,533,536,539,542,545,548,551,553,556,559,562,565,568,570,573,576,578,581,584,587,589,591,594,597,600,603,606,609,612,614,617,620,623,626],{"date":370,"score":371,"percentile":372},"2025-11-04",0.01367,0.7957,{"date":374,"score":371,"percentile":375},"2025-11-05",0.79571,{"date":377,"score":371,"percentile":378},"2025-11-06",0.79574,{"date":380,"score":371,"percentile":381},"2025-11-07",0.79586,{"date":383,"score":371,"percentile":384},"2025-11-08",0.79593,{"date":386,"score":371,"percentile":387},"2025-11-09",0.7959,{"date":389,"score":371,"percentile":390},"2025-11-10",0.7958,{"date":392,"score":371,"percentile":393},"2025-11-11",0.79583,{"date":395,"score":371,"percentile":396},"2025-11-12",0.79598,{"date":398,"score":371,"percentile":399},"2025-11-13",0.79607,{"date":401,"score":371,"percentile":402},"2025-11-14",0.79613,{"date":404,"score":371,"percentile":405},"2025-11-15",0.79611,{"date":407,"score":371,"percentile":408},"2025-11-16",0.79612,{"date":410,"score":371,"percentile":411},"2025-11-17",0.7961,{"date":413,"score":371,"percentile":414},"2025-11-18",0.7854,{"date":416,"score":371,"percentile":417},"2025-11-19",0.78549,{"date":419,"score":371,"percentile":420},"2025-11-20",0.78557,{"date":422,"score":371,"percentile":423},"2025-11-21",0.7963,{"date":425,"score":371,"percentile":426},"2025-11-22",0.79634,{"date":428,"score":371,"percentile":429},"2025-11-23",0.79626,{"date":431,"score":371,"percentile":429},"2025-11-24",{"date":433,"score":371,"percentile":434},"2025-11-25",0.79627,{"date":436,"score":371,"percentile":437},"2025-11-26",0.79629,{"date":439,"score":371,"percentile":440},"2025-11-27",0.79631,{"date":442,"score":371,"percentile":443},"2025-11-28",0.79623,{"date":445,"score":371,"percentile":446},"2025-11-29",0.79628,{"date":448,"score":371,"percentile":434},"2025-11-30",{"date":450,"score":451,"percentile":452},"2025-12-01",0.00503,0.65348,{"date":454,"score":451,"percentile":455},"2025-12-02",0.65365,{"date":457,"score":451,"percentile":458},"2025-12-03",0.65364,{"date":460,"score":371,"percentile":423},"2025-12-04",{"date":462,"score":371,"percentile":463},"2025-12-05",0.79633,{"date":465,"score":371,"percentile":466},"2025-12-06",0.79635,{"date":468,"score":371,"percentile":469},"2025-12-07",0.79637,{"date":471,"score":371,"percentile":472},"2025-12-08",0.79641,{"date":474,"score":371,"percentile":475},"2025-12-09",0.79657,{"date":477,"score":371,"percentile":478},"2025-12-10",0.79682,{"date":480,"score":371,"percentile":481},"2025-12-11",0.79694,{"date":483,"score":371,"percentile":484},"2025-12-12",0.79713,{"date":486,"score":371,"percentile":484},"2025-12-13",{"date":488,"score":371,"percentile":484},"2025-12-14",{"date":490,"score":371,"percentile":491},"2025-12-15",0.79712,{"date":493,"score":371,"percentile":494},"2025-12-16",0.79721,{"date":496,"score":371,"percentile":497},"2025-12-17",0.79731,{"date":499,"score":371,"percentile":500},"2025-12-18",0.7975,{"date":502,"score":371,"percentile":503},"2025-12-19",0.79759,{"date":505,"score":371,"percentile":506},"2025-12-20",0.79752,{"date":508,"score":371,"percentile":509},"2025-12-21",0.79744,{"date":511,"score":371,"percentile":512},"2025-12-22",0.79746,{"date":514,"score":371,"percentile":512},"2025-12-23",{"date":516,"score":371,"percentile":517},"2025-12-24",0.79761,{"date":519,"score":371,"percentile":520},"2025-12-25",0.79782,{"date":522,"score":371,"percentile":523},"2025-12-26",0.79778,{"date":525,"score":371,"percentile":526},"2025-12-27",0.79821,{"date":528,"score":371,"percentile":529},"2025-12-28",0.79766,{"date":531,"score":371,"percentile":532},"2025-12-29",0.79763,{"date":534,"score":371,"percentile":535},"2025-12-30",0.79768,{"date":537,"score":371,"percentile":538},"2025-12-31",0.79781,{"date":540,"score":451,"percentile":541},"2026-01-01",0.65616,{"date":543,"score":451,"percentile":544},"2026-01-02",0.65602,{"date":546,"score":451,"percentile":547},"2026-01-03",0.65604,{"date":549,"score":371,"percentile":550},"2026-01-04",0.79771,{"date":552,"score":371,"percentile":535},"2026-01-05",{"date":554,"score":371,"percentile":555},"2026-01-06",0.79772,{"date":557,"score":371,"percentile":558},"2026-01-07",0.79775,{"date":560,"score":371,"percentile":561},"2026-01-08",0.79784,{"date":563,"score":371,"percentile":564},"2026-01-09",0.79786,{"date":566,"score":371,"percentile":567},"2026-01-10",0.79785,{"date":569,"score":371,"percentile":523},"2026-01-11",{"date":571,"score":371,"percentile":572},"2026-01-12",0.79762,{"date":574,"score":371,"percentile":575},"2026-01-13",0.7976,{"date":577,"score":371,"percentile":538},"2026-01-14",{"date":579,"score":371,"percentile":580},"2026-01-15",0.79783,{"date":582,"score":371,"percentile":583},"2026-01-16",0.79792,{"date":585,"score":371,"percentile":586},"2026-01-17",0.79801,{"date":588,"score":371,"percentile":583},"2026-01-18",{"date":590,"score":371,"percentile":564},"2026-01-19",{"date":592,"score":371,"percentile":593},"2026-01-20",0.79787,{"date":595,"score":371,"percentile":596},"2026-01-21",0.79796,{"date":598,"score":371,"percentile":599},"2026-01-22",0.79807,{"date":601,"score":371,"percentile":602},"2026-01-23",0.79835,{"date":604,"score":371,"percentile":605},"2026-01-24",0.79846,{"date":607,"score":371,"percentile":608},"2026-01-25",0.79836,{"date":610,"score":371,"percentile":611},"2026-01-26",0.79834,{"date":613,"score":371,"percentile":608},"2026-01-27",{"date":615,"score":371,"percentile":616},"2026-01-28",0.79831,{"date":618,"score":371,"percentile":619},"2026-01-29",0.7983,{"date":621,"score":371,"percentile":622},"2026-01-30",0.79832,{"date":624,"score":371,"percentile":625},"2026-01-31",0.79838,{"date":627,"score":451,"percentile":628},"2026-02-01",0.65668,[630],{"source":104,"cvss_v2_0":631,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":102,"baseSeverity":9,"vectorString":105,"impactScore":632,"exploitabilityScore":633},4.9,8.6,[635,647,653],{"ecosystem":9,"name":636,"vendor":637,"product":636,"cpe_part":638,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":639},"httpasyncclient","apache","a",[640],{"version":641,"is_range":642,"range_type":643,"version_start":644,"version_start_type":645,"version_end":646,"version_end_type":645,"fixed_in":9},"gte4.0_lte4.0.1",true,"cpe","4.0","including","4.0.1",{"ecosystem":9,"name":648,"vendor":637,"product":648,"cpe_part":638,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":649},"httpclient",[650],{"version":651,"is_range":642,"range_type":643,"version_start":644,"version_start_type":645,"version_end":652,"version_end_type":645,"fixed_in":9},"gte4.0_lte4.3.4","4.3.4",{"ecosystem":654,"name":655,"vendor":656,"product":648,"cpe_part":9,"purl_type":657,"purl_namespace":656,"purl_name":648,"source":9,"versions":658},"Maven","org.apache.httpcomponents:httpclient","org.apache.httpcomponents","maven",[659],{"version":660,"is_range":642,"range_type":661,"version_start":9,"version_start_type":9,"version_end":662,"version_end_type":663,"fixed_in":9},"lt4_3_5","ecosystem","4.3.5","excluding"]