CVE-2014-0160: Heartbleed

Score: 7.5
HIGH
Published: 2014-04-07Affected: OpenSSL 1.0.1 through 1.0.1fCWE-125 β†—

What is the Heartbleed vulnerability?

A buffer over-read vulnerability in OpenSSL's TLS Heartbeat extension. Attackers can read up to 64KB of server memory per request, potentially exposing private keys, session tokens, passwords, and other sensitive data in transit.

Impact & Exploitation

Affected approximately 17% (500,000+) of all SSL/TLS web servers at disclosure. Private keys, user credentials, and session cookies were extractable. Many organizations had to reissue SSL certificates.

Related Resources

πŸ” Related CWE Entries

πŸ”— External References

Precogs Logo

Precogs Research

This vulnerability intelligence report was analyzed and enriched by the Precogs AI Security Team. Our researchers continuously monitor emerging threats across AI code, LLM pipelines, and binary architectures to ensure accurate real-time remediation guidance.

Base Score

CVSS7.5
SeverityHIGH
CWECWE-125
Published2014-04-07

Tags

opensslmemory-leaktlsembedded

Quick Links

Is your system affected?

Precogs AI detects Heartbleed in compiled binaries and firmware β€” even without source code.

Request Deep Analysis

Is Your System Still Exposed to Critical CVEs?

Vulnerabilities like CVE-2014-0160 Heartbleed don’t just exist in source code β€” they persist in compiled binaries, containers, and embedded systems. Precogs AI detects vulnerable components across your entire stack β€” even when source code isn’t available.

Request Deep AnalysisBook a demo