CVE-2014-0160
OpenSSL Information Disclosure Vulnerability
CVSS
—
No CVSS
EPSS
100.0%
p100
KEV
YES
May 4, 2022
Exploit Today
80
0-100
Published: — · Last modified: —
100.0%EPSS · 30 days100.0%
2026-06-302026-07-16
Product
OpenSSL / OpenSSL
Vulnerability
OpenSSL Information Disclosure Vulnerability
Added to KEV
May 4, 2022
Remediate by
May 25, 2022
Known ransomware use
No
Summary description
The TLS and DTLS implementations in OpenSSL do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information.
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2014-0160
No related CVEs by CWE or product.