Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2015-0235

Heap-based buffer overflow in the __nss_hostname_digits_dots function in glibc 2.2, and other 2.x versions before 2.18, allows context-dependent attackers to execute arbitrary code via vectors related to the (1) gethostbyname or (2) gethostbyname2 function, aka "GHOST."

Security Impact Summary

CVE-2015-0235 is a security vulnerability that . Impacting 18 products from gnu, from oracle, from oracle and 15 others, organizations running these solutions should prioritize assessment and patching.

Historical Context

First disclosed in 2015, this vulnerability was reported during a period defined by widespread IoT adoption challenges, mobile security concerns, and the emergence of advanced persistent threat (APT) techniques. Contemporary mitigation strategies focused on secure development practices and third-party component vetting.

Published

2015-01-28T19:59:00.063

Last Modified

2025-04-12T10:46:40.837

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 10.0 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: COMPLETE
Integrity Impact: COMPLETE
Availability Impact: COMPLETE

Exploitability Score

10.0

Impact Score

10.0

Weaknesses

Type: Primary
CWE-787

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	gnu	glibc	< 2.18	Yes
Application	oracle	communications_application_session_controller	< 3.7.1	Yes
Application	oracle	communications_eagle_application_processor	16.0	Yes
Application	oracle	communications_eagle_lnp_application_processor	10.0	Yes
Application	oracle	communications_lsms	13.1	Yes
Application	oracle	communications_policy_management	9.7.3	Yes
Application	oracle	communications_policy_management	9.9.1	Yes
Application	oracle	communications_policy_management	10.4.1	Yes
Application	oracle	communications_policy_management	11.5	Yes
Application	oracle	communications_policy_management	12.1.1	Yes
Application	oracle	communications_session_border_controller	< 7.2.0	Yes
Application	oracle	communications_session_border_controller	7.2.0	Yes
Application	oracle	communications_session_border_controller	8.0.0	Yes
Application	oracle	communications_user_data_repository	≤ 10.0.1	Yes
Application	oracle	communications_webrtc_session_controller	7.0	Yes
Application	oracle	communications_webrtc_session_controller	7.1	Yes
Application	oracle	communications_webrtc_session_controller	7.2	Yes
Application	oracle	exalogic_infrastructure	1.0	Yes
Application	oracle	exalogic_infrastructure	2.0	Yes
Application	oracle	vm_virtualbox	< 5.1.24	Yes
Operating System	oracle	linux	5	Yes
Operating System	oracle	linux	7	Yes
Operating System	debian	debian_linux	7.0	Yes
Operating System	debian	debian_linux	8.0	Yes
Application	redhat	virtualization	6.0	Yes
Operating System	apple	mac_os_x	< 10.11.1	Yes
Application	ibm	pureapplication_system	1.0.0.0	Yes
Application	ibm	pureapplication_system	1.1.0.0	Yes
Application	ibm	pureapplication_system	2.0.0.0	Yes
Application	ibm	security_access_manager_for_enterprise_single_sign-on	8.2	Yes
Application	php	php	< 5.4.38	Yes
Application	php	php	< 5.5.22	Yes
Application	php	php	< 5.6.6	Yes

References

http://blogs.sophos.com/2015/01/29/sophos-products-and-the-ghost-vulnerability-affecting-linux/ Third Party Advisory ([email protected])
http://linux.oracle.com/errata/ELSA-2015-0090.html Third Party Advisory ([email protected])
http://linux.oracle.com/errata/ELSA-2015-0092.html Third Party Advisory ([email protected])
http://lists.apple.com/archives/security-announce/2015/Jun/msg00002.html Mailing List, Third Party Advisory ([email protected])
http://lists.apple.com/archives/security-announce/2015/Oct/msg00005.html Mailing List, Third Party Advisory ([email protected])
http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html Mailing List, Third Party Advisory ([email protected])
http://marc.info/?l=bugtraq&m=142296726407499&w=2 Issue Tracking, Mailing List, Third Party Advisory ([email protected])
http://marc.info/?l=bugtraq&m=142721102728110&w=2 Issue Tracking, Mailing List, Third Party Advisory ([email protected])
http://marc.info/?l=bugtraq&m=142722450701342&w=2 Issue Tracking, Mailing List, Third Party Advisory ([email protected])
http://marc.info/?l=bugtraq&m=142781412222323&w=2 Issue Tracking, Mailing List, Third Party Advisory ([email protected])
http://marc.info/?l=bugtraq&m=143145428124857&w=2 Issue Tracking, Mailing List, Third Party Advisory ([email protected])
http://packetstormsecurity.com/files/130171/Exim-ESMTP-GHOST-Denial-Of-Service.html Exploit, Third Party Advisory, VDB Entry ([email protected])
http://packetstormsecurity.com/files/130768/EMC-Secure-Remote-Services-GHOST-SQL-Injection-Command-Injection.html Third Party Advisory, VDB Entry ([email protected])
http://packetstormsecurity.com/files/130974/Exim-GHOST-glibc-gethostbyname-Buffer-Overflow.html Exploit, Third Party Advisory, VDB Entry ([email protected])
http://packetstormsecurity.com/files/153278/WAGO-852-Industrial-Managed-Switch-Series-Code-Execution-Hardcoded-Credentials.html Exploit, Third Party Advisory, VDB Entry ([email protected])
http://packetstormsecurity.com/files/164014/Moxa-Command-Injection-Cross-Site-Scripting-Vulnerable-Software.html Exploit, Third Party Advisory, VDB Entry ([email protected])
http://packetstormsecurity.com/files/167552/Nexans-FTTO-GigaSwitch-Outdated-Components-Hardcoded-Backdoor.html Exploit, Third Party Advisory, VDB Entry ([email protected])
http://rhn.redhat.com/errata/RHSA-2015-0126.html Third Party Advisory ([email protected])
http://seclists.org/fulldisclosure/2015/Jan/111 Mailing List, Third Party Advisory ([email protected])
http://seclists.org/fulldisclosure/2019/Jun/18 Exploit, Mailing List, Third Party Advisory ([email protected])
http://seclists.org/fulldisclosure/2021/Sep/0 Exploit, Mailing List, Third Party Advisory ([email protected])
http://seclists.org/fulldisclosure/2022/Jun/36 Exploit, Mailing List, Third Party Advisory ([email protected])
http://seclists.org/oss-sec/2015/q1/269 Mailing List, Third Party Advisory ([email protected])
http://seclists.org/oss-sec/2015/q1/274 Exploit, Mailing List, Third Party Advisory ([email protected])
http://secunia.com/advisories/62517 Not Applicable ([email protected])
http://secunia.com/advisories/62640 Not Applicable ([email protected])
http://secunia.com/advisories/62667 Not Applicable ([email protected])
http://secunia.com/advisories/62680 Not Applicable ([email protected])
http://secunia.com/advisories/62681 Not Applicable ([email protected])
http://secunia.com/advisories/62688 Not Applicable ([email protected])
http://secunia.com/advisories/62690 Not Applicable ([email protected])
http://secunia.com/advisories/62691 Not Applicable ([email protected])
http://secunia.com/advisories/62692 Not Applicable ([email protected])
http://secunia.com/advisories/62698 Not Applicable ([email protected])
http://secunia.com/advisories/62715 Not Applicable ([email protected])
http://secunia.com/advisories/62758 Not Applicable ([email protected])
http://secunia.com/advisories/62812 Not Applicable ([email protected])
http://secunia.com/advisories/62813 Not Applicable ([email protected])
http://secunia.com/advisories/62816 Not Applicable ([email protected])
http://secunia.com/advisories/62865 Not Applicable ([email protected])
http://secunia.com/advisories/62870 Not Applicable ([email protected])
http://secunia.com/advisories/62871 Not Applicable ([email protected])
http://secunia.com/advisories/62879 Not Applicable ([email protected])
http://secunia.com/advisories/62883 Not Applicable ([email protected])
http://support.apple.com/kb/HT204942 Third Party Advisory ([email protected])
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150128-ghost Third Party Advisory ([email protected])
http://www-01.ibm.com/support/docview.wss?uid=swg21695695 Third Party Advisory ([email protected])
http://www-01.ibm.com/support/docview.wss?uid=swg21695774 Third Party Advisory ([email protected])
http://www-01.ibm.com/support/docview.wss?uid=swg21695835 Third Party Advisory ([email protected])
http://www-01.ibm.com/support/docview.wss?uid=swg21695860 Third Party Advisory ([email protected])
http://www-01.ibm.com/support/docview.wss?uid=swg21696131 Third Party Advisory ([email protected])
http://www-01.ibm.com/support/docview.wss?uid=swg21696243 Third Party Advisory ([email protected])
http://www-01.ibm.com/support/docview.wss?uid=swg21696526 Third Party Advisory ([email protected])
http://www-01.ibm.com/support/docview.wss?uid=swg21696600 Third Party Advisory ([email protected])
http://www-01.ibm.com/support/docview.wss?uid=swg21696602 Third Party Advisory ([email protected])
http://www-01.ibm.com/support/docview.wss?uid=swg21696618 Third Party Advisory ([email protected])
http://www.debian.org/security/2015/dsa-3142 Third Party Advisory ([email protected])
http://www.idirect.net/Partners/~/media/Files/CVE/iDirect-Posted-Common-Vulnerabilities-and-Exposures.pdf Broken Link, URL Repurposed ([email protected])
http://www.mandriva.com/security/advisories?name=MDVSA-2015:039 Third Party Advisory ([email protected])
http://www.openwall.com/lists/oss-security/2021/05/04/7 Exploit, Mailing List ([email protected])
http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html Patch, Third Party Advisory ([email protected])
http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html Patch, Third Party Advisory ([email protected])
http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html Patch, Third Party Advisory ([email protected])
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html Patch, Third Party Advisory ([email protected])
http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html Patch, Third Party Advisory ([email protected])
http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html Third Party Advisory ([email protected])
http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html Third Party Advisory ([email protected])
http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html Third Party Advisory ([email protected])
http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html Third Party Advisory ([email protected])
http://www.securityfocus.com/archive/1/534845/100/0/threaded Exploit, Third Party Advisory, VDB Entry ([email protected])
http://www.securityfocus.com/bid/72325 Third Party Advisory, VDB Entry ([email protected])
http://www.securityfocus.com/bid/91787 Third Party Advisory, VDB Entry ([email protected])
http://www.securitytracker.com/id/1032909 Third Party Advisory, VDB Entry ([email protected])
http://www.websense.com/support/article/kbarticle/Vulnerabilities-resolved-in-TRITON-APX-Version-8-0 Broken Link, Permissions Required ([email protected])
https://bto.bluecoat.com/security-advisory/sa90 Third Party Advisory ([email protected])
https://cert-portal.siemens.com/productcert/pdf/ssa-994726.pdf Third Party Advisory ([email protected])
https://community.qualys.com/blogs/laws-of-vulnerabilities/2015/01/27/the-ghost-vulnerability Third Party Advisory ([email protected])
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04874668 Third Party Advisory ([email protected])
https://help.ecostruxureit.com/display/public/UADCO8x/StruxureWare+Data+Center+Operation+Software+Vulnerability+Fixes Third Party Advisory ([email protected])
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10671 Third Party Advisory ([email protected])
https://kc.mcafee.com/corporate/index?page=content&id=SB10100 Third Party Advisory ([email protected])
https://seclists.org/bugtraq/2019/Jun/14 Exploit, Mailing List, Third Party Advisory ([email protected])
https://security.gentoo.org/glsa/201503-04 Third Party Advisory ([email protected])
https://security.netapp.com/advisory/ntap-20150127-0001/ Third Party Advisory ([email protected])
https://support.apple.com/HT205267 Third Party Advisory ([email protected])
https://support.apple.com/HT205375 Third Party Advisory ([email protected])
https://www.arista.com/en/support/advisories-notices/security-advisories/1053-security-advisory-9 Third Party Advisory ([email protected])
https://www.f-secure.com/en/web/labs_global/fsc-2015-1 Third Party Advisory ([email protected])
https://www.qualys.com/research/security-advisories/GHOST-CVE-2015-0235.txt Third Party Advisory ([email protected])
https://www.sophos.com/en-us/support/knowledgebase/121879.aspx Third Party Advisory ([email protected])
http://blogs.sophos.com/2015/01/29/sophos-products-and-the-ghost-vulnerability-affecting-linux/ Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://linux.oracle.com/errata/ELSA-2015-0090.html Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://linux.oracle.com/errata/ELSA-2015-0092.html Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://lists.apple.com/archives/security-announce/2015/Jun/msg00002.html Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://lists.apple.com/archives/security-announce/2015/Oct/msg00005.html Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://marc.info/?l=bugtraq&m=142296726407499&w=2 Issue Tracking, Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://marc.info/?l=bugtraq&m=142721102728110&w=2 Issue Tracking, Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://marc.info/?l=bugtraq&m=142722450701342&w=2 Issue Tracking, Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://marc.info/?l=bugtraq&m=142781412222323&w=2 Issue Tracking, Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://marc.info/?l=bugtraq&m=143145428124857&w=2 Issue Tracking, Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://packetstormsecurity.com/files/130171/Exim-ESMTP-GHOST-Denial-Of-Service.html Exploit, Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://packetstormsecurity.com/files/130768/EMC-Secure-Remote-Services-GHOST-SQL-Injection-Command-Injection.html Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://packetstormsecurity.com/files/130974/Exim-GHOST-glibc-gethostbyname-Buffer-Overflow.html Exploit, Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://packetstormsecurity.com/files/153278/WAGO-852-Industrial-Managed-Switch-Series-Code-Execution-Hardcoded-Credentials.html Exploit, Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://packetstormsecurity.com/files/164014/Moxa-Command-Injection-Cross-Site-Scripting-Vulnerable-Software.html Exploit, Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://packetstormsecurity.com/files/167552/Nexans-FTTO-GigaSwitch-Outdated-Components-Hardcoded-Backdoor.html Exploit, Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://rhn.redhat.com/errata/RHSA-2015-0126.html Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://seclists.org/fulldisclosure/2015/Jan/111 Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://seclists.org/fulldisclosure/2019/Jun/18 Exploit, Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://seclists.org/fulldisclosure/2021/Sep/0 Exploit, Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://seclists.org/fulldisclosure/2022/Jun/36 Exploit, Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://seclists.org/oss-sec/2015/q1/269 Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://seclists.org/oss-sec/2015/q1/274 Exploit, Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/62517 Not Applicable (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/62640 Not Applicable (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/62667 Not Applicable (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/62680 Not Applicable (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/62681 Not Applicable (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/62688 Not Applicable (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/62690 Not Applicable (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/62691 Not Applicable (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/62692 Not Applicable (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/62698 Not Applicable (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/62715 Not Applicable (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/62758 Not Applicable (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/62812 Not Applicable (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/62813 Not Applicable (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/62816 Not Applicable (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/62865 Not Applicable (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/62870 Not Applicable (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/62871 Not Applicable (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/62879 Not Applicable (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/62883 Not Applicable (af854a3a-2127-422b-91ae-364da2661108)
http://support.apple.com/kb/HT204942 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150128-ghost Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg21695695 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg21695774 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg21695835 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg21695860 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg21696131 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg21696243 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg21696526 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg21696600 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg21696602 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg21696618 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2015/dsa-3142 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.idirect.net/Partners/~/media/Files/CVE/iDirect-Posted-Common-Vulnerabilities-and-Exposures.pdf Broken Link, URL Repurposed (af854a3a-2127-422b-91ae-364da2661108)
http://www.mandriva.com/security/advisories?name=MDVSA-2015:039 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2021/05/04/7 Exploit, Mailing List (af854a3a-2127-422b-91ae-364da2661108)
http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/archive/1/534845/100/0/threaded Exploit, Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/72325 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/91787 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1032909 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.websense.com/support/article/kbarticle/Vulnerabilities-resolved-in-TRITON-APX-Version-8-0 Broken Link, Permissions Required (af854a3a-2127-422b-91ae-364da2661108)
https://bto.bluecoat.com/security-advisory/sa90 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://cert-portal.siemens.com/productcert/pdf/ssa-994726.pdf Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://community.qualys.com/blogs/laws-of-vulnerabilities/2015/01/27/the-ghost-vulnerability Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04874668 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://help.ecostruxureit.com/display/public/UADCO8x/StruxureWare+Data+Center+Operation+Software+Vulnerability+Fixes Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10671 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://kc.mcafee.com/corporate/index?page=content&id=SB10100 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://seclists.org/bugtraq/2019/Jun/14 Exploit, Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://security.gentoo.org/glsa/201503-04 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://security.netapp.com/advisory/ntap-20150127-0001/ Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://support.apple.com/HT205267 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://support.apple.com/HT205375 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.arista.com/en/support/advisories-notices/security-advisories/1053-security-advisory-9 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.f-secure.com/en/web/labs_global/fsc-2015-1 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.qualys.com/research/security-advisories/GHOST-CVE-2015-0235.txt Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.sophos.com/en-us/support/knowledgebase/121879.aspx Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)

How SecUtils Interprets This CVE

SecUtils normalizes and enriches National Vulnerability Database (NVD) records by standardizing vendor and product identifiers, aggregating vulnerability metadata from both NVD and MITRE sources, and providing structured context for security teams. For gnu's affected products, we extract Common Platform Enumeration (CPE) data, Common Weakness Enumeration (CWE) classifications, CVSS severity metrics, and reference data to enable rapid vulnerability prioritization and asset correlation. This record contains no exploit code, proof-of-concept instructions, or attack methodologies—only defensive intelligence necessary for patch management, risk assessment, and security operations.