Vulnerability DatabaseCVE-2014-1474
Mend.io Vulnerability Database
The largest open source vulnerability database
What is a Vulnerability ID?
New vulnerability? Tell us about it!
CVE-2014-1474
Published:July 15, 2014
Updated:May 17, 2026
Algorithmic complexity vulnerability in Email::Address::List before 0.02, as used in RT 4.2.0 through 4.2.2, allows remote attackers to cause a denial of service (CPU consumption) via a string without an address.
Related Resources (3)
http://lists.bestpractical.com/pipermail/rt-announce/2014-June/000257.html
http://blog.bestpractical.com/2014/01/security-vulnerability-in-rt-42.html
https://metacpan.org/changes/release/ALEXMV/Email-Address-List-0.02
Do you need more information?
Contact Us
CVSS v3
Base Score:
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
NONE
Availability
LOW
CVSS v2
Base Score:
5
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
EPSS
Base Score:
0.53