Количество 44
Количество 44
RLSA-2021:1610
Moderate: curl security and bug fix update
ELSA-2021-1610
ELSA-2021-1610: curl security and bug fix update (MODERATE)
SUSE-SU-2021:1786-1
Security update for curl
openSUSE-SU-2020:2249-1
Security update for curl
openSUSE-SU-2020:2238-1
Security update for curl
SUSE-SU-2020:3739-1
Security update for curl
SUSE-SU-2020:3735-1
Security update for curl
SUSE-SU-2020:3733-1
Security update for curl
SUSE-SU-2020:14585-1
Security update for curl
CVE-2020-8284
A malicious server can use the FTP PASV response to trick curl 7.73.0 and earlier into connecting back to a given IP address and port, and this way potentially make curl extract information about services that are otherwise private and not disclosed, for example doing port scanning and service banner extractions.
CVE-2020-8284
A malicious server can use the FTP PASV response to trick curl 7.73.0 and earlier into connecting back to a given IP address and port, and this way potentially make curl extract information about services that are otherwise private and not disclosed, for example doing port scanning and service banner extractions.
CVE-2020-8284
A malicious server can use the FTP PASV response to trick curl 7.73.0 and earlier into connecting back to a given IP address and port, and this way potentially make curl extract information about services that are otherwise private and not disclosed, for example doing port scanning and service banner extractions.
CVE-2020-8284
A malicious server can use the FTP PASV response to trick curl 7.73.0 and earlier into connecting back to a given IP address and port and this way potentially make curl extract information about services that are otherwise private and not disclosed for example doing port scanning and service banner extractions.
CVE-2020-8284
A malicious server can use the FTP PASV response to trick curl 7.73.0 ...
GHSA-69rc-qfx4-h683
A malicious server can use the FTP PASV response to trick curl 7.73.0 and earlier into connecting back to a given IP address and port, and this way potentially make curl extract information about services that are otherwise private and not disclosed, for example doing port scanning and service banner extractions.
BDU:2021-03504
Уязвимость программного средства для взаимодействия с серверами CURL, связанная с раскрытием информации, позволяющая нарушителю получить доступ к конфиденциальным данным
CVE-2020-8231
Due to use of a dangling pointer, libcurl 7.29.0 through 7.71.1 can use the wrong connection when sending data.
CVE-2020-8231
Due to use of a dangling pointer, libcurl 7.29.0 through 7.71.1 can use the wrong connection when sending data.
CVE-2020-8231
Due to use of a dangling pointer, libcurl 7.29.0 through 7.71.1 can use the wrong connection when sending data.
CVE-2020-8231
Due to use of a dangling pointer libcurl 7.29.0 through 7.71.1 can use the wrong connection when sending data.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | RLSA-2021:1610 Moderate: curl security and bug fix update | почти 5 лет назад | ||
| ELSA-2021-1610 ELSA-2021-1610: curl security and bug fix update (MODERATE) | почти 5 лет назад | ||
 | SUSE-SU-2021:1786-1 Security update for curl | почти 5 лет назад | ||
| openSUSE-SU-2020:2249-1 Security update for curl | больше 5 лет назад | ||
| openSUSE-SU-2020:2238-1 Security update for curl | больше 5 лет назад | ||
| SUSE-SU-2020:3739-1 Security update for curl | больше 5 лет назад | ||
| SUSE-SU-2020:3735-1 Security update for curl | больше 5 лет назад | ||
| SUSE-SU-2020:3733-1 Security update for curl | больше 5 лет назад | ||
| SUSE-SU-2020:14585-1 Security update for curl | больше 5 лет назад | ||
 | CVE-2020-8284 A malicious server can use the FTP PASV response to trick curl 7.73.0 and earlier into connecting back to a given IP address and port, and this way potentially make curl extract information about services that are otherwise private and not disclosed, for example doing port scanning and service banner extractions. | CVSS3: 3.7 | 0% Низкий | больше 5 лет назад |
 | CVE-2020-8284 A malicious server can use the FTP PASV response to trick curl 7.73.0 and earlier into connecting back to a given IP address and port, and this way potentially make curl extract information about services that are otherwise private and not disclosed, for example doing port scanning and service banner extractions. | CVSS3: 3.1 | 0% Низкий | больше 5 лет назад |
 | CVE-2020-8284 A malicious server can use the FTP PASV response to trick curl 7.73.0 and earlier into connecting back to a given IP address and port, and this way potentially make curl extract information about services that are otherwise private and not disclosed, for example doing port scanning and service banner extractions. | CVSS3: 3.7 | 0% Низкий | больше 5 лет назад |
 | CVE-2020-8284 A malicious server can use the FTP PASV response to trick curl 7.73.0 and earlier into connecting back to a given IP address and port and this way potentially make curl extract information about services that are otherwise private and not disclosed for example doing port scanning and service banner extractions. | CVSS3: 3.7 | 0% Низкий | больше 5 лет назад |
| CVE-2020-8284 A malicious server can use the FTP PASV response to trick curl 7.73.0 ... | CVSS3: 3.7 | 0% Низкий | больше 5 лет назад |
| GHSA-69rc-qfx4-h683 A malicious server can use the FTP PASV response to trick curl 7.73.0 and earlier into connecting back to a given IP address and port, and this way potentially make curl extract information about services that are otherwise private and not disclosed, for example doing port scanning and service banner extractions. | CVSS3: 3.7 | 0% Низкий | почти 4 года назад |
 | BDU:2021-03504 Уязвимость программного средства для взаимодействия с серверами CURL, связанная с раскрытием информации, позволяющая нарушителю получить доступ к конфиденциальным данным | CVSS3: 3.7 | 0% Низкий | больше 5 лет назад |
| CVE-2020-8231 Due to use of a dangling pointer, libcurl 7.29.0 through 7.71.1 can use the wrong connection when sending data. | CVSS3: 7.5 | 0% Низкий | больше 5 лет назад |
| CVE-2020-8231 Due to use of a dangling pointer, libcurl 7.29.0 through 7.71.1 can use the wrong connection when sending data. | CVSS3: 3.7 | 0% Низкий | больше 5 лет назад |
| CVE-2020-8231 Due to use of a dangling pointer, libcurl 7.29.0 through 7.71.1 can use the wrong connection when sending data. | CVSS3: 7.5 | 0% Низкий | больше 5 лет назад |
| CVE-2020-8231 Due to use of a dangling pointer libcurl 7.29.0 through 7.71.1 can use the wrong connection when sending data. | CVSS3: 7.5 | 0% Низкий | больше 5 лет назад |
Уязвимостей на страницу