Количество 11
Количество 11
CVE-2016-8616
A flaw was found in curl before version 7.51.0 When re-using a connection, curl was doing case insensitive comparisons of user name and password with the existing connections. This means that if an unused connection with proper credentials exists for a protocol that has connection-scoped credentials, an attacker can cause that connection to be reused if s/he knows the case-insensitive version of the correct password.
CVE-2016-8616
A flaw was found in curl before version 7.51.0 When re-using a connection, curl was doing case insensitive comparisons of user name and password with the existing connections. This means that if an unused connection with proper credentials exists for a protocol that has connection-scoped credentials, an attacker can cause that connection to be reused if s/he knows the case-insensitive version of the correct password.
CVE-2016-8616
A flaw was found in curl before version 7.51.0 When re-using a connection, curl was doing case insensitive comparisons of user name and password with the existing connections. This means that if an unused connection with proper credentials exists for a protocol that has connection-scoped credentials, an attacker can cause that connection to be reused if s/he knows the case-insensitive version of the correct password.
CVE-2016-8616
A flaw was found in curl before version 7.51.0 When re-using a connect ...
GHSA-22qv-x7vv-h86h
A flaw was found in curl before version 7.51.0 When re-using a connection, curl was doing case insensitive comparisons of user name and password with the existing connections. This means that if an unused connection with proper credentials exists for a protocol that has connection-scoped credentials, an attacker can cause that connection to be reused if s/he knows the case-insensitive version of the correct password.
openSUSE-SU-2016:2768-1
Security update for curl
SUSE-SU-2016:2714-1
Security update for curl
SUSE-SU-2016:2699-1
Security update for curl
ELSA-2019-4652
ELSA-2019-4652: curl security update (IMPORTANT)
SUSE-SU-2017:2699-1
Security update for SLES 12 Docker image
SUSE-SU-2017:2700-1
Security update for SLES 12-SP1 Docker image
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2016-8616 A flaw was found in curl before version 7.51.0 When re-using a connection, curl was doing case insensitive comparisons of user name and password with the existing connections. This means that if an unused connection with proper credentials exists for a protocol that has connection-scoped credentials, an attacker can cause that connection to be reused if s/he knows the case-insensitive version of the correct password. | CVSS3: 3.7 | 4% Низкий | почти 7 лет назад |
 | CVE-2016-8616 A flaw was found in curl before version 7.51.0 When re-using a connection, curl was doing case insensitive comparisons of user name and password with the existing connections. This means that if an unused connection with proper credentials exists for a protocol that has connection-scoped credentials, an attacker can cause that connection to be reused if s/he knows the case-insensitive version of the correct password. | CVSS3: 3.7 | 4% Низкий | больше 8 лет назад |
 | CVE-2016-8616 A flaw was found in curl before version 7.51.0 When re-using a connection, curl was doing case insensitive comparisons of user name and password with the existing connections. This means that if an unused connection with proper credentials exists for a protocol that has connection-scoped credentials, an attacker can cause that connection to be reused if s/he knows the case-insensitive version of the correct password. | CVSS3: 3.7 | 4% Низкий | почти 7 лет назад |
| CVE-2016-8616 A flaw was found in curl before version 7.51.0 When re-using a connect ... | CVSS3: 3.7 | 4% Низкий | почти 7 лет назад |
| GHSA-22qv-x7vv-h86h A flaw was found in curl before version 7.51.0 When re-using a connection, curl was doing case insensitive comparisons of user name and password with the existing connections. This means that if an unused connection with proper credentials exists for a protocol that has connection-scoped credentials, an attacker can cause that connection to be reused if s/he knows the case-insensitive version of the correct password. | CVSS3: 5.9 | 4% Низкий | около 3 лет назад |
 | openSUSE-SU-2016:2768-1 Security update for curl | больше 8 лет назад | ||
| SUSE-SU-2016:2714-1 Security update for curl | больше 8 лет назад | ||
| SUSE-SU-2016:2699-1 Security update for curl | больше 8 лет назад | ||
| ELSA-2019-4652 ELSA-2019-4652: curl security update (IMPORTANT) | около 6 лет назад | ||
| SUSE-SU-2017:2699-1 Security update for SLES 12 Docker image | больше 7 лет назад | ||
| SUSE-SU-2017:2700-1 Security update for SLES 12-SP1 Docker image | больше 7 лет назад |
Уязвимостей на страницу