Количество 5
Количество 5
CVE-2020-19909
Integer overflow vulnerability in tool_operate.c in curl 7.65.2 via a large value as the retry delay. NOTE: many parties report that this has no direct security impact on the curl user; however, it may (in theory) cause a denial of service to associated systems or networks if, for example, --retry-delay is misinterpreted as a value much smaller than what was intended. This is not especially plausible because the overflow only happens if the user was trying to specify that curl should wait weeks (or longer) before trying to recover from a transient error.
CVE-2020-19909
Integer overflow vulnerability in tool_operate.c in curl 7.65.2 via a large value as the retry delay. NOTE: many parties report that this has no direct security impact on the curl user; however, it may (in theory) cause a denial of service to associated systems or networks if, for example, --retry-delay is misinterpreted as a value much smaller than what was intended. This is not especially plausible because the overflow only happens if the user was trying to specify that curl should wait weeks (or longer) before trying to recover from a transient error.
CVE-2020-19909
Integer overflow vulnerability in tool_operate.c in curl 7.65.2 via a ...
GHSA-2792-x8v5-77wp
Integer overflow vulnerability in tool_operate.c in curl 7.65.2 via crafted value as the retry delay.
BDU:2023-05236
Уязвимость команды retry-delay утилиты командной строки cURL, позволяющая нарушителю вызвать отказ в обслуживании
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-19909 Integer overflow vulnerability in tool_operate.c in curl 7.65.2 via a large value as the retry delay. NOTE: many parties report that this has no direct security impact on the curl user; however, it may (in theory) cause a denial of service to associated systems or networks if, for example, --retry-delay is misinterpreted as a value much smaller than what was intended. This is not especially plausible because the overflow only happens if the user was trying to specify that curl should wait weeks (or longer) before trying to recover from a transient error. | CVSS3: 3.3 | 0% Низкий | около 2 лет назад |
 | CVE-2020-19909 Integer overflow vulnerability in tool_operate.c in curl 7.65.2 via a large value as the retry delay. NOTE: many parties report that this has no direct security impact on the curl user; however, it may (in theory) cause a denial of service to associated systems or networks if, for example, --retry-delay is misinterpreted as a value much smaller than what was intended. This is not especially plausible because the overflow only happens if the user was trying to specify that curl should wait weeks (or longer) before trying to recover from a transient error. | CVSS3: 3.3 | 0% Низкий | около 2 лет назад |
| CVE-2020-19909 Integer overflow vulnerability in tool_operate.c in curl 7.65.2 via a ... | CVSS3: 3.3 | 0% Низкий | около 2 лет назад |
| GHSA-2792-x8v5-77wp Integer overflow vulnerability in tool_operate.c in curl 7.65.2 via crafted value as the retry delay. | CVSS3: 9.8 | 0% Низкий | около 2 лет назад |
 | BDU:2023-05236 Уязвимость команды retry-delay утилиты командной строки cURL, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 3.3 | 0% Низкий | больше 6 лет назад |
Уязвимостей на страницу