Lucene search

K
fedoraFedoraFEDORA:6009620CC00D
HistoryJun 07, 2023 - 2:15 a.m.

[SECURITY] Fedora 38 Update: curl-8.0.1-2.fc38

2023-06-0702:15:37
lists.fedoraproject.org
30
fedora
curl
data transfer
ssl certificates
ftp
http
scp
sftp
tftp
telnet
dict
ldap
ldaps
imap
smtp
pop3
rtsp
http post
http put
proxy
cookies
authentication
file transfer
unix

CVSS3

5.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

AI Score

6.5

Confidence

Low

EPSS

0.002

Percentile

57.0%

curl is a command line tool for transferring data with URL syntax, supporting FTP, FTPS, HTTP, HTTPS, SCP, SFTP, TFTP, TELNET, DICT, LDAP, LDAPS, FILE, IMA P, SMTP, POP3 and RTSP. curl supports SSL certificates, HTTP POST, HTTP PUT, FTP uploading, HTTP form based upload, proxies, cookies, user+password authentication (Basic, Digest, NTLM, Negotiate, kerberos…), file transfer resume, proxy tunneling and a busload of other useful tricks.

OSVersionArchitecturePackageVersionFilename
Fedora38anycurl< 8.0.1UNKNOWN

CVSS3

5.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

AI Score

6.5

Confidence

Low

EPSS

0.002

Percentile

57.0%