CVE-2020-8286

🗓️ 14 Dec 2020 20:14:15Reported by [email protected]Type

Curl 7.41.0 - 7.73.0 improper certificate revocation check

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 137
UbuntuCve	CVE-2020-8286	9 Dec 202000:00	–	ubuntucve
CBLMariner	CVE-2020-8286 affecting package curl 7.68.0-5	16 Dec 202004:51	–	cbl_mariner
RedhatCVE	CVE-2020-8286	9 Dec 202017:14	–	redhatcve
OSV	CVE-2020-8286	14 Dec 202020:15	–	osv
OSV	curl - security update	18 Dec 202000:00	–	osv
OSV	RHSA-2021:1610 Red Hat Security Advisory: curl security and bug fix update	16 Sep 202404:59	–	osv
OSV	Moderate: curl security and bug fix update	18 May 202105:39	–	osv
OSV	curl vulnerabilities	9 Dec 202012:10	–	osv
OSV	RHSA-2021:2472 Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 SP8 security update	22 Sep 202417:21	–	osv
OSV	curl - security update	30 Mar 202100:00	–	osv

Nvd

Node

haxx libcurlRange7.41.0–7.74.0

Node

fedoraproject fedoraMatch32

fedoraproject fedoraMatch33

Node

debian debian_linuxMatch9.0

debian debian_linuxMatch10.0

Node

netapp clustered_data_ontapMatch-

netapp hci_management_nodeMatch-

netapp solidfireMatch-

Node

netapp hci_bootstrap_osMatch-

AND

netapp hci_compute_nodeMatch-

Node

netapp hci_storage_node_firmwareMatch-

AND

netapp hci_storage_nodeMatch-

Node

apple mac_os_xRange<10.14.6

apple mac_os_xRange10.15–10.15.7

apple mac_os_xMatch10.14.6-

apple mac_os_xMatch10.14.6security_update_2019-001

apple mac_os_xMatch10.14.6security_update_2019-002

apple mac_os_xMatch10.14.6security_update_2020-001

apple mac_os_xMatch10.14.6security_update_2020-002

apple mac_os_xMatch10.14.6security_update_2020-003

apple mac_os_xMatch10.14.6security_update_2020-004

apple mac_os_xMatch10.14.6security_update_2020-005

apple mac_os_xMatch10.14.6security_update_2020-006

apple mac_os_xMatch10.14.6security_update_2020-007

apple mac_os_xMatch10.14.6security_update_2021-001

apple mac_os_xMatch10.15.7-

apple mac_os_xMatch10.15.7security_update_2020-001

apple mac_os_xMatch10.15.7security_update_2021-001

apple mac_os_xMatch10.15.7supplemental_update

apple macosRange11.0–11.3

Node

siemens simatic_tim_1531_irc_firmwareRange≤2.2

AND

siemens simatic_tim_1531_ircMatch-

Node

siemens sinec_infrastructure_network_servicesRange<1.0.1.1

Node

oracle communications_billing_and_revenue_managementMatch12.0.0.3.0

oracle communications_cloud_native_core_policyMatch1.14.0

oracle essbaseMatch21.2

oracle peoplesoft_enterprise_peopletoolsMatch8.58

Node

splunk universal_forwarderRange8.2.0–8.2.12

splunk universal_forwarderRange9.0.0–9.0.6

splunk universal_forwarderMatch9.1.0

Source	Link
seclists	www.seclists.org/fulldisclosure/2021/Apr/50
seclists	www.seclists.org/fulldisclosure/2021/Apr/51
oracle	www.oracle.com//security-alerts/cpujul2021.html
oracle	www.oracle.com/security-alerts/cpuApr2021.html
hackerone	www.hackerone.com/reports/1048457
security	www.security.gentoo.org/glsa/202012-14
support	www.support.apple.com/kb/HT212327
curl	www.curl.se/docs/CVE-2020-8286.html
lists	www.lists.debian.org/debian-lts-announce/2020/12/msg00029.html
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-200951.pdf

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

14 Dec 2020 20:15Current

7.6High risk

Vulners AI Score7.6

CVSS25

CVSS37.5

EPSS0.00177

CWE-295