Lucene search
Ubuntu.comUB:CVE-2014-0015HistoryJan 31, 2014 - 12:00 a.m.
CVE-2014-0015
2014-01-3100:00:00
ubuntu.com
ubuntu.com
8
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:P/I:P/A:N
0.008 Low
EPSS
Percentile
80.7%
cURL and libcurl 7.10.6 through 7.34.0, when more than one authentication
method is enabled, re-uses NTLM connections, which might allow
context-dependent attackers to authenticate as other users via a request.
Related
nessus
nessus
SuSE 11.2 / 11.3 Security Update : curl (SAT Patch Numbers 8796 / 8797)
2014-02-02 00:00:00
Fedora 19 : curl-7.29.0-13.fc19 (2014-1864)
2014-02-17 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: curl-7.32.0-4.fc20
2014-02-03 02:46:56
[SECURITY] Fedora 19 Update: curl-7.29.0-13.fc19
2014-02-15 20:02:19
[SECURITY] Fedora 20 Update: curl-7.32.0-8.fc20
2014-03-31 02:15:35
prion
prion
Cross site request forgery (csrf)
2014-02-02 00:55:00
Cross site request forgery (csrf)
2015-04-24 14:59:00
Default configuration
2014-04-15 14:55:00
openvas
openvas
Fedora Update for curl FEDORA-2014-1876
2014-02-03 00:00:00
Amazon Linux: Security Advisory (ALAS-2014-295)
2015-09-08 00:00:00
Debian Security Advisory DSA 2849-1 (curl - information disclosure)
2014-01-31 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 2849-1] curl security update
2014-02-01 00:00:00
NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities
2014-12-11 00:00:00
cURL security vulnerabilitiies
2015-11-01 00:00:00
veracode
veracode
Authentication Bypass
2019-01-15 08:51:58
ubuntu
ubuntu
curl vulnerability
2014-02-03 00:00:00
cve
cve
debiancve
debiancve
slackware
slackware
curl
2014-02-13 16:38:20
debian
debian
[SECURITY] [DSA 2849-1] curl security update
2014-01-31 07:47:19
amazon
amazon
seebug
seebug
cURL/libcURL NTLM连接远程安全限制绕过漏洞
2014-02-24 00:00:00
f5
f5
K16704 : cURL and libcurl vulnerability CVE-2015-3143
2015-05-29 00:00:00
SOL16704 - cURL and libcurl vulnerability CVE-2015-3143
2015-05-29 00:00:00
oraclelinux
oraclelinux
curl security and bug fix update
2014-05-27 00:00:00
redhat
redhat
(RHSA-2014:0561) Moderate: curl security and bug fix update
2014-05-27 00:00:00
(RHSA-2014:0629) Important: rhev-hypervisor6 security update
2014-06-05 00:00:00
osv
osv
CVE-2014-0138
2014-04-15 14:55:00
centos
centos
curl, libcurl security update
2014-05-28 12:52:04
ubuntucve
ubuntucve
alpinelinux
alpinelinux
CVE-2014-0138
2014-04-15 14:55:00
mageia
mageia
Updated curl packages fix multiple vulnerabilities
2014-04-03 04:56:35
ibm
ibm
Security Bulletin: IBM ToolsCenter is affected by several cURL potential vulnerabilities (CVE-2014-0015, CVE-2014-0139, CVE-2014-0138, CVE-2014-2522)
2019-01-31 01:25:01
archlinux
archlinux
curl: multiple issues
2015-04-24 00:00:00
vmware
vmware
VMware vSphere product updates address security vulnerabilities
2014-12-04 00:00:00
VMware vSphere product updates address security vulnerabilities
2014-12-04 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - January 2015
2015-03-10 00:00:00
Oracle Critical Patch Update Advisory - July 2015
2015-07-14 00:00:00
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:P/I:P/A:N
0.008 Low
EPSS
Percentile
80.7%
Related for UB:CVE-2014-0015