Denial Of Service (DoS)

🗓️ 10 May 2020 23:27:35Reported by Veracode Vulnerability DatabaseType

Vulnerability in curl and libcurl leading to denial of service

Reporter	Title	Published	Views	Family All 52
ALT Linux	Security fix for the ALT Linux 8 package curl version 7.57.0-alt1	1 Dec 201700:00	–	altlinux
FreeBSD	cURL -- Multiple vulnerabilities	29 Nov 201700:00	–	freebsd
IBM Security Bulletins	Security Bulletin: Vulnerabilities in cURL/libcurl affect Intel® Manycore Platform Software Stack (Intel® MPSS) for Linux and Windows	31 Jan 201902:40	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in cURL affect IBM Flex System FC3171 8Gb SAN Switch and SAN Pass-thru (CVE-2017-8816 CVE-2017-8817 CVE-2017-8818)	31 Jan 201902:40	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in cURL affect QLogic Virtual Fabric Extension Module for IBM BladeCenter	10 Apr 202321:40	–	ibm
Tenable Nessus	Amazon Linux 2 : curl (ALAS-2019-1162)	19 Feb 201900:00	–	nessus
Tenable Nessus	FreeBSD : cURL -- Multiple vulnerabilities (301a01b7-d50e-11e7-ac58-b499baebfeaf)	30 Nov 201700:00	–	nessus
Tenable Nessus	GLSA-201712-04 : cURL: Multiple vulnerabilities	15 Dec 201700:00	–	nessus
Tenable Nessus	NewStart CGSL MAIN 6.02 : curl Multiple Vulnerabilities (NS-SA-2024-0050)	10 Sep 202400:00	–	nessus
Tenable Nessus	Photon OS 1.0: Binutils / Curl / Docker / Linux / Rpm PHSA-2017-1.0-0095 (deprecated)	17 Aug 201800:00	–	nessus

Vulners

Node

curl curlMatch7.55.0-r0os

AND

curl curlRange7.30.0.1–7.30.0.2os

Source	Link
securityfocus	www.securityfocus.com/bid/102014
securitytracker	www.securitytracker.com/id/1039898
security	www.security.gentoo.org/glsa/201712-04
curl	www.curl.haxx.se/docs/adv_2017-af0a.html
security	www.security.cucumberlinux.com/security/details.php

19 Apr 2022 18:14Current

6.4Medium risk

Vulners AI Score6.4

CVSS 27.5

CVSS 39.8

EPSS0.00825