Lucene search

Information Disclosure

🗓️ 13 Jun 2018 08:02:11Reported by Veracode Vulnerability DatabaseType

veracode🔗 sca.analysiscenter.veracode.com👁 25 Views

libcurl.so vulnerable to TFTP transfer information disclosur

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 107
OSV	CVE-2017-1000100	5 Oct 201701:29	–	osv
OSV	curl - security update	20 Aug 201700:00	–	osv
OSV	curl - security update	6 Oct 201700:00	–	osv
OSV	RHSA-2018:3558 Red Hat Security Advisory: httpd24 security, bug fix, and enhancement update	13 Sep 202416:54	–	osv
OSV	OPENSUSE-SU-2024:10582-1 curl-7.79.1-1.1 on GA media	15 Jun 202400:00	–	osv
IBM Security Bulletins	Security Bulletin: Vulnerability in cURL affects IBM Integrated Management Module II (IMM2) for System x, Flex and BladeCenter Systems (CVE-2017-1000100)	14 Apr 202314:32	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in cURL affects IBM BladeCenter Advanced Management Module (AMM)	14 Apr 202314:32	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in cURL affects IBM Chassis Management Module (CVE-2017-1000100)	31 Jan 201902:40	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in the libcURL component of Tivoli Netcool/OMNIbus (CVE-2017-1000100)	17 Jun 201815:45	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in cURL/libcURL affect IBM Flex System EN6131 40Gb Ethernet / IB6131 40Gb Infiniband Switch Firmware	7 Dec 202322:31	–	ibm

Vulners

Node

alpinelinux alpine_linuxMatch3.3

curl curlMatch7.52.1-r1cpp

AND

alpinelinux alpine_linuxMatch3.3

libcurl.so libcurl.soRange4.1.1–4.4.0cpp

httpd24-httpd httpd24-httpdMatch2.4.6_22.el6

httpd24-httpd httpd24-httpdMatch2.4.12_4.el6.2

httpd24-httpd httpd24-httpdMatch2.4.25_9.el6.1

httpd24-httpd httpd24-httpdMatch2.4.27_8.el7

httpd24-httpd httpd24-httpdMatch2.4.25_9.el7

httpd24-httpd httpd24-httpdMatch2.4.6_16.el6

httpd24-httpd httpd24-httpdMatch2.4.27_8.el6.1

httpd24-httpd httpd24-httpdMatch2.4.18_10.el6

httpd24-httpd httpd24-httpdMatch2.4.12_3.el6

httpd24-httpd httpd24-httpdMatch2.4.25_8.el6

httpd24-httpd httpd24-httpdMatch2.4.25_9.el6

httpd24-httpd httpd24-httpdMatch2.4.18_11.el6

httpd24-httpd httpd24-httpdMatch2.4.27_8.el7.1

httpd24-httpd httpd24-httpdMatch2.4.6_18.el6

httpd24-httpd httpd24-httpdMatch2.4.27_8.el6

httpd24-curl httpd24-curlMatch7.47.1_4.el7

httpd24-curl httpd24-curlMatch7.47.1_1.1.el6

httpd24-curl httpd24-curlMatch7.47.1_1.1.el7

httpd24-nghttp2 httpd24-nghttp2Match1.7.1_1.el7

httpd24-nghttp2 httpd24-nghttp2Match1.7.1_1.el6

httpd24-nghttp2 httpd24-nghttp2Match1.7.1_6.el7

Source	Link
curl	www.curl.haxx.se/docs/adv_20170809B.html
securityfocus	www.securityfocus.com/bid/100286
securitytracker	www.securitytracker.com/id/1039118
debian	www.debian.org/security/2017/dsa-3992
security	www.security.gentoo.org/glsa/201709-14
support	www.support.apple.com/HT208221
access	www.access.redhat.com/errata/RHSA-2018:3558
curl	www.curl.haxx.se/CVE-2017-1000100.patch

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

13 Jun 2018 08:11Current

6.8Medium risk

Vulners AI Score6.8

CVSS24.3

CVSS36.5

EPSS0.00618