CVE-2018-1000301

CRITICAL
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

curl version curl 7.20.0 to and including curl 7.59.0 contains a CWE-126: Buffer Over-read vulnerability in denial of service that can result in curl can be tricked into reading data beyond the end of a heap based buffer used to store downloaded RTSP content.. This vulnerability appears to have been fixed in curl < 7.20.0 and curl >= 7.60.0.

References

http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html

http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html

http://www.securityfocus.com/bid/104225

http://www.securitytracker.com/id/1040931

https://access.redhat.com/errata/RHBA-2019:0327

https://access.redhat.com/errata/RHSA-2018:3157

https://access.redhat.com/errata/RHSA-2018:3558

https://curl.haxx.se/docs/adv_2018-b138.html

https://lists.debian.org/debian-lts-announce/2018/05/msg00010.html

https://security.gentoo.org/glsa/201806-05

https://usn.ubuntu.com/3598-2/

https://usn.ubuntu.com/3648-1/

https://www.debian.org/security/2018/dsa-4202

https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html

https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html

Details

Source: MITRE

Published: 2018-05-24

Updated: 2019-10-03

Type: CWE-125

Risk Information

CVSS v2

Base Score: 6.4

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:P

Impact Score: 4.9

Exploitability Score: 10

Severity: MEDIUM

CVSS v3

Base Score: 9.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

Impact Score: 5.2

Exploitability Score: 3.9

Severity: CRITICAL

Tenable Plugins

View all (35 total)

IDNameProductFamilySeverity
134066RHEL 7 : curl (RHSA-2020:0594)NessusRed Hat Local Security Checks
critical
133787RHEL 7 : curl (RHSA-2020:0544)NessusRed Hat Local Security Checks
critical
131184Oracle Enterprise Manager Ops Center (Jan 2019 CPU)NessusMisc.
critical
127212NewStart CGSL CORE 5.04 / MAIN 5.04 : curl Multiple Vulnerabilities (NS-SA-2019-0039)NessusNewStart CGSL Local Security Checks
critical
125003EulerOS Virtualization 3.0.1.0 : curl (EulerOS-SA-2019-1550)NessusHuawei Local Security Checks
critical
124993EulerOS Virtualization for ARM 64 3.0.1.0 : curl (EulerOS-SA-2019-1540)NessusHuawei Local Security Checks
critical
124090Oracle Fusion Middleware Oracle HTTP Server Multiple Vulnerabilities (October 2018 CPU)NessusWeb Servers
critical
123190openSUSE Security Update : curl (openSUSE-2019-435)NessusSuSE Local Security Checks
critical
121963Photon OS 2.0: Curl PHSA-2018-2.0-0068NessusPhotonOS Local Security Checks
critical
121855Photon OS 1.0: Curl PHSA-2018-1.0-0158NessusPhotonOS Local Security Checks
critical
121048Amazon Linux 2 : nss-pem (ALAS-2019-1139)NessusAmazon Linux Local Security Checks
critical
120931Fedora 28 : curl (2018-fa01002d7e)NessusFedora Local Security Checks
critical
119180Scientific Linux Security Update : curl and nss-pem on SL7.x x86_64 (20181030)NessusScientific Linux Local Security Checks
critical
118996CentOS 7 : curl / nss-pem (CESA-2018:3157)NessusCentOS Local Security Checks
critical
118775Oracle Linux 7 : curl / nss-pem (ELSA-2018-3157)NessusOracle Linux Local Security Checks
critical
118532RHEL 7 : curl and nss-pem (RHSA-2018:3157)NessusRed Hat Local Security Checks
critical
118418EulerOS Virtualization 2.5.0 : curl (EulerOS-SA-2018-1330)NessusHuawei Local Security Checks
critical
118253SUSE SLES12 Security Update : curl (SUSE-SU-2018:1327-2)NessusSuSE Local Security Checks
critical
111954Photon OS 2.0: Curl PHSA-2018-2.0-0068 (deprecated)NessusPhotonOS Local Security Checks
critical
111941Photon OS 1.0: Curl PHSA-2018-1.0-0158 (deprecated)NessusPhotonOS Local Security Checks
critical
111333Oracle Secure Global Desktop Multiple Vulnerabilities (July 2018 CPU)NessusMisc.
critical
110867EulerOS 2.0 SP3 : curl (EulerOS-SA-2018-1203)NessusHuawei Local Security Checks
critical
110866EulerOS 2.0 SP2 : curl (EulerOS-SA-2018-1202)NessusHuawei Local Security Checks
high
110614GLSA-201806-05 : cURL: Multiple vulnerabilitiesNessusGentoo Local Security Checks
critical
110446Amazon Linux 2 : curl (ALAS-2018-1029)NessusAmazon Linux Local Security Checks
critical
110434openSUSE Security Update : curl (openSUSE-2018-589)NessusSuSE Local Security Checks
critical
110260SUSE SLES11 Security Update : curl (SUSE-SU-2018:1478-1)NessusSuSE Local Security Checks
critical
110061Fedora 27 : curl (2018-9dc7338487)NessusFedora Local Security Checks
critical
109931openSUSE Security Update : curl (openSUSE-2018-471)NessusSuSE Local Security Checks
critical
109913SUSE SLED12 / SLES12 Security Update : curl (SUSE-SU-2018:1327-1)NessusSuSE Local Security Checks
critical
109901Debian DSA-4202-1 : curl - security updateNessusDebian Local Security Checks
critical
109893Ubuntu 14.04 LTS / 16.04 LTS / 17.10 / 18.04 LTS : curl vulnerabilities (USN-3648-1)NessusUbuntu Local Security Checks
critical
109877FreeBSD : cURL -- multiple vulnerabilities (04fe6c8d-2a34-4009-a81e-e7a7e759b5d2)NessusFreeBSD Local Security Checks
critical
109872Debian DLA-1379-1 : curl security updateNessusDebian Local Security Checks
critical
109870Slackware 14.0 / 14.1 / 14.2 / current : curl (SSA:2018-136-01)NessusSlackware Local Security Checks
critical