curl 7.62.0 through 7.70.0 is vulnerable to an information disclosure vulnerability that can lead to a partial password being leaked over the network and to the DNS server(s).
2020-12-14T20:15:13.357
2024-11-21T05:38:25.633
Modified
CVSSv3.1: 7.5 (HIGH)
AV:N/AC:L/Au:N/C:P/I:N/A:N
10.0
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | haxx | curl | ≤ 7.70.0 | Yes |
| Operating System | siemens | simatic_tim_1531_irc_firmware | < 2.2 | Yes |
| Hardware | siemens | simatic_tim_1531_irc | - | No |
| Operating System | debian | debian_linux | 10.0 | Yes |
| Application | siemens | sinec_infrastructure_network_services | < 1.0.1.1 | Yes |
| Application | splunk | universal_forwarder | < 8.2.12 | Yes |
| Application | splunk | universal_forwarder | < 9.0.6 | Yes |
| Application | splunk | universal_forwarder | 9.1.0 | Yes |